Home > Resources > Whitepapers > EyeSpy - Iranian Spyware Delivered in VPN Installers

VIRTUAL DESKTOP TOOLS, VIRTUAL DESKTOP STRATEGIES

EyeSpy - Iranian Spyware Delivered in VPN Installers

October 12, 2022

eyespy-iranian-spyware
During routine analysis of detection performance, we noticed a batch of processes that respected the same pattern in the process names. These names begin with sys, win or lib followed by a word that describes the functionality, such as bus, crt, temp, cache, init, and end in 32.exe. We later noticed that the .bat files and the downloaded payloads respect the same naming convention. Further investigation revealed the components are part of a monitoring application called SecondEye, developed in Iran and distributed legitimately via the developer’s website. We also found that some spyware components were already described in an article published by Blackpoint [1]. In the article, researchers drew attention to the dangers of legally distributed monitoring software with malicious behavior

I'm For Real

Enter your details once to access all our information and resources

 

Spotlight

VAE, Inc

At VAE, Inc., we build, secure and support large-scale enterprise IT infrastructures. Our creativity and expertise help us deliver world-class solutions that support our government and commercial client’s mission-critical business initiatives. From our offices in Springfield, Virginia, we deploy our engineers worldwide to provide a distinctive array of systems and network design, maintenance and managed services.

OTHER WHITEPAPERS
news image

New Data Sources and Innovative AI Are Redefining the Business of Lending

whitePaper | December 5, 2022

The business of lending money is rapidly changing. Innovative technology, fueled by expanding data and artificial intelligence (AI), is redefining borrowing. Traditional lenders, as well as alternative sources such as nonbank and "buy now, pay later" (BNPL) providers, are reimagining how

Read More
news image

Network Element Virtualization (NEV)

whitePaper | October 17, 2022

Xilinx, recently acquired and now a part of AMD, is the inventor of the FPGA, programmable SoCs, and now, the ACAP (Adaptive Compute Acceleration Platform). Our highly flexible, programmable silicon, enabled by a suite of advanced software and tools, drives rapid innovation across a wide span of industries and technologies - from consumer to cars to the cloud.

Read More
news image

Cisco UCS C220 M5 Rack Server (Small Form Factor Disk Drive Model)

whitePaper | December 25, 2019

The UCS C220 M5 SFF server extends the capabilities of Cisco’s Unified Computing System portfolio in a 1U form factor with the addition of the Intel® Xeon® Processor Scalable Family, 24 DIMM slots for 2666-MHz or 2933-MHz DIMMs with capacity points up to 128 GB, 2666-MHz DCPMMs with capacity points up to 512 GB, two 2 PCI Express (PCIe) 3.0 slots, and up to 10 SAS/SATA hard disk drives (HDDs) or solid state drives (SSDs). The C220 M5 SFF server also includes one dedicated internal slot for a 12G SAS storage controller card.

Read More
news image

Store IT Modernization with VMware White Paper

whitePaper | June 8, 2022

Edge computing in the retail industry plays a key role in transforming our world. Today, organizations in the retail industry want to deliver new services and digital experiences for their employees and customers close to the locations where data is produced and consumed. These organizations want to combine data originating at the store with machine learning (ML), analytics, and artificial intelligence (AI) to help improve operations, become more agile, and capture next-generation business opportunities. To ensure success, organizations require retail edge infrastructure solutions that enable fast deployment of new IT services, simplified IT management, and security of edge infrastructure at scale.

Read More
news image

Why VDI makes sense forhard-core UNIX® and Linux® engineering applications

whitePaper | December 6, 2022

By now, everyone has heard the terms desktop virtualization and VDI It seems like we’ve been pounded with marketing propaganda about these technologies from companies like VMware, Citrix® and Microsoft® since 2006. But if desktop virtualization is so good, why are most of the world’s desktops still “old-style” physical desktops and laptops?

Read More
news image

Independent DeltaV™ Domain Controller

whitePaper | October 3, 2022

Active Directory was introduced by Microsoft with the release of the Windows 2000 Server Operating System (O/S). DeltaV systems work in conjunction with specific Active Directory features to provide a more secure and manageable production environment. Windows domains provide centralized user accounts and groups, and combined with Windows forests you also get administration, redundancy, and scalability as part of the computers network environment. This whitepaper provides details about the Independent DeltaV Domain Controller (IDDC) functionality introduced in DeltaV version 14.LTS. This whitepaper assumes that you understand the concept of Windows domains and forests.

Read More

New Data Sources and Innovative AI Are Redefining the Business of Lending

whitePaper | December 5, 2022

The business of lending money is rapidly changing. Innovative technology, fueled by expanding data and artificial intelligence (AI), is redefining borrowing. Traditional lenders, as well as alternative sources such as nonbank and "buy now, pay later" (BNPL) providers, are reimagining how

Read More

Network Element Virtualization (NEV)

whitePaper | October 17, 2022

Xilinx, recently acquired and now a part of AMD, is the inventor of the FPGA, programmable SoCs, and now, the ACAP (Adaptive Compute Acceleration Platform). Our highly flexible, programmable silicon, enabled by a suite of advanced software and tools, drives rapid innovation across a wide span of industries and technologies - from consumer to cars to the cloud.

Read More

Cisco UCS C220 M5 Rack Server (Small Form Factor Disk Drive Model)

whitePaper | December 25, 2019

The UCS C220 M5 SFF server extends the capabilities of Cisco’s Unified Computing System portfolio in a 1U form factor with the addition of the Intel® Xeon® Processor Scalable Family, 24 DIMM slots for 2666-MHz or 2933-MHz DIMMs with capacity points up to 128 GB, 2666-MHz DCPMMs with capacity points up to 512 GB, two 2 PCI Express (PCIe) 3.0 slots, and up to 10 SAS/SATA hard disk drives (HDDs) or solid state drives (SSDs). The C220 M5 SFF server also includes one dedicated internal slot for a 12G SAS storage controller card.

Read More

Store IT Modernization with VMware White Paper

whitePaper | June 8, 2022

Edge computing in the retail industry plays a key role in transforming our world. Today, organizations in the retail industry want to deliver new services and digital experiences for their employees and customers close to the locations where data is produced and consumed. These organizations want to combine data originating at the store with machine learning (ML), analytics, and artificial intelligence (AI) to help improve operations, become more agile, and capture next-generation business opportunities. To ensure success, organizations require retail edge infrastructure solutions that enable fast deployment of new IT services, simplified IT management, and security of edge infrastructure at scale.

Read More

Why VDI makes sense forhard-core UNIX® and Linux® engineering applications

whitePaper | December 6, 2022

By now, everyone has heard the terms desktop virtualization and VDI It seems like we’ve been pounded with marketing propaganda about these technologies from companies like VMware, Citrix® and Microsoft® since 2006. But if desktop virtualization is so good, why are most of the world’s desktops still “old-style” physical desktops and laptops?

Read More

Independent DeltaV™ Domain Controller

whitePaper | October 3, 2022

Active Directory was introduced by Microsoft with the release of the Windows 2000 Server Operating System (O/S). DeltaV systems work in conjunction with specific Active Directory features to provide a more secure and manageable production environment. Windows domains provide centralized user accounts and groups, and combined with Windows forests you also get administration, redundancy, and scalability as part of the computers network environment. This whitepaper provides details about the Independent DeltaV Domain Controller (IDDC) functionality introduced in DeltaV version 14.LTS. This whitepaper assumes that you understand the concept of Windows domains and forests.

Read More
More Whitepapers

Spotlight

VAE, Inc

At VAE, Inc., we build, secure and support large-scale enterprise IT infrastructures. Our creativity and expertise help us deliver world-class solutions that support our government and commercial client’s mission-critical business initiatives. From our offices in Springfield, Virginia, we deploy our engineers worldwide to provide a distinctive array of systems and network design, maintenance and managed services.

Events

2023 5th International Conference on Hardware Security and Trust (ICHST 2023)

Conference