[ISN] Kaspersky researcher cracks Flame malware password

From: InfoSec News <alerts_at_private>
Date: Wed, 19 Sep 2012 02:10:35 -0500 (CDT)
http://www.networkworld.com/news/2012/091812-kaspersky-flame-262531.html

By Tim Greene
Network World
September 18, 2012

Researchers have cracked the password protecting a server that 
controlled the Flame espionage botnet giving them access to the malware 
control panel to learn more about how the network functioned and who 
might be behind it.

Kaspersky analyst Dmitry Bestuzhev cracked the hash for the password 
Sept. 17 just hours after Symantec put out a public request for help 
getting into the control panel for Flame, which infected thousands of 
computers in the Mideast.

The hash - 27934e96d90d06818674b98bec7230fa - was resolved to the plain 
text password 900gage!@# by Bestuzhev.

Symantec said it tried to break the hash with brute force attacks but 
failed. Flame has been investigated by a joint effort of Symantec, 
ITU-IMPACT and CERT-Bund/BSI.

[...]


--
#HITB2012KUL - The 10TH ANNUAL HITB Security Conference in Malaysia
with no keynotes, no labs - just three tracks filled with our most
popular speakers from the last decade: http://conference.hitb.org/
Received on Wed Sep 19 2012 - 00:10:35 PDT

This archive was generated by hypermail 2.2.0 : Wed Sep 19 2012 - 00:10:03 PDT