+
Using YARA to detect Malware
Have you ever wondered how malware is detected? How do malware scanners work? How does Gmail know that the suspicious attachment you got was “dangerous”? The …
March 12, 2020
malware Archive
+
Utilize PowerShell without executing the powershell.exe binary
In recent times, I have learned about techniques in developing modern malware. One of those techniques was to utilize PowerShell without executing the powershell.exe binary. After …
March 5, 2020
+
Living Off the Land Techniques
1. What is Living off the Land? The use of Living off the Land (LotL) tactics and tools by cyber criminals has been a growing trend …
February 27, 2020
+
FFSN – FAST-FLUX SERVICE NETWORKS
Fast-Flux is a DNS technique that involves frequent and rapid changing of the IP addresses associated with a Fully Qualified Domain Name (FQDN) by using a …
February 12, 2020
+
DGA – Domain Generation Algorithm
Usually, malicious code connects to the C&C server via a domain or IP address. DGA – Domain Generation Algorithm is a technique employed by the malware …
September 12, 2019
+
Linux malware detect (LMD)
Description Linux Malware Detect, also known as maldet or LMD, is one popular option that can be easily installed and configured to scan for known malware …
August 11, 2017