Welcome to the MalwareInvestigation repository. This repository is dedicated to the analysis of various malware samples. Our goal is to provide detailed reports on the behavior, characteristics, and techniques used by these malicious software.
| Malware name | original host | type |
|---|---|---|
| Gruppe | discord ip logger | stealer/hvnc/miner |
| Gruppe/modded | discord server nuker | stealer/hvnc/miner/gruppe modded new domain added |
| Akira | Cracked app on cracked.io | stealer/rat |
| unknown-944587479 | fake xworm source code | possible rat and stealer |
You can use the tool i posted here hosts_blocker.bat to block the stealers domains and rat ips i reversed
I use a variety of tools and techniques to conduct my malware analysis. This includes:
- Disassemblers and decompilers
- Stealth sandboxes + online sandboxes
- Network traffic analyzers
- Debuggers and runtime analysis tools
Contributions are always welcome!
If you have a malware sample send the link in the issues