Go Back   Hardware Canucks > NEWS & REVIEWS > Press Releases & Tech News

    
Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old July 27, 2015, 10:36 AM
trodas's Avatar
MVP
 
Join Date: Feb 2008
Location: Czech republic
Posts: 394

My System Specs

Exclamation HackingTeam malware detection

Is your computer infected by some of the HackingTeam tools? You can find out now!



Rook Security released their tool called Milano, witch are sharing freely, scans for the presence of files associated with the recent Hacking Team breach. For this first iteration of the tool, we they conducted analysis on 93 Windows binaries released from the Hacked Team breach. These files were specific to the projects found on the Hacked Team git projects.

They are continuing to review the remaining files from the 400Gb and will provide more .ioc files as more information is available.

Milano can scan to find Hacking Team associated files in two different ways:

Quick scan: This mode scans for files by filename. If a filename matches, it then checks if file’s computed hash matches the hash from the Hacking-Team-associated file. This approach is not comprehensive, but it is an OK starting point for detection. It is much faster than the deep scan approach.

Deep scan: This approach checks all files (via their computed hash) against all md5s from Hacking-Team-associated files.

You can grab the tool there, unpack and run (opens shell):
https://www.rooksecurity.com/wp-cont...ackage_1.1.zip

For possible future updates, check there:
https://www.rooksecurity.com/hacking...ction-utility/
__________________
"It is dangerous to be right in matters on which the established authorities are wrong." - Voltaire
"I believe that all the people who stand to profit by a war and who help provoke it should be shot on the first day it starts..." - Hemingway :) my config - my caps
Reply With Quote
  #2 (permalink)  
Old July 27, 2015, 10:58 AM
sswilson's Avatar
Moderator
F@H
 
Join Date: Dec 2006
Location: Moncton NB
Posts: 17,823

My System Specs

Default

I'm always leery of any security software not released by a well known source (or at least vetted by a well known source).
__________________
ASUS ROG Strix Z370-G Gaming (WiFi AC) / i7 8700K / 2X 8G XPG Spectrix D40 (3000) / XFX XTR 750 / ASUS Strix GTX 1070ti
AZZA Titan 240 / Custom WC / Intel 730 Series 480GB SSD / Intel 760p 512GB NVMe / Seagate Barracuda 1TB / ASUS SWIFT PG279Q
Dell Optiplex 3020 / Intel Core i3 i3-4160 / EVGA GT 1030 SC / 6GB DDR3 / Samsung 850 EVO 500GB SSD/ Samsung 27" 1080p (Curved)
Dell G3 - i5 8300H / HP EX920 512GB NVME / 2X8GB HyperX Impact / 1TB SSHD / GTX 1050ti / N156HHE-GA1 120HZ Monitor
Reply With Quote
  #3 (permalink)  
Old July 27, 2015, 11:01 AM
FreeKnight's Avatar
Hall Of Fame
F@H
 
Join Date: Jul 2009
Location: Edmonton, AB
Posts: 2,001

My System Specs

Default

Quote:
Originally Posted by sswilson View Post
I'm always leery of any security software not released by a well known source (or at least vetted by a well known source).
Agreed. I'll stick with Malwarebytes, MSE and Avast or AVG as necessary. There's enough false 'spyware detectors' out there that I don't chance it.
Reply With Quote
  #4 (permalink)  
Old July 27, 2015, 11:27 AM
Lysrin's Avatar
Hall Of Fame
 
Join Date: Mar 2014
Location: Nova Scotia
Posts: 2,942

My System Specs

Default

Yeah. Not intending to cast any dispersions on trodas, but that whole post gave me the hebejebees! Could be legit, but I wasn't downloading.
Reply With Quote
  #5 (permalink)  
Old July 28, 2015, 01:13 AM
AkG's Avatar
AkG AkG is offline
Hardware Canucks Reviewer
 
Join Date: Oct 2007
Posts: 5,284
Default

Its legit. You can read all about it here:

http://readwrite.com/2015/07/21/mila...alware-sniffer
__________________
"If you ever start taking things too seriously, just remember that we are talking monkeys on an organic spaceship flying through the universe." -JR

“if your opponent has a conscience, then follow Gandhi. But if you enemy has no conscience, like Hitler, then follow Bonhoeffer.” - Dr. MLK jr
Reply With Quote
Reply


Thread Tools
Display Modes

Similar Threads
Thread Thread Starter Forum Replies Last Post
New PCs coming with pre-installed malware PerryC Reviews & Articles from the Web 17 May 13, 2013 11:54 PM
Apple antivirus/anti-malware. BrainEater Mac 13 March 13, 2013 01:54 PM
google search malware tangrisser O/S's, Drivers & General Software 10 February 23, 2013 02:35 PM
Ram detection stoanee Troubleshooting 4 January 16, 2013 10:51 AM
My Favourite Anti Malware Tools clickright O/S's, Drivers & General Software 7 May 13, 2007 05:59 PM