You are browsing the archive for Code Injection.

Re-sauce, Part 3

November 27, 2020 in Archaeology, Clustering, Code Injection, File Formats ZOO, Forensic Analysis

I like extracting data from many samples because this way I often discover new things. Combing through a set of manifest files I have extracted from a large sampleset of […]

Feed the children, feed them well

May 30, 2020 in Code Injection

This is a quick blurb about idea I shared on Twitter today. When you create a child process system calls a combo of these two functions: NtAllocateVirtualMemory NtWriteVirtualMemory One could […]