-
![www virustotal com_gui_file_46e5afb96a092307725eb4503480ed4c894168884474df01b5a679bdae7e3e5e_relations](https://github.com/moudey/Shell/assets/106290878/71e98a8f-af9e-4459-b894-1417679f1f6e)
Can …
-
### Malware detection - Yara integration
Yara is a tool which can identify and classify malware artifacts. Wazuh can receive feedback from Yara to scan new and modified files and check for malware.…
-
- [Malware Samples](https://github.com/jstrosch/malware-samples)
- [LKVM Escape](https://www.kalmarunionen.dk/writeups/2021/hxp-2021/lkvm/)
- [Recon Weekly #1 : Attack Surface Basics](https://www.ss…
-
Hi Guys,
Thank you for this awesome book!
I read all chapter through to chapter 10. All the samples worked wonderfully. But I had a few issues with sample 10-5 and 10-7.
Both of them doesn'…
-
New Threat
------------------------------------------
**Threat Category**: Application/Malicious or privacy-intrusive applications
**Threat**:
Malware may hide its icon after installation, makin…
-
win32\Delf (Pasword Stealer): https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=PWS:Win32/Delf
And other heuristics claiming Trojan\back door: https://www.virustota…
-
Since [YARA](https://yara.readthedocs.io/en/v4.1.0/index.html) is one of the well-known and the most used for malware detection. I suggest to redesign Quark rule in YARA format, making Quark a YARA co…
-
Hello, here is the Virtus Total analysis of the file:
https://github.com/akiomik/vimeo-dl/releases/download/v0.1.0/vimeo-dl_0.1.0_windows_386.tar.gz
Which indicates that it contains the MALWARE…
-
-
I don't know if other folks have/will run into this or not, but I just want to mark it down.
When I call this library inside my WSL2 Debian box, my WSL session gets killed by SentinelOne due to a `…