Using emulation to reverse engineer the new Emotet 64-bit version. Expand to see more…
Full stream: https://www.patreon.com/oalabs
Research nots including a config extractor and Yara rule:
https://research.openanalysis.net/emotet/malware/2022/04/30/emotet_x64.html
Dumpulator:
https://github.com/mrexodia/dumpulator
—–
OALABS DISCORD
https://discord.gg/6h5Bh5AMDU
OALABS PATREON
https://www.patreon.com/oalabs
Twitch
https://www.twitch.tv/oalabslive
OALABS GITHUB
https://github.com/OALabs
UNPACME – AUTOMATED MALWARE UNPACKING
https://www.unpac.me/#/
—–
Comments