cuckoo

Information Gathering

Oct 10, 2019

MalConfScan – Volatility Plugin that Extracts Data Of Malware

MalConfScan is a Volatility plugin extracts configuration data of known malware. Volatility is an open-source memory forensics framework for incident response and malware analysis. This tool searches for malware in memory images and dumps configuration data. In addition, this tool has a function to list strings to which malicious code refers. Supported Malware Families […]

root

Reverse Engineering

Oct 09, 2019

box.js – A Tool For Studying JavaScript Malware

A utility to analyze malicious JavaScript. Installation Simply install box-js from npm: npm install box-js –global Usage Looking to use box-js with Cuckoo? Use cuckoo-package.py as an analysis package. Let’s say you have a sample called sample.js: to analyze it, simply run box-js sample.js Chances are you will also want to download any payloads; […]

root