Basic malware analysis

Was reading the latest issue of Hakin9 magazine (4/2009). There is an article about harnessing music and videos to attack innocent parties. It struck me as strange that it never occurred to me to use a hex editor to analyse the malicious Mp3 file that I studied previously. Lo and behold! I found the URL that was triggered when victims try to play the fake song.

No comments:

Post a Comment

VM for ransomware investigations

 My laundry list of tools/software useful when investigating ransomware cases.    Tor: Obviously need this to access Onion sites. Transmissi...