9685
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
Hi folks, I have an infrastructure running CAPEv2 that "works". It's for research so, we're satisfied :)
Now I need to keep track of the values of the instruction pointer (to measure coverage).
Could you suggest what to use?
I tried the built-in debugger but it's really too slow.
Otherwise, do you know any of the main developers and could you put me in touch?
There is Yara matching in case you aren't aware...
Читать полностью…
Hey guys do you know where can I learn more about values returned in the stack after an exception occurred? I’m working with a sample with custom sehandler which access to structure using the esp so I want lo learn more about it
Читать полностью…
it lookjs like the file inside has password, and i don't know it :(
Читать полностью…
For those who reverse engineer, please take 3 minutes of your time to fill in a survey I'm conducting: https://forms.gle/3h2CsFhpMdKPssve9
More context:
My name is Max 'Libra' Kersten and I'm a malware analyst. This survey will collect the answers you provide without the need for any personal information. The goal of this survey is to get a better understanding of the workflow of other reverse engineers. The results will be shared back with the community in the future, allowing us all to benefit.Читать полностью…
If you have any questions, please do reach out to me on Twitter or LinkedIn.
The survey itself shouldn't take you more than a couple of minutes. Thank you for your time!
Hello ky_giorgos, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Its a message to get people to look at the profile, which is a crypto scam
Читать полностью…
User Secret has 1/3 warnings; be careful!
Reason:
don't provide ideas
User 🔞Sujon has 1/3 warnings; be careful!
Reason:
read rules
Anyone could suggest some dorks for VT, so as to find malware for RE from newly submitted samples.
Читать полностью…
hi guys, does someone can please share with me this sample?
3e410397955d5a127182d69e019dbc8bbffeee864cd9c96e577c9c13f05a232f
https://www.virustotal.com/gui/file/3e410397955d5a127182d69e019dbc8bbffeee864cd9c96e577c9c13f05a232f/summary
Hi I'm new to malware research. What's best software to reverse malware
Читать полностью…
Hello Coliday, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
Hello! Can someone share with me this sample?
d7ba57d09945192105625366fdd211600f2b955d529e75cf099ea322f497689f
https://www.virustotal.com/gui/file/d7ba57d09945192105625366fdd211600f2b955d529e75cf099ea322f497689f/relations
New FedBan
Fed: Libra's Empire
FedAdmin: ❤🦦
User: Sweta Rani
User ID: 2035747490
Reason: illegal activity
New FedBan
Fed: Libra's Empire
FedAdmin: alex 27
User: 🔞Sujon
User ID: 5552355479
Reason: crazy token shit
New FedBan
Fed: Libra's Empire
FedAdmin: Libra
User: Zx7
User ID: 5774184596
Reason: get lost