Basic Static and Dynamic Analysis of Amadey Loader
In this blog post, I'll cover some basic static and dynamic analysis around Amadey Loader. Amadey is available on Russian-speaking hacker...
top of page
Cybersecurity blog
Search
z3r0day_504
- Mar 14, 2022
- 1 min
What is fuzzy hashing?
In a recent conversation with a coworker, the topic of fuzzy hashing came up and how frequently he uses it in his malware analysis...
2,564 views0 comments
z3r0day_504
- Feb 21, 2022
- 2 min
Ousaban MSI Installer Analysis
In this blog post, I'll provide some cursory coverage on Ousaban and its initial stage via a Microsoft Installer (MSI) file. Ousaban is a...
480 views0 comments
z3r0day_504
- Feb 7, 2022
- 3 min
Basic PDF Analysis - Formbook Malware
Analysis of Formbook malware delivered via PDF file
241 views0 comments
z3r0day_504
- Jan 28, 2022
- 3 min
Malware Headliners: LokiBot
Analysis of LokiBot password stealer
234 views0 comments
z3r0day_504
- Jan 21, 2022
- 2 min
Malware Headliners: Emotet
Emotet is a banking trojan that topped the list for most widely seen malware in 2021. Similar to some of my previous posts, Emotet is...
155 views0 comments
z3r0day_504
- Jan 20, 2022
- 1 min
Indicators of Compromise (IOCs) List from Analyzed Samples
Living list of IOCs identified for all samples analyzed and published
113 views0 comments
z3r0day_504
- Jan 15, 2022
- 3 min
Malware Headliners: Qakbot
Learn how to dissect Qakbot malware as we analyze one of the latest versions found in the wild
232 views0 comments
z3r0day_504
- Jan 9, 2022
- 4 min
Malware Headliners: Dridex
Dridex is a banking trojan that has plagued the cyberverse for years. Check out this post for some initial malware analysis.
237 views0 comments
z3r0day_504
- Jan 2, 2022
- 6 min
"Cracking Open the Malware Piñata" Series: Intro to Dynamic Analysis with RedLineStealer
Dynamic analysis involves running a binary and observing its behavior in a controlled environment. This can be of significant benefit...
164 views0 comments
z3r0day_504
- Dec 27, 2021
- 7 min
"Cracking Open the Malware Piñata" Series: Intro to Static Analysis with Kazy Trojan
Static analysis, put concisely, is getting information from a specimen without actually executing/detonating it. While it is less...
34 views0 comments
z3r0day_504
- Dec 20, 2021
- 5 min
"Cracking Open the Malware Piñata" Series: Analysis Environment Setup
In recent weeks I've spent a good amount of time delving into a topic that truly fascinates me, and that's malware reverse engineering....
24 views0 comments
z3r0day_504
- Oct 22, 2021
- 4 min
AutoRun Malware: Why your computer is summoning dark lords after you plugged in that parking lot USB
For the last three weeks you've overheard your coworkers go on and on about the MMORPG they've been playing online. Curiosity starts...
40 views0 comments
z3r0day_504
- Aug 23, 2021
- 4 min
Pesky Persistence: How "Turning It Off and On Again" May Not Solve Your Problem
Anyone that uses a computer has heard the old "have you tried turning it off and on again" as a solution to experiencing issues;...
14 views0 comments
z3r0day_504
- Aug 10, 2021
- 4 min
Hacking the Brain: The Psychology of Phishing and Social Engineering
We hear it regularly in workplace trainings and general reporting: watch out for phishing emails and don't click on those links! Some...
15 views0 comments
z3r0day_504
- Jul 28, 2021
- 4 min
Process Injection: Malware Lurking in the Shadows of Legitimate Programs (Part 2)
In part 1 of this series, we delved into a basic understanding of what process injection is and the different mechanisms by which it can...
12 views0 comments
z3r0day_504
- Jul 12, 2021
- 4 min
Process Injection: Malware Lurking in the Shadows of Legitimate Programs (Part 1)
It's a Saturday afternoon, you're tinkering with your computer, and a random curiosity happens to pique your interest. You start taking a...
13 views0 comments
z3r0day_504
- Jul 6, 2021
- 4 min
Malicious C2 Domains: How to stomp a moving target
It's rare to find single-stage malware that is powerful, tailored, and effective on a particular target. How do attackers retain control...
97 views0 comments
z3r0day_504
- Jun 27, 2021
- 3 min
Web Shells: The Hacker's Pearl in a Sea of Networked Environments
In this blog post, we break down what a web shell is and why it poses a risk to a digital environment, review a recent event involving...
10 views0 comments
z3r0day_504
- Jun 18, 2021
- 4 min
Windows Authentication Bypass via Accessibility Binaries
We've probably all encountered the frustrating moment of trying to login to your computer after a brief hiatus from work or school, to ...
26 views0 comments
Home: Subscribe
CONTACT
bottom of page