Reversing WannaCry Part 2 - Diving into the malware with #Ghidra
In the second video of the "Reversing WannaCry" series we continue to dive into the malware and find some encrypted components and the first traces of the decryption & encryption functionality of the ransomware. We also learn how to use OOAnalyzer to easily reverse engineer C++ code in Ghidra!
Part 1: https://www.youtube.com/watch?v=Sv8yu12y5zM
The scripts and Ghidra projects can be found here: https://github.com/ghidraninja/ReversingWannacry
Twitter: https://twitter.com/ghidraninja
Links:
- OOAnalyzer: https://insights.sei.cmu.edu/sei_blog/2019/07/using-ooanalyzer-to-reverse-engineer-object-oriented-code-with-ghidra.html
- My Ghidra Scripts: https://github.com/ghidraninja/ghidra_scripts
Видео Reversing WannaCry Part 2 - Diving into the malware with #Ghidra канала stacksmashing
Part 1: https://www.youtube.com/watch?v=Sv8yu12y5zM
The scripts and Ghidra projects can be found here: https://github.com/ghidraninja/ReversingWannacry
Twitter: https://twitter.com/ghidraninja
Links:
- OOAnalyzer: https://insights.sei.cmu.edu/sei_blog/2019/07/using-ooanalyzer-to-reverse-engineer-object-oriented-code-with-ghidra.html
- My Ghidra Scripts: https://github.com/ghidraninja/ghidra_scripts
Видео Reversing WannaCry Part 2 - Diving into the malware with #Ghidra канала stacksmashing
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Analysing a Firefox Malware browserassist.dll - FLARE-On 2018Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #GhidraWana Decrypt0r (Wanacry Ransomware) - ComputerphileMMORPG Bot Reverse Engineering and TrackingReversing WannaCry Part 3 - The encryption componentWannaCry Ransomware Infection Heat MapIoT Security: Backdooring a smart camera by creating a malicious firmware upgradeMSX and PCE emulation on G&WBeginner Reverse Engineering | Part 2: Compiling and Decompiling (Ghidra + IDA)Ghidra - Journey from Classified NSA Tool to Open SourceKaspersky vs RansomwarePatching Binaries (with vim, Binary Ninja, Ghidra and radare2)Upgrading Game & Watch The Legend Of Zelda flash to 64MB without hot airgunMalwarebytes 4.1 Test vs MalwareIn-depth: Raspberry Pi Pico's PIO - programmable I/O!Exploring the Mew GlitchBuilding a Malware Lab - Software, Hardware, Tools and Tips for Effective Malware AnalysisMozi Malware - Finding Breadcrumbs...rC3 Talk: Hacking the Game & Watch