Andrew PetrusUnraveling StrelaStealerStrelaStealer is a simple but effective email credential stealer targeting Outlook and Thunderbird clients. See more…Jul 16Jul 16
Andrew PetrusReverse Engineering Redosdru String DecryptionRedosdru is malware primarily functioning as a downloader, commonly associated with APT27/Iron Tiger.Jun 17Jun 17
Andrew PetrusSafely Analyzing a Malicious Email for ThreatsIn this post, I aim to share my recent experience analyzing a malicious email that was impersonating Facebook.Apr 51Apr 51
Andrew Petruswword.exe— Malware Analysis Report (Part 2)In Part 1 of this post, I analyzed a suspicious word document named “China Navy First Training 2024(CN).docx” and extracted base64-encoded…Mar 241Mar 241
Andrew PetrusChina Navy First Training 2024(CN).docx — Malware Analysis ReportI recently set out on my regular adventure in search of malware samples to analyze. I came across the following submission in Malware…Mar 241Mar 241
Andrew PetrusXeno Rat — Basic Malware AnalysisIn this post I’ll be providing a really quick and basic malware analysis of Xeno Rat. If you don’t recognize the name, that’s fine, Xeno…Mar 13Mar 13
Andrew PetrusLet’s talk about Xeno RatIf you’ve spent enough time on threat exchange websites lately, you’ll have seen an increase in reports of malware by the name of Xeno Rat.Mar 13Mar 13