Reverse Engineering Malware, Part 4: Windows Internals
Tags
attack-pattern: Data Direct Malware - T1587.001 Malware - T1588.001 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID 50e65cdb-3af3-44a5-978e-63e382685505
Fingerprint ba3e9952f4a7b7cd
Analysis status DONE
Considered CTI value 0
Text language
Published July 4, 2017, 5:46 p.m.
Added to db Jan. 18, 2023, 11:20 p.m.
Last updated Nov. 18, 2024, 10:49 a.m.
Headline Reverse Engineering Malware, Part 4: Windows Internals
Title Reverse Engineering Malware, Part 4: Windows Internals
Detected Hints/Tags/Attributes 35/1/3
Source URLs
Redirection Url
Details Source https://www.hackers-arise.com/post/2017/07/04/reverse-engineering-malware-part-4-windows-internals
URL Provider
Details Provider Source level domain
Details hackers-arise.com www.hackers-arise.com
Attributes
Details Type #Events CTI Value
Details File 115 
win32k.sys
Details File 534 
ntdll.dll
Details File 5 
kernell32.dll