(T) Both Symantec and Kaspersky have disclosed their findings of Regin – the latest discovered military-grade surveillance malware. Symantec has published a good white paper about the capabilities and the architecture of the malware. The clear goal of Regin is long-term intelligence gathering. Regin can adapt itself to the target with customized features. It does a great job to hide both its presence and its actions.
The threat occurs in six-stage components which are depending on each other. The first stage is not encrypted and establishes the installation and configuration of the malware’s internal services. The following five stages are encrypted and bring the main payloads of the threat.
- Symantec “Regin: Top-tier espionage tool enables stealthy surveillance”.
- A Silicon Valley Insider “From Stuxnet to Careto”
- A Silicon Valley Insider “Symantec Stuxnet Deep Diving”
Note : The picture above is from Le Louvre.
Copyright © 2005-2014 by Serge-Paul Carrasco. All rights reserved.
Contact Us: asvinsider at gmail dot com.