Deep Analysis of Anubis Banking Malware - n1ghtw0lf
Anubis is a well known android banking malware. Although it hasn’t been around for long, it had…| n1ghtw0lf
Anubis is a well known android banking malware. Although it hasn’t been around for long, it had…| n1ghtw0lf
SmokeLoader is a well known bot that is been around since 2011. It’s mainly used to drop other malware families…| n1ghtw0lf
GCleaner is a Pay-Per-Install (PPI) loader first discovered in early 2019, it has been used to deploy other malicious families like…| n1ghtw0lf
Welcome back! This is a short blog about reverse engineering dotnet malware. When working with dotnet malware samples…| n1ghtw0lf
In the previous post we talked about writing x64dbg scripts, now let’s dive deeper and write our own plugin to do the same…| n1ghtw0lf
x64dbg is an open-source x64/x32 debugger for windows, it has dozens of features that make the life of reverse engineers and malware…| n1ghtw0lf
YARA is a tool aimed at helping malware researchers to identify and classify malware samples. It’s considered…| n1ghtw0lf
Qiling is an advanced binary emulation framework written in python and based on Unicorn…| n1ghtw0lf
In the first part we talked about the basics of Qiling, you can find it here, Now it’s time for some real…| n1ghtw0lf
Qbot is a modular information stealer also known as Qakbot. It has been active for years since 2007. It has…| n1ghtw0lf
