Malware Analysis


About the Malware Analysis category (1)
2018-09-24 - Files for an ISC diary (sextortion spam) (1)
Passwordless RDP Session Hijacking (1)
Quickpost: Signing Windows Executables on Kali (1)
Update: pecheck.py Version 0.7.4 (1)
How Do Packers Work - Reverse Engineering "FUD" Aegis Crypter (1)
2018-09-21 - Malspam with password-protected Word docs still pushing Nymaim (1)
2018-09-21 - Emotet infections with Trickbot (UK and US) (1)
One framework to build them all, one framework to name them, and in their IDBs to bind them (1)
2018-09-20 - Quick Post: Emotet infection with Trickbot (gtag: arz1) (1)
Using C# for post-PowerShell attacks (1)
2018-09-19 - Data dump (Hancitor, Nymaim, Trickbot) (1)
Hex-Rays Microcode API vs. Obfuscating Compiler (1)
Xbash Combines Botnet, Ransomware, Coinmining in Worm that Targets Linux and Windows (1)
2018-09-17 - Quick post: Malspam with password-protected Word doc pushes Nymaim (1)
Quickpost: Compiling EXEs and Resources with MinGW on Kali (1)
2018-09-14 - Quick post: Emotet infection with Trickbot (1)
Post 0x17.1: Analyzing Turla’s Keylogger (1)
2018-09-11 - Quick post: Two days of Hancitor (1)
Scaling up Binary Exploitation Education (1)
WiFi Pineapple NANO: Persistent Recon DB (1)
Multi-exploit IoT/Linux Botnets Mirai and Gafgyt Target Apache Struts, SonicWall (1)
Let's Learn: Dissecting Dridex Banking Malware Part 1: Loader and Avast "snxk.dll" Hooking Lib (1)
Firmware Upgrade: WiFi Pineapple NANO (1)
Finding Interactive User COM Objects using PowerShell (1)
Let's Learn: Deeper Dive into "IcedID"/"BokBot" Banking Malware: Part 1 (1)
Goblin Panda targets Cambodia sharing capacities with another Chinese group hackers Temp Periscope (1)
Domestic Kitten: An Iranian Surveillance Operation (1)
2018-09-06 - Data dump (Emotet, Hancitor, and Trickbot) (1)
Slicing and Dicing CVE-2018-5002 Payloads: New CHAINSHOT Malware (1)