tag:blogger.com,1999:blog-1579868015396961881.post6028573688957739805..comments2022-12-05T16:05:44.554+08:00Comments on Xecure Lab: Prepare for the "Advanced Persistent Threat" WarfareUnknownnoreply@blogger.comBlogger5125tag:blogger.com,1999:blog-1579868015396961881.post-89066355702120983282012-09-14T12:00:03.339+08:002012-09-14T12:00:03.339+08:00Right now we simply rely on VirusTotal to give us ...Right now we simply rely on VirusTotal to give us a quick idea on the AV detection rate of this password-protected APT document as we do not have the resources to test all 42 antivirus product against this APT sample in the use case you mentioned. (Gee... Google acquired VirusTotal, would they have the crazy ideas of offering sandbox versions of 42 AV product? :D)Benson Wuhttps://www.blogger.com/profile/01059107548654525405noreply@blogger.comtag:blogger.com,1999:blog-1579868015396961881.post-5020258168948005492012-09-14T11:55:13.166+08:002012-09-14T11:55:13.166+08:00The APT actor diagram is for our internal research...The APT actor diagram is for our internal research and even our paying customers do not get a large resolution but an overview abstract one, there are details that we couldn't disclose at this moment. If you do have special need about APT actors, please write us, we might be able to help further. Thank you. benson at xecure-lab.comBenson Wuhttps://www.blogger.com/profile/01059107548654525405noreply@blogger.comtag:blogger.com,1999:blog-1579868015396961881.post-17351565279465492272012-08-11T07:35:40.939+08:002012-08-11T07:35:40.939+08:00And when you enter the password for those Office e...And when you enter the password for those Office exploits and open/drop the file to disk, what happens to detection rates then? When it actually matters.ksechttps://www.blogger.com/profile/11918754690601209047noreply@blogger.comtag:blogger.com,1999:blog-1579868015396961881.post-55569363305789389212012-08-11T04:35:04.488+08:002012-08-11T04:35:04.488+08:00Is there any chance it might be possible to get a ...Is there any chance it might be possible to get a look at a copy of that APT actor diagram that's blown up large enough to actually see the notations on the individual sample entries?johnmccashhttps://www.blogger.com/profile/11156773431595966251noreply@blogger.comtag:blogger.com,1999:blog-1579868015396961881.post-43369877200419985962012-08-03T06:33:08.945+08:002012-08-03T06:33:08.945+08:00Even we didn't speak at DEF CON, hopefully, th...Even we didn't speak at DEF CON, hopefully, this piece of update could be helpful to APT researchers and industry.Dark Floydhttps://www.blogger.com/profile/01457178333126304897noreply@blogger.com