+
New “Early Bird” Code Injection Technique
Researchers have identified what they are calling an Early Bird code injection technique used by the Iranian group APT33 to burrow the TurnedUp malware inside infected …
April 17, 2018
Malware Analysis Archive
+
Use OllyDbg: Bypass detect debugger – IsDebuggerPresent
When you want to debug a program but it has Detect Debug mechanism so we have to do to be able to continue? In this post, …
October 4, 2017
+
ANDROID MALWARE ANALYSIS TOOL – REVERSE ENGINEERING
Dex2jar dex2jar is a tool to work with files .dex of android and file .jar of java. We can use dex2jar converter file .dex to file …
July 18, 2017
+
Petya Ransomware – Another Strong Ransomware Outbreak Is Going Worldwide Fast
Hi everyone, long time no see. I was at the prison for a while. Just kidding. :D. In this post, I’m going to update the information …
June 28, 2017
+
Petya Ransomware Spreading Rapidly Worldwide
The WannaCry ransomware is not dead yet and another large scale ransomware attack is making chaos worldwide, shutting down computers at corporates, power supplies, and banks …
June 28, 2017
+
Practical Malware Analysis – LAB 01-02
Analyze the file Lab01-02.exe. Questions 1. Upload the Lab01-02.exe file to http://www.VirusTotal.com/. Does it match any existing antivirus definitions? 2. Are there any indications that this …
April 4, 2017
+
Practical Malware Analysis – LAB 01-01
Here is my solution to the lab exercises for the book on Practical Malware Analysis. I am writing my own approach in solving the exercises and …
March 28, 2017
+
Windbg
WinDbg is a multipurpose debugger for the Microsoft Windows computer operating system, distributed by Microsoft. Debugging is the process of finding and resolving errors in a …
March 22, 2017