Create windows executable to use for tests

nullidy / malware-analysis

Gather general information about the way a piece of malware interacts after execution.

1 stars 0 forks source link

Open nullidy opened 3 years ago

nullidy commented 3 years ago

nullidy commented 3 years ago

Executable needs to perform the following actions:

Open a port on the machine it was ran on
Make a web request
Make a change in windows registry (HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\run)
Create a file in the same directory it was executed on (preferably a text file for easier testing)

This needs to simulate malware, but not actually do anything malicious.

A second file to be ran after to cleanup any files that are created as well as remove the registry entry