Malware Research

[Alex.exe]

Discussion about malware. News, research papers/articles, techniques, defending against malware, etc. 

[DrDisexon]

Much have tool if you're traveling and you're organization need you to analyze malware.

portable sandbox ---   https://github.com/Rurik/Noriben

[ChickenKing]

if you want to reverse engineer or analyze malware, try out Remnux. It's my go to. 

[MalwareTech]

ReactOS is a really good resource for learning how Windows works internally (it's basically almost a 1:1 clone of Windows XP). It's the closest you can get to having the full Windows source code. Very useful for figuring out how internal APIs work and thus malware. Will post some more malware specific resources soon!

[DrDisexon]

10 hours ago, MalwareTech said:

ReactOS is a really good resource for learning how Windows works internally (it's basically almost a 1:1 clone of Windows XP). It's the closest you can get to having the full Windows source code. Very useful for figuring out how internal APIs work and thus malware. Will post some more malware specific resources soon!

looking forward @MalwareTech

[Alex.exe]

Any online resources for a quick analysis? Like JoeSandbox or something like that? 

[MalwareTech]

2 minutes ago, Alex.exe said:

Any online resources for a quick analysis? Like JoeSandbox or something like that? 

Any.run is my favorite 

[Alex.exe]

I'm planning to setup a sandbox environment. What is the best way to move malware samples from the internet to the sandbox? Maybe USB? But sometimes I'd need to remote into the sandbox to run analysis. 

[MalwareTech]

Could write some sort of HTTPS server which allows you to upload them, or install an SCP endpoint.

[Alex.exe]

Thanks for the suggestion! I'll let ya know! 

[syntheticvoid]

At work we upload the samples in a password protected zip folder to wetransfer or a password protected sharepoint folder