Click here to download all references as Bib-File.•
| 2023-08-28
⋅
Github (cocomelonc)
⋅
Malware and cryptography 20: encrypt/decrypt payload via Skipjack. Simple C++ example. |
| 2023-08-13
⋅
Github (cocomelonc)
⋅
Malware and cryptography 1: encrypt/decrypt payload via RC5. Simple C++ example. |
| 2023-07-16
⋅
Github (cocomelonc)
⋅
Malware development: persistence - part 22. Windows Setup. Simple C++ example. |
| 2023-07-07
⋅
Github (cocomelonc)
⋅
Malware development trick - part 34: Find PID via WTSEnumerateProcesses. Simple C++ example. |
| 2023-06-26
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 18: encrypt/decrypt payload via modular multiplication-based block cipher. Simple C++ example. |
| 2023-06-19
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 17: bypass UAC via fodhelper.exe. Simple C++ example. Glupteba |
| 2023-06-15
⋅
Github (cocomelonc)
⋅
Malware analysis report: Babuk ransomware Babuk |
| 2023-06-04
⋅
Github (cocomelonc)
⋅
Malware development trick - part 31: Run shellcode via SetTimer. Simple C++ example. |
| 2023-03-09
⋅
Github (cocomelonc)
⋅
Malware AV/VM evasion - part 13: encrypt/decrypt payload via Madryga. Simple C++ example. |
| 2022-04-02
⋅
Github (cocomelonc)
⋅
Malware development tricks. Find kernel32.dll base: asm style. C++ example. Conti |