Posts

Writing on malware analysis, reverse engineering, and Windows internals.

Dump Analysis Using Radare and WinDbg

In this article, I will give you information about taking executable files which are inside dump files. If I talk about our scenario, there is a dump file from *s*vchost.exe that look suspicious.

Emotet malware technical analysis

We can also take a look at our malicious file on IDA Pro before proceeding with unpacking. Especially in the process of the unpacking process to make our easier in advance.