Sophos Releases Technical Paper on BlackHole Exploit Kit

SHARE: Tweet Adjust text size:
- BlackHole exploit kit control panel
Sophos Labs Principal Researcher Gabor Szappanos has released an interesting technical paper that details the notorious BlackHole exploit kit. BlackHole has been around for quite some time now and judging by the fact that we keep seeing new versions, it’s unlikely that cybercriminals will stop using it to distribute malware anytime soon. The paper details the evolution of BlackHole, its source code, the control panel, encryption and its origins. According to the researcher, there’s a lot of evidence to support the theory that the exploit kit has been developed in Russia. The default time zone of the installation is hardcoded to Europe/Moscow, the user interface language default is set to Russian, and the date format is set to Little Endian, which is different than the one utilized in US or China. Furthermore, the English user interface text is less correct than the one in the Russian interface. The complete technical paper is available here. Add me on Google+
FILED UNDER: security research BlackHole exploit kit Russia

TELL US WHAT YOU THINK:

1,630 hits · 2 comments · Link to this article · Print article · Send to friend · Subscribe to news

Comment #1 by: rb on 04 Dec 2012, 21:22 UTC	reply to this comment
Story is interesting but I would like to get the download of the technical document without the 7Zip file archiever. Is that possible?

Comment #1.1 by: Eduard K on 08 Dec 2012, 17:25 GMT

Hi, the link is at the end of the post, where it says: "The complete technical paper is available here".

SUBMIT PROGRAM \| ADVERTISE \| GET HELP \| SEND US FEEDBACK \| RSS FEEDS \| UPDATE YOUR SOFTWARE \| ROMANIAN FORUM
© 2001 - 2013 Softpedia. All rights reserved. Softpedia® and the Softpedia® logo are registered trademarks of SoftNews NET SRL.	Copyright Information \| Privacy Policy \| Terms of Use