Tag Archives: Malware Analyses

Balbuzard – Malware Analysis Tool

Balbuzard is another python tool that you can use for analyzing malware, extracting file patterns information such as IP-addresses, URL, executable files and the header. The idea of ​​the tool is that when we need to analyze the malicious or

New release YARA 3.0

VT image

Over this week a new version of Yara have been released. YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or

McAfee FileInsight 2.1

FileInsight McAfee – free HEX- editor for Windows. Includes all the standard features HEX- editor . It has convenient interface for editing files in hex ​​and text. Able to read the structure of exe- files and organize them by entry

Process Hacker 2.32 – Utility to manage Windows process and services

Process hacker is one of the leading tool for manipulating processes and services, this is important for monitoring the changes when you are investigating a malicious code. you will need this tool in your sandbox to identify any new process

PE-bear Portable Executable reversing tool

PE-bear is a project that can be used for reversing malwares, the tool provides a very useful interface to compare two portable executable files and see the difference. Some of the features are: views multiple files in parallel recognizes known

Hook Analyser 2.5 Malware Analysis tool

Hook Analyser is another tool that you can use for reversing applications and analyzing malicious program. The tool allows investigator to launch and capture applications, hook specific process that you find suspicious, conduct a static analysis for malwares and extracting

pev PE analysis toolkit

Reversing PE executable files require a special tools because the payload that may contain the malware in PE files is packed inside another executable file that can be a legitimate. This makes a standard static analyses tool wont be able