Posts Archived Under "Malware"

It's Me, FireEye!

It's Me, FireEye!

A little over three years ago, while researching malware execution sandboxes, I found a stealth way to detect FireEye’s Malware Analysis System (MAS). In this blog post I will release the details.

Read More 
Emotional Fishes are Emotional

Emotional Fishes are Emotional

Following my research with Pafish and subsequent development of Cufish, I decided to create the Emofishes (Emotional Fishes) project.

Read More 
Curious Fish is Curious

Curious Fish is Curious

Testing virtualized malware sandboxes with Paranoid Fish wasn’t enough, there might be other things that could be improved to avoid malware detection. Enter Curious Fish, a tool to help fingerprinting sandboxes.

Read More 
A Paranoid Fish and Silver Bullets

A Paranoid Fish and Silver Bullets

I have been doing some research (and development) around virtualized malware sandboxes, being the question, “how easy is for malware to detect such an environment” the most important one, I turned to a tool called Pafish (Paranoid Fish).

Read More 
"Check my CV", Generating YARA Rules

"Check my CV", Generating YARA Rules

Recently, one e-Mail that was sent to one of my colleagues caught my attention. The message was quite believable but there were some little subtleties that gave it away. First step was to get the attachment out of the message and do an initial analysis.

Read More