OALabs Malware Analysis Virtual Machine
Configure your own free malware analysis virtual machine with Windows 7 x86 and the OALabs Boxstarter script. »
Quick And Dirty Binary Patching With A Hex Editor
Whether it's to circumvent an anti-analysis check, or simply a bug that needs to be fixed, patching a binary is a useful technique to have in »
The case of getlook23: Using GitHub Issues as a C2
This is a brief analysis of a sample I came across on twitter which uses a GitHub issue as a communication channel for the malware. Although »
Malware Persistence: HKEY_CURRENT_USER Shell Extension Handlers
This article was transferred from the @herrcore blog. Update June 8, 2015: Harlan (@keydet89), of Regripper fame, has updated Regripper to identify this persistence mechanism. Details »
Inside The New Asprox/Kuluoz (October 2013 - January 2014)
This article was transferred from the @herrcore blog. In the past few months we have seen asprox rise to be one of the leading e-mail distributed »