-
VM Installer for Malware Analysis
Released! Boxstarter script to setup a FREE Windows 7 VM with all the tools you need to follow our tutorials!
Step-by-step install guide
https://oalabs.openanalysis.net/2018/07/16/oalabs_malware_analysis_virtual_machine/ …
Tutorial video
https://youtu.be/gFxImi5t37c
#OpenAnalysisLive#OALabs -
New Tutorial Video
Unpacking
#REvil (sodinokibi)#ransomware with#x64dbg. And a dirty hack to fake the IAT for dynamic imports
#OpenAnalysisLive#MalwareAnalysishttps://youtu.be/0raUaL4TIo4 -
New Tutorial Video
Step-by-step reverse engineering
#REvil ransomware with#IDA. What to do once you have unpacked the malware
#OpenAnalysisLive#MalwareAnalysishttps://youtu.be/hM2Zvsak3GM -
Unpacking Quick Tip Tutorial
Unpacking #Remcos malware from a VB6 packer with#x64dbg and one breakpoint!#OpenAnalysisLive#MalwareAnalysishttps://youtu.be/DIH4SvKuktM -
New Tutorial Video
Intro to scripting with Python and
#IDAPro
Learn how to automate resolving the #REvil#ransomware dynamic API calls
https://youtu.be/R4xJou6JsIE
#OpenAnalysisLive#MalwareAnalysis#IDAPython -
New Tutorial Video
Learn how to automaticaly decrypt
#REvil strings with#IDAPro and python
The 4th part in our reverse engineering #ransomware deep-dive series.
https://youtu.be/l2P5CMH9TE0
#OpenAnalysisLive#Malware#tutorials -
New Video in collaboration with OALabs (
@herrcore):
Unpacking Princess Locker and Fixing Corrupted PE Header
#OpenAnalysisLive#MalwareAnalysisForHedgehogshttps://youtu.be/WthvahlAYFYPrikaži ovu nit -
Another great video tutorial by the guys over at
#OpenAnalysisLive! https://twitter.com/herrcore/status/965240234534408193 …
New tutorial video
Unpacking Emotet / Geodo malware using x64dbg (stage 1)
https://youtu.be/4VBVMKdY-yg
And an interesting case of IAT rebuilding using a python script
#OpenAnalysisLive#malware#unpacking#tutorial#x64dbg -
New Tutorial Video
Part 1 of 2 where we analyze Bokbot /
#IcedID malware. We unpack the first two stages covering process injection and UPX with#x64dbg and#IDAPro!#OpenAnalysisLive#OALabs#ReverseEngineeringhttps://youtu.be/wObF9n2UIAM -
herrcore (
@herrcore) Tweeted:
Malware Analysis - Quick TIP
How to unpack process injection with x64dbg one breakpoint!
https://buff.ly/2Io3VWe
#OpenAnalysisLive#ReverseEngineering#Malware https://buff.ly/2IlWpeq -
New Tutorial Video
It's been a while but we're back! And we are talking about "FUD" packers... how do they work from the malware developer's perspective, and how to unpack them!
https://www.youtube.com/watch?v=uxlpRof1QWs …
#OpenAnalysisLive#OALabs#ReverseEngineering -
RT executemalware "RT herrcore:
New tutorial video
Unpacking Gootkit malware (stage 1) with IDA and x64dbg!
A little bit of everything in this one... IDAPython scripting, dynamic IAT, memory dumping, debugging, etc.
https://youtu.be/242Tn0IL2jE
#OpenAnalysisLive#malwa… -
Baru tutorial video Emotet/Geodo membongkar malware menggunakan x64dbg (Tahap 1) https://youtu.be/4VBVMKdY-yg dan menarik kasus IAT membangun kembali menggunakan skrip python
#OpenAnalysisLive#malware#unpacking#tutorial#x64dbg@GardaSiberhttps://twitter.com/herrcore/status/965240234534408193 … New tutorial video
Unpacking Emotet / Geodo malware using x64dbg (stage 1)
https://youtu.be/4VBVMKdY-yg
And an interesting case of IAT rebuilding using a python script
#OpenAnalysisLive#malware#unpacking#tutorial#x64dbg -
New
#OpenAnalysisLive video from@herrcore !#dfir#malwarehttps://twitter.com/herrcore/status/959054607799541761 … New Tutorial Video
Unpacking Themida 2.x 64bit ... without actually unpacking : )
If a packed sample does process injection we can dump it instead of unpacking!
https://youtu.be/LYuWoNj90Bs
#OpenAnalysisLive#malware#unpackingPrikaži ovu nit
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.