Click here to download all references as Bib-File.•
2023-11-13
⋅
Medium shaddy43
⋅
Decrypting the Mystery of MedusaLocker MedusaLocker |
2023-10-20
⋅
cocomelonc
⋅
Malware and cryptography 21: encrypt/decrypt payload via WAKE. Simple C++ example. |
2023-10-18
⋅
Twitter (@embee_research)
⋅
Ghidra Tutorial - Using Entropy To Locate a Cobalt Strike Decryption Function Cobalt Strike |
2023-08-29
⋅
Viuleeenz
⋅
Agent Tesla - Building an effective decryptor Agent Tesla |
2023-08-28
⋅
Github (cocomelonc)
⋅
Malware and cryptography 20: encrypt/decrypt payload via Skipjack. Simple C++ example. |
2023-08-15
⋅
Github (muha2xmad)
⋅
StealC string decryption Stealc |
2023-08-13
⋅
Github (cocomelonc)
⋅
Malware and cryptography 1: encrypt/decrypt payload via RC5. Simple C++ example. |
2023-08-10
⋅
Github (muha2xmad)
⋅
Amadey string decryptor Amadey |
2023-08-03
⋅
OALabs
⋅
Golang Garble String Decryption Bandit Stealer |
2023-06-29
⋅
Avast Decoded
⋅
Decrypted: Akira Ransomware Akira |
2023-06-26
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 18: encrypt/decrypt payload via modular multiplication-based block cipher. Simple C++ example. |
2023-06-23
⋅
Medium (Cryptax)
⋅
Inside KangaPack: the Kangaroo packer with native decryption FluHorse |
2023-05-22
⋅
kienmanowar Blog
⋅
[Case study] Decrypt strings using Dumpulator |
2023-05-09
⋅
Medium walmartglobaltech
⋅
MetaStealer string decryption and DGA overview MetaStealer |
2023-04-24
⋅
Immersive Labs
⋅
Detecting and decrypting Sliver C2 – a threat hunter’s guide Sliver |
2023-04-18
⋅
ANY.RUN
⋅
PrivateLoader: Analyzing the Encryption and Decryption of a Modern Loader PrivateLoader |
2023-03-25
⋅
kienmanowar Blog
⋅
[QuickNote] Decrypting the C2 configuration of Warzone RAT Ave Maria |
2023-03-24
⋅
cocomelonc
⋅
Malware AV/VM evasion - part 14: encrypt/decrypt payload via A5/1. Bypass Kaspersky AV. Simple C++ example. |
2023-03-21
⋅
Github (rivitna)
⋅
BlackCat v3 Decryptor Scripts BlackCat BlackCat |
2023-03-09
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 13: encrypt/decrypt payload via Madryga. Simple C++ example. |