Malware Analysis | Updated Tools and Resources | Start 2021 Virus Free!

[11]

Hi everyone! :)

After lurking around here for the last few weeks and, admittedly, being a bit of a leecher, I figured it was time that I tried to contribute something. I came across an outdated list of malware analysis resources and buzzers went off in my head, that was perfect!  :pepecrab:

So here is an updated list of resources, tools and other random helpful 'things' surrounding the topics of Malware Analysis, Recognition and Solutions!

Analyzing malware can be a very daunting task, but fortunately for us there are tons of resources publicly available to make our lives easier - here I've tried to make your lives even easier by collecting them in one locatio0n! 

PORTABLE EXECUTABLE ANALYSIS TOOLS

• EXEinfo PE
  
• PE Bear
  
• PEv
  
• PEstudio
  
• PEiD
  
• Resource Hacker
  
• Explorer Suite
  
• Dependency Walker
  

 

DYNAMIC/BEHAVIOR ANALYSIS TOOLS

• Process Explorer v16.32
  
• Process Monitor v3.60
  
• Process Hacker 2.39
  
• Sysmon v12.03
  
• API Monitor
  
• Kahu Security Suite [API Dumper, Binary File Converter, CMD Watcher, Converter, ConverterNET, Cover Fire, Data Converter, Difference Calculator, File Converter, Javascript Deobfuscator, JS Packer, PHP Converter, PHP Script Decoder, Pinpoint, PSUnveil, Registry Dumper, Reneo, Revelo, Sandbox Tester, Scout, Script Decoder, Script Deobfuscator, Secret Decoder Ring, Sounder, SpiderMonkey for Windows, Text Decoder Toolkit, URL Monitor, URL Revealer, Welcome Mat, Word to Decimal, ZeuS ENC Decrypter]
  
• Autoruns for Windows v13.98
  
• regshot
  

Reverse Engineering Tools

• Ghidra by NSA [Meaning Be Careful!]
  
• dotPeek
  
• Scylla
  
• PdbXtract
  
• IDA Pro
  

Analyzing Suspicious Files with Sandboxes & VMs

• VirusTotal
  
• Hybrid Analysis
  
• Cuckoo Sandbox
  
• Any.Run
  
• Intezer
  

Malware Analysis VM

• Remnux
  
• FlareVM
  
• Kali Linux
  

VB Analysis Tools

• ViperMonkey
  
• Decode-VBE
  

Strings Analysis Tools

• FLOSS
  
• Sysinternals Strings
  
• FireEye Stringsifter
  

Debugging Tools

• x64dbg
  
• Immunity Debugger
  
• WinDbg
  

Network Tools

• WireShark
  
• Microsoft Network Monitor
  
• Netcat
  
• BurpSuite
  
• Fiddler
  
• DNS Query Sniffer
  
• FakeNet-NG
  
• iNetSIM
  

Miscellaneous

• Didier Stevens Suite
  
• FireEye Market
  
• ProcDOT
  
• Malzilla
  
• Kahu Security Tools
  
• Hash My Files
  
• CyberChef
  
• HxD
  

Resources & Getting Started

• Colin Hardy
  
• OALabs
  
• Malware Unicorne Workshops
  
• MalwareAnalysisForHedgeHogs
  
• How to Start RE/Malware Analysis? - Hasherezade
  
• Malwology
  
• Haruko
  
• MalwareTech
  
• Malware Breakdown
  
• Journey Into Accident Response
  
• Analyzing Malicious Documents Cheat Sheet
  

Malware Samples

• MalShare
  
• Malware Traffic Analysis
  
• Virusign
  
• theZoo
  
• VX Vault
  
• CyberCrime Tracker
  

This took me FOREVER to format and put together - since I've been leeching here for so long I wouldn't dare ask for likes or anything, but I'd love if you'd leave a reply if you found this useful to let me know I'm on the right track :) 

[349]

Good shit I think 

I don't know anything about Malware though, I get ratted every time I install a malware on my Encrypted folder to virtual machine the viruses   


@Fatso is this how you analize viruses?

[11]

uhm   not even sure what to say to that

[1.197]

Good shit I think 

I don't know anything about Malware though, I get ratted every time I install a malware on my Encrypted folder to virtual machine the viruses   


@Fatso is this how you analize viruses?

Too many words. I'm too lazy to read any of this right now

 

______________

I will always verify via cracked.to pm, don't get scammed

[47]

shabab

[60]

Good shit I think 

I don't know anything about Malware though, I get ratted every time I install a malware on my Encrypted folder to virtual machine the viruses   


@Fatso is this how you analize viruses?

Too many words. I'm too lazy to read any of this right now

wow