Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra
Part 2 is out! https://www.youtube.com/watch?v=Q90uZS3taG0
In this first video of the "Reversing WannaCry" series we will look at the infamous killswitch and the installation and unpacking procedure of WannaCry.
The sample can be found here: https://www.ghidra.ninja/posts/03-wannacry-1/
Twitter: https://twitter.com/ghidraninja
Links:
- Interview with MalwareTech: https://soundcloud.com/arrow-bandwidth/s3-episode-11-wannacry-interview-with-malware-tech-at-infosec-europe-2017
- MalwareTech's blogpost about the killswitch: https://www.malwaretech.com/2017/05/how-to-accidentally-stop-a-global-cyber-attacks.html
Further reading
- Wikipedia: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
- LogRhythm Analysis: https://logrhythm.com/blog/a-technical-analysis-of-wannacry-ransomware/
- Secureworks Analysis: https://www.secureworks.com/research/wcry-ransomware-analysis
Видео Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra канала stacksmashing
In this first video of the "Reversing WannaCry" series we will look at the infamous killswitch and the installation and unpacking procedure of WannaCry.
The sample can be found here: https://www.ghidra.ninja/posts/03-wannacry-1/
Twitter: https://twitter.com/ghidraninja
Links:
- Interview with MalwareTech: https://soundcloud.com/arrow-bandwidth/s3-episode-11-wannacry-interview-with-malware-tech-at-infosec-europe-2017
- MalwareTech's blogpost about the killswitch: https://www.malwaretech.com/2017/05/how-to-accidentally-stop-a-global-cyber-attacks.html
Further reading
- Wikipedia: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
- LogRhythm Analysis: https://logrhythm.com/blog/a-technical-analysis-of-wannacry-ransomware/
- Secureworks Analysis: https://www.secureworks.com/research/wcry-ransomware-analysis
Видео Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra канала stacksmashing
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Reversing WannaCry Part 2 - Diving into the malware with #Ghidra
Reversing WannaCry Part 3 - The encryption component
DOOM on the Nintendo Game and Watch
Writing Viruses for Fun, not Profit
ANGRY Scammer Versus WannaCry | Tries To SYSKEY and Delete System32 | Tech Support Scammer Trolling
Practical Malware Analysis Essentials for Incident Responders
Ghidra - Journey from Classified NSA Tool to Open Source
Running an SQL Injection Attack - Computerphile
Hacking the Game Boy cartridge protection
MMORPG Bot Reverse Engineering and Tracking
Reverse Engineering A Droid Personality Chip: Part 5 - The PCB Is Completed and Tested
Wana Decrypt0r (Wanacry Ransomware) - Computerphile
Analysing a Firefox Malware browserassist.dll - FLARE-On 2018
Researching MissingNo Glitch in Pokemon
Google CTF - BEGINNER Reverse Engineering w/ ANGR
The $299 XBOX Series S is an Emulation Beast | MVG
Nintendo Hire me!!!!!!!!
Ghidra keyGme Reverse Engineer and Keygen
Why Was the WannaCry Attack Such a Big Deal?
Basic Windows Reversing and Attacking Weak Crypto - FLARE-On 2018