Recently, X-Sec Labs caught a new backdoor which is wrapped with an Image Viewer called “看图王”. Continue reading “A backdoor wrapped with an Image Viewer”
From July to now, we have collected lots of Chinese backdoor samples from a special source.
Sometimes they are encrypted, so they need a loader to download & decrypt.
We’re very lucky to get the full source code of this family of backdoor(Including source code, server module, client module and payload builder), so it’s easier for us to create signature.
Here is a downloader sample. Continue reading “Chinese Trojan Downloader”