9618
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
https://app.any.run/tasks/b5d78cb3-5861-4f0c-951e-9a743387d299
Читать полностью…
Have you searched in websites such as vt, any.run, malware bazaar etc. ?
Читать полностью…
hash of stealer that my partner wants to deeper analyze
Читать полностью…
Hello, Can someone download this sample please?
https://www.virustotal.com/gui/file/329842de309e1b4b7464ca26935e9a29c874e9ce94511601d5315c1bb8507567/details
Frequently updating the current signature sets.
Читать полностью…
User Bot is banned in the current federation (Libra's Empire), and so has been removed.
Reason: no paid requests
User 虎哥 is banned in the current federation (Libra's Empire), and so has been removed.
Читать полностью…
I asked Google and got interesting information
I'm not sure if you understand the tool's purpose
A Go versus ok of DefenderChecker, which uses the Windows Defender binary to check if a binary detected.
Читать полностью…
Maybe in the near future they can...
Thank you for quick response
Yes any.run that is why I want the sample now for further analyses. Im learning how to analyse and don't have an account on any.run
Читать полностью…
Hello, I would like to investigate file c883436a51137626711481fed4be79c8 who can help me find the executable?
Читать полностью…
Hello, sorry can someone download sample of this file:
https://www.virustotal.com/gui/file/31220893fc04fd9bfad9e8b4e2eb3a6199c910a517f4fa56a93842175c0983f0/
sha256: 31220893fc04fd9bfad9e8b4e2eb3a6199c910a517f4fa56a93842175c0983f0
seems like a fair bit of anti-sandbox and anti-VMs, and I wonder about those router models listed
Читать полностью…
https://x.com/MalGamy12/status/1874901091768586570/photo/1 Santa ransomware sample i guess :D
Читать полностью…
Reported Fon Bon [6970103676] to admins.
How are you updating the performance of ml model when new threats arise ?
Читать полностью…
New year greetings! I just did the first stable release for my project "SmuggleShield" which aims to block HTML smuggling attacks. This version implements machine learning which analyzes/learn the pattern from the current signature sets and blocks smuggling attempts in future.
X - https://x.com/RandomDhiraj/status/1874501718626521540
Hello Absent, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
this is the one that you are talking about, right?
https://github.com/gatariee/gocheck
https://www.virustotal.com/gui/file/13950ff48c7b03bf61736607ceac009cabe46cfa90108cf5912e76f68231cbed/community
Can someone download this sample?
I assumed that the tool checks different detections mechanisms but seems that does not
Читать полностью…
They possibly can do so now, if there's no rule to detect specific behaviours
But for a malware to imitate as a human 100%, I have some doubts
I don't think malware can bypass UBA
It's after all human behaviours