chrisddom
chrisddom
Apologies that this isn't an issue. Is it possible to obtain a prebuilt vm to have a quick play with brownian beyond that available on the demo site? Thanks, Chris
http://researchcenter.paloaltonetworks.com/2015/07/apt-group-ups-targets-us-government-with-hacking-team-flash-exploit/ http://blog.trendmicro.com/trendlabs-security-intelligence/an-in-depth-look-at-how-pawn-storms-java-zero-day-was-used/ Indicators UPS a2fe113cc13acac2bb79a375f692b8ba5cc2fa880272adc7ab0d01f839e877ff Domains rpt.perrydale[.]com report.perrydale[.]com IPs 194.44.130[.]179 URLs rpt.perrydale[.]com /en/show.swf report.perrydale[.]com /ema/show.swf rpt.perrydale[.]com /en/b.gif report.perrydale[.]com /ema/b,gif PawnStorm 192[.]111[.]146[.]185 (direct to IP call) www[.]acledit[.]com www[.]biocpl[.]org
just as a heads up, happened to notice this might be being used in: https://www.virustotal.com/en/file/8573a7ad5d2c5c4cad02810f8a5936f8fa264aa50a86b95cb634a9eb584ee78b/analysis/
License
Hi! I'm trying out a few different approaches to analysing mail and this looks like a very useful start. Is there a license attached to YaraMail? Cheers,