Cryptocurrency Investment for a Babe in the Woods

I had been listening to my co-workers talk about bitcoin and other cryptocurrencies for a while.  Being that it’s the preferred payment method of the underground (i.e.darkweb, ransomware and so on) — and it’s my job as incident response manager to understand that sort of thing — I decided to give it a try. In […]

Surviving a 20000+ node botnet Attack

My web server has been under attack since early this month.  This is a dedicated server that I have leased for years.  It only hosts a couple of sites for me, my family and a few select friends.  Nothing of any real importance or sensitivity exists on it.  Why this insignificant little server attracted the […]

Hey Mac Users… The Honeymoon is Over.

I know, its sad.  I too am a die hard mac user. Today alone I have received 4 copies of an email with the subject line “2 Populaar Myths About Female Orgasms –  How to Become an Irresistible Lover” containing an attachment named “Preview.app Document”. I haven’t had a chance to analyse the .app yet, […]

Loaded C:\WINNT\system32\KERNEL32.dll differs from file image

I have recently been updating my Windows Forensics First Responder script and have noticed a number of servers reporting the following when using Sysinternals/Microsoft’s listdlls.exe. *** Loaded C:\WINNT\system32\KERNEL32.dll differs from file image: *** File timestamp:         Wed Apr 18 12:25:36 2007 *** Loaded image timestamp: Wed Apr 18 12:25:37 2007 *** 0x77e40000  0x102000  5.02.3790.4062  C:\WINNT\system32\KERNEL32.dll Now […]