Analysis of Flash Zero Day Shows Layers of Obfuscation

  • 27 January 2015
  • 0 replies
  • 124 views

Userlevel 7
Badge +54
by Dennis Fisher    January 27, 2015

The Flash zero day that made its way into the Angler exploit kit was wrapped in multiple layers of obfuscation and has the ability to inject its malicious payload straight into users’ browsers.

In the last week, since the news broke of the Adobe Flash zero-day flaw appearing in the Angler kit, security researchers have spent quite a bit of time analyzing the vulnerability and the way in which it’s being used. Researchers at Websense found that the exploit code for the vulnerability is hidden inside a Flash file that is in turn wrapped in an SWF file. The goal of the attackers in using this technique is to hide their true intentions–and their exploit code–from security systems for as long as possible.
 
Full Article

0 replies

Be the first to reply!

Reply