Summary The VMware Carbon Black Threat Analysis Unit (TAU) previously released a blog post documenting the Winnti version 4.0 malware. The new command and control (C2) protocol that was implemented in one of the 4.0 samples was completely different from the existing understanding of the 3.0 protocol. TAU is providing this analysis as well as […]
The post Threat Analysis: Active C2 Discovery Using Protocol Emulation Part2 (Winnti 4.0) appeared first on VMware Carbon Black.
Advertise on IT Security News.
Read the complete article: Threat Analysis: Active C2 Discovery Using Protocol Emulation Part2 (Winnti 4.0)