You are browsing the archive for Forensic Analysis.

Propagate, Ribbonate

December 22, 2020 in Anti-Forensics, Code Injection, Forensic Analysis, Malware Analysis

I thought Propagate technique is a dead horse. Described, implemented, used in malware. But. There is perhaps one more possibility, or four. When you open Windows Explorer and Ribbons are […]

Re-sauce, Part 3

November 27, 2020 in Archaeology, Clustering, Code Injection, File Formats ZOO, Forensic Analysis

I like extracting data from many samples because this way I often discover new things. Combing through a set of manifest files I have extracted from a large sampleset of […]