Malware Analysis

Malware Analysis

Excel 4.0 Macro, hta, VBScript & PowerShell Analysis Ataware Ransomware – Part 0x1

turned_in_not, , , , , , , , ,
This will be multiple part blog series analysing complete infection chain from Excel to Ataware Ransomware. In this post we will discuss analysis steps for hta, VBScript & PowerShell code to extract final payload url. Let’s start with xls, I was browsing Twitter for interesting sample, then I found this…
Read More
Wireshark filter

Important Wireshark filters

turned_in_not, ,
We will look into some of the Wireshark display filters which can be used in malware analysis. We can use this Wireshark display filter after we capture pcap during dynamic malware analysis. Why do we need to do this? Help us to remove the noise from pcap Easy to extract…
Read More
Menu