Collecting Malware Samples from Malware Bazaar
I’m always looking for IOCs (Indicators of Compromise – domains, IP addresses, and more) in my work. This means I hunt for and download a lot of malware to analyze. …
Installing Cuckoo Sandbox on bare metal VMWare ESX
Cuckoo Sandbox is a fantastic open source tool used to manage virtual machines and analyze malware in bulk, providing easy to understand post-analysis results. However, it’s a bit dated at …
Hunting for Emotet with URLHaus
Emotet started out as a banking trojan around 2014, but has evolved to (primarily) deliver ransomware via malicious emails (malspam). Infections occur either via malicious scripts in web pages or …