You are browsing the archive for elf.

Using Detect It Easy to… detect it easy

April 21, 2023 in elf, linux, Reversing

I love Detect It Easy. It’s my go-to tool when it comes to triaging malicious samples and it continuously exceeds my expectations… Except the times when I forget to use […]

Decrypting SHell Compiled (SHC) ELF files

January 13, 2023 in De-everything, Un-everything, elf, linux, shc

In its recent blog post AhnLab described a campaign that relies on SHell Compiled (SHC) ELF files. I wanted to see if I can replicate their reverse engineering work and […]