Malware Analysis

Topic	Replies	Views	Activity
About the Malware Analysis category	1	529	January 13, 2017
zLoader XLM Update: Macro code and behavior change	1	17	September 22, 2020
Java Test Coverage and The Missing Path	1	55	September 20, 2020
VMware for Homelab	1	56	September 20, 2020
Which Raspberry Pi do I have?	1	60	September 20, 2020
Crack The BAT - Identifying Compression, Packers & Googling for IOCs	1	73	September 19, 2020
Igor’s tip of the week #07: IDA command-line options cheatsheet	1	96	September 18, 2020
Testing IP Camera Account Security	1	106	September 18, 2020
Security of the Swiss Domain Landscape (ccTLD ch)	1	115	September 17, 2020
Binary Analysis Course: release notes 0x22	1	128	September 17, 2020
Complex obfuscation? Meh… (1/2)	1	126	September 17, 2020
2020-09-16 - Qakbot (Qbot) infection	1	129	September 17, 2020
2020-09-11 - ZLoader (Silent Night) infection from myResume.xls	1	123	September 17, 2020
2020-09-10 - Pcap only: TA551 (Shathak) sends IcedID	1	145	September 17, 2020
Trickbot: ActiveDocument.Words is the word!	1	139	September 16, 2020
Trickbot/Emotet Delivery through Word Macro	1	142	September 16, 2020
2020-09-03 - Pcap only: Emotet epoch 1 infection with Trickbot gtag mor119	1	153	September 16, 2020
Rudeminer, Blacksquid and Lucifer Walk Into A Bar	1	166	September 15, 2020
2020-09-14 - Traffic Analysis Quiz: Pcap and alerts from an ISC Diary	1	162	September 15, 2020
A review of the Ghidra Book	1	188	September 13, 2020
Quick Post: Analysis of a BokBot (IcedID) Maldoc	1	242	September 13, 2020
Lucid: An Interactive Hex-Rays Microcode Explorer	1	215	September 11, 2020
Igor’s tip of the week #06: IDA Release notes	1	218	September 11, 2020
[RE016] Malware Analysis: ModiLoader	1	292	September 11, 2020
User-Informed Dataflow	1	229	September 10, 2020
Quickpost: dig On Windows	1	235	September 10, 2020
Decrypting NanoCore config and dump all plugins	1	245	September 10, 2020
Grap: Automating QakBot strings decryption	1	211	September 10, 2020
2020-09-08 - Trickbot gtag ono72	1	260	September 9, 2020
Java Network Launch Protocol - Another way for distributing Java downloaders	1	214	September 9, 2020

About the Malware Analysis category

1

529

January 13, 2017

zLoader XLM Update: Macro code and behavior change

1

17

September 22, 2020

Java Test Coverage and The Missing Path

1

55

September 20, 2020

VMware for Homelab

1

56

September 20, 2020

Which Raspberry Pi do I have?

1

60

September 20, 2020

Crack The BAT - Identifying Compression, Packers & Googling for IOCs

1

73

September 19, 2020

Igor’s tip of the week #07: IDA command-line options cheatsheet

1

96

September 18, 2020

Testing IP Camera Account Security

1

106

September 18, 2020

Security of the Swiss Domain Landscape (ccTLD ch)

1

115

September 17, 2020

Binary Analysis Course: release notes 0x22

1

128

September 17, 2020

Complex obfuscation? Meh… (1/2)

1

126

September 17, 2020

2020-09-16 - Qakbot (Qbot) infection

1

129

September 17, 2020

2020-09-11 - ZLoader (Silent Night) infection from myResume.xls

1

123

September 17, 2020

2020-09-10 - Pcap only: TA551 (Shathak) sends IcedID

1

145

September 17, 2020

Trickbot: ActiveDocument.Words is the word!

1

139

September 16, 2020

Trickbot/Emotet Delivery through Word Macro

1

142

September 16, 2020

2020-09-03 - Pcap only: Emotet epoch 1 infection with Trickbot gtag mor119

1

153

September 16, 2020

Rudeminer, Blacksquid and Lucifer Walk Into A Bar

1

166

September 15, 2020

2020-09-14 - Traffic Analysis Quiz: Pcap and alerts from an ISC Diary

1

162

September 15, 2020

A review of the Ghidra Book

1

188

September 13, 2020

Quick Post: Analysis of a BokBot (IcedID) Maldoc

1

242

September 13, 2020

Lucid: An Interactive Hex-Rays Microcode Explorer

1

215

September 11, 2020

Igor’s tip of the week #06: IDA Release notes

1

218

September 11, 2020

[RE016] Malware Analysis: ModiLoader

1

292

September 11, 2020

User-Informed Dataflow

1

229

September 10, 2020

Quickpost: dig On Windows

1

235

September 10, 2020

Decrypting NanoCore config and dump all plugins

1

245

September 10, 2020

Grap: Automating QakBot strings decryption

1

211

September 10, 2020

2020-09-08 - Trickbot gtag ono72

1

260

September 9, 2020

Java Network Launch Protocol - Another way for distributing Java downloaders

1

214

September 9, 2020