In my second text about Malware Studies, this time I’ll show the analysis made in Locky Ransomware. Like the previous post, this executable was obtained in theZoo. SHA1 sample: b606aaa402bfe4a15ef80165e964d384f25564e4 To know the timestamp of the executable, for more information about the version, a search with the hash was made…

I’m been focusing my studies in Reverse Engineering and Malware Analysis. The approach that I’m following is downloading the theZoo’s Ransomware samples and analyse them. The first one that I chose was Cerber. SHA1 sample: c69a0f6c6f809c01db92ca658fcf1b643391a2b7 I started the analysis running the sample in x32gdb to watch the instructions while…

Hacktoria’s monthly CTF in May was Downtown Murderer. There were 6 steps and I will focus in Step 2, which consists in geolocate three images, and I will show how I was able to find the locations without using Google Lens and/or Reverse Image Search. Before we start, it’s important…

For those who don’t know, LetsDefend is a plataform where, among other things, simulates a SOC and there are some alerts to be resolved. …

Windows Kernel Programming — Pavel Yosifovic I started the year reading this book. I always wanted to learn more about how the Windows Kernel works and nothing better to understand like learning how to develop a Windows Driver, which is loaded in the kernel. The book starts with an overview of Windows Internals before starts to…

Recently I received an e-mail message which says that’s from Serasa Experian. Serasa is a Brazilian credit research firm and the term “receive a notification from Serasa” is commonly vinculated to have finance debts, due to this fact this firm is a good candidate to be used in phishings. In…

It was just one more day reading my emails, then I decided to take a look in the spam folder to see if there could have something interesting to analyze. So, I saw this message: Wow! It seems that I’m being a victim of sexortation. What can I do if…

Today I’ll write an article showing the steps that I took to solve an OSINT Quiz as part of the requirements to obtain the Ronin Level in #OSINTDojo. The Quiz that I will talk about is the following: Like many problems involving images, doing a reverse image search we…

I’m write today to show the steps that I took to solve an OSINT Quiz. The Quiz that I’ll talk about it’s the following: McDonald’s has restaurants around the entire world and each city has many of them. I started looking for something that can give me a clue…