• PDF Analysis of Flame/Wiper Malware by CrySys

    by  • May 28, 2012 • News

    Kaspersky labs talks about SkyWiper

    Kaspersky labs talks about SkyWiper


    SkyWiper / Viper / Flame is the newest Malware to hit the scene. It is shaking up the threatware analysis community for it’s massive size. Kaspersky labs, a Russian semi-legit security firm suggests that it could take them up to ten years to full understand what it can do.
    The malware is almost up to 20 Megabytes and contains code similar to but not identical to other forms of malware like Zeuss, Redkit, or Stuxnet and Stuxnet’s big brother DuQu which both started roughly in 2008.
    The new malware contains bits of code in the LUA language, which is unusual for malware of this type. Flame seems to be targetting Iranian computers of oil companies and other such industries. It can do many things among which it has been accused of wiping info after stealing it, monitoring Skype chats and snooping on the microphone activity.

    For a detailed analysis by CrySys, click this link
    http://www.crysys.hu/skywiper/skywiper.pdf

    About

    James is an active member of his local tech community in Memphis, TN. He is a student of Science at the local college and an Information Security hobbyist, as well as an outspoken Linux Advocate, and open source proponent. After a hard day at the console, James likes to enjoy a vintage 2012 Mountain Dew, with a robe and a pipe by the fire.