ðĶ Malware Analysis
MA Backlog
Add new items here: https://malpedia.caad.fkie.fraunhofer.de/login and see also here https://objective-see.org/. Types From ChatGPT File infectors: These viruses infect executable files and are spread when the infected file is executed.
ðŦ System Supernova
One of the main things to know when performing forensic analysis is knowing what’s normal and what’s not. It would take ages to google every single pinch of this information, that’s why I have decided to make a clean install of several systems and capture their state to have an idea what’s good for each of them.
Process Injections
Windows Most of the information is taken from here, but more visualization is added. The screenshots from IDA Pro are also copied from that blog post.
ð YARA
Yara: brew install yara pip install yara-python Repo for malware and forensics. YaraGen.
Analysis Tips and Tricks
This is about … .
Malicious Documents
This is about … .
ð Ransomware
Trends In 2021 many leverage an Exchange vulnerability. Dwell time is 5 days. Name and shame websites, call and harass employees, DoS etc.