z3r0day_504May 16, 20222 minEmotet DLL Part 2: Dynamic AnalysisPicking up where we left off in the previous post, we're going to start off by executing the DLL. Based on the export function we saw in...
z3r0day_504Apr 25, 20222 minEmotet DLL Part 1: Static AnalysisIn a previous post, I covered the file analysis for an Excel file containing malicious code related to Emotet. In this post, we take...
z3r0day_504Apr 4, 20222 minBasic Static and Dynamic Analysis of Amadey LoaderIn this blog post, I'll cover some basic static and dynamic analysis around Amadey Loader. Amadey is available on Russian-speaking hacker...
z3r0day_504Feb 21, 20222 minOusaban MSI Installer AnalysisIn this blog post, I'll provide some cursory coverage on Ousaban and its initial stage via a Microsoft Installer (MSI) file. Ousaban is a...
