Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra
Part 2 is out! https://www.youtube.com/watch?v=Q90uZS3taG0
In this first video of the "Reversing WannaCry" series we will look at the infamous killswitch and the installation and unpacking procedure of WannaCry.
The sample can be found here: https://www.ghidra.ninja/posts/03-wannacry-1/
Twitter: https://twitter.com/ghidraninja
Links:
- Interview with MalwareTech: https://soundcloud.com/arrow-bandwidth/s3-episode-11-wannacry-interview-with-malware-tech-at-infosec-europe-2017
- MalwareTech's blogpost about the killswitch: https://www.malwaretech.com/2017/05/how-to-accidentally-stop-a-global-cyber-attacks.html
Further reading
- Wikipedia: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
- LogRhythm Analysis: https://logrhythm.com/blog/a-technical-analysis-of-wannacry-ransomware/
- Secureworks Analysis: https://www.secureworks.com/research/wcry-ransomware-analysis
Видео Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra канала stacksmashing
In this first video of the "Reversing WannaCry" series we will look at the infamous killswitch and the installation and unpacking procedure of WannaCry.
The sample can be found here: https://www.ghidra.ninja/posts/03-wannacry-1/
Twitter: https://twitter.com/ghidraninja
Links:
- Interview with MalwareTech: https://soundcloud.com/arrow-bandwidth/s3-episode-11-wannacry-interview-with-malware-tech-at-infosec-europe-2017
- MalwareTech's blogpost about the killswitch: https://www.malwaretech.com/2017/05/how-to-accidentally-stop-a-global-cyber-attacks.html
Further reading
- Wikipedia: https://en.wikipedia.org/wiki/WannaCry_ransomware_attack
- LogRhythm Analysis: https://logrhythm.com/blog/a-technical-analysis-of-wannacry-ransomware/
- Secureworks Analysis: https://www.secureworks.com/research/wcry-ransomware-analysis
Видео Reversing WannaCry Part 1 - Finding the killswitch and unpacking the malware in #Ghidra канала stacksmashing
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Reversing WannaCry Part 2 - Diving into the malware with #GhidraReversing WannaCry Part 3 - The encryption componentDOOM on the Nintendo Game and WatchWriting Viruses for Fun, not ProfitANGRY Scammer Versus WannaCry | Tries To SYSKEY and Delete System32 | Tech Support Scammer TrollingPractical Malware Analysis Essentials for Incident RespondersGhidra - Journey from Classified NSA Tool to Open SourceRunning an SQL Injection Attack - ComputerphileHacking the Game Boy cartridge protectionMMORPG Bot Reverse Engineering and TrackingReverse Engineering A Droid Personality Chip: Part 5 - The PCB Is Completed and TestedWana Decrypt0r (Wanacry Ransomware) - ComputerphileAnalysing a Firefox Malware browserassist.dll - FLARE-On 2018Researching MissingNo Glitch in PokemonGoogle CTF - BEGINNER Reverse Engineering w/ ANGRThe $299 XBOX Series S is an Emulation Beast | MVGNintendo Hire me!!!!!!!!Ghidra keyGme Reverse Engineer and KeygenWhy Was the WannaCry Attack Such a Big Deal?Basic Windows Reversing and Attacking Weak Crypto - FLARE-On 2018