Incident Response: Analysis of recent version of BRC4
During our latest incident response case we have discovered a recent sample of Brute Ratel C4 packed with Themida. BRC4 is a powerful Command and Control (C2) tool which allows to control targeted workstations through an executable agent...
#Malware #Detection #Reverse #C2Brute Ratel BRC4
This article will not be a detailed malware analysis report on the features of Brute Ratel (BRC4), but rather a study focusing on several samples of the same version...
#Reverse #Malware #C2PEB Parsing & API Hashing
In this article, we'll take a look at how the API hashing technique works and how to defeat it...
#Reverse #Technique #Obfuscation