Home
Artists
Search Recent Random
Posts
Search DMs Popular Hash Lookup Tags Random
Importer
Import FAQ
Register
Partychan Matrix ThePornDude
Home Artists Posts Import Register
Patreon importer is back online! Tell your friends ✅

Live Stream VOD: Basic Malware Downloader Triage and Detection (Patreon)

Published:
2022-06-13 04:14:19
Imported:
2022-12

Content

In this twitch stream we triage two simple malware downloaders and look for common characteristics that we can use to automatically detect them. One loader turns out to be a Cobalt Strike loader and we attempt to extend our detections...

Downloader #1

9211ebf25c3cd3641451c95c50c1d3b7b2a4c53c36fa36564f3c1a177a0cda3d

Downloader #2 (Cobalt Strike)

1a10e2940151982f2ab4f1e62be6e4f53074a2ffb90c7977e16d6a183db98695

Notes (including Yara rules)

Malware Downloader Triage Notes 

Files

Live Stream VOD: Basic Malware Downloader Triage and Detection

This is "Live Stream VOD: Basic Malware Downloader Triage and Detection" by OALABS on Vimeo, the home for high quality videos and the people who love them.

Comments

Goovscoov

Nice stream! Did you revisit the yara rules and it results as suggested at the end? Next stream dives straight into DiceLoader (also nice stream :) !). Curious if you found a solution that matches your result expectations. thnx in advance! Keep up the good work! I find it very educational.

oalabs

We haven't revisited them yet, but I will! I plan on doing more streams on this type of generic triage process and we will dust these off and give them a second look.