Home
Artists
Search Recent Random
Posts
Search DMs Popular Hash Lookup Tags Random
Importer
Import FAQ
Register
Partychan Matrix ThePornDude
Home Artists Posts Import Register
Patreon importer is back online! Tell your friends ✅

Live Stream VOD: Hermetic Wizard WMI Spreader Reverse Engineering COM (Patreon)

Published:
2022-03-14 01:30:56
Imported:
Tags:

Content

In this Twitch stream we continue our analysis of the WMI spreader component of the Hermetic Wizard malware used in the recent cyber attacks on Ukraine. In this stream we focus on the COM component that is used to interface with WMI.

Sample: a259e9b0acf375a8bef8dbc27a8a1996ee02a56889cba07ef58c49185ab033ec

Research Notes: Hermetic Wizard Malware

COM Reverse Engineering

For more information on COM reverse engineering check out Mike Bailey's COM Presentation. He also has a nice (free) video on Pluralsight.

Files

Live Stream VOD: Hermetic Wizard WMI Spreader Reverse Engineering COM

This is "Live Stream VOD: Hermetic Wizard WMI Spreader Reverse Engineering COM" by OALABS on Vimeo, the home for high quality videos and the people who...

Comments

m4n0w4r

Another useful vid from our friend DuMp-GuY TrIcKsTeR :https://www.youtube.com/watch?v=8tjrFm2K30Q

m4n0w4r

Just push here some of my pseudo-code: https://github.com/m4now4r/HermeticWizard/tree/main/WMI%20spreader