-
There are several closed issues regarding this, but it seems like none of them actually discuss the source of the blacklist.
I recommend reading these articles:
- https://www.securemac.com/definitions…
-
Hello there,
With curiosity, I would like to know why you want to deobfuscate pyarmor code ?
Because I use pyarmor to protect my code for software development and if my customers could decrypt it,…
-
Introduce a configurable rate-limit to define a maximum number of dropped files and traced processes. This is to avoid clogging caused by ransomware or fork bombs malware that we encounter every now a…
-
I was wondering why Cuckoo sandbox or Hatch doesn't offer a pre-configured Ubuntu .iso or virtual box machine with everything configure to run cuckoo (This includes both the host and VM installed).
…
-
Hi there, I am trying to use Radare2 to build a call graph based on Android native API. I think this is very helpful for malware analysis, something like below:
![](https://i.imgur.com/Xbsit7B.png)…
-
Hi team,
Just as the security events panel was redesigned here https://github.com/wazuh/wazuh-kibana-app/issues/2428, we are going to introduce some changes in the rest of the module. Below are som…
-
The GnollHackW executable gets reported as Trojan:Script/Wacatac.B!ml in Windows Defender. This is on Windows 10 Home N version 22H2 build 19045.4291 with Windows Feature Experience Pack 1000.19056.10…
-
Currently, there's no explicit way to capture the detection state (i.e. if something was explicitly reported/analyzed as malicious) in the AnalysisType. We should consider adding a structure for doing…
-
```
We have an automated malware analysis system that runs a variety of scans in
memory on input files. We patched PDFCore.py to enable string input of file
contents, rather than a filename. It is…
-
please, be serious
https://www.virustotal.com/gui/file/dc8866f9248242f37d950e642e480846386ae5f6873fc0426a0fcc7a39cca1cc