Vladyslav BahlaiTechnical Analysis of Formbook/Xloader v4.3Yet another version of Formbook/Xloader malware is active in the wild. Let’s dive deep into the analysis.Jul 221Jul 221
Vladyslav BahlaiDealing with “configure: error: please install OpenSSL library” yara error on MacOSConfiguring yara installation errorJun 10Jun 10
Vladyslav BahlaiHow to fix “ZYM2ETK3E7 — com.realtek.driver.AppleRTL815XEthernet”Read this article if:Dec 22, 2023Dec 22, 2023
Vladyslav BahlaiFormBook malware uses TrickGate loaderStage 1. Downloading malicious NSIS installerAug 28, 2023Aug 28, 2023
Vladyslav BahlaiUnder the hood of CVE-2023–36884CVE-2023–36884 is just another vulnerability in Microsoft Office products family that allows the attacker to execute embedded payloads…Jul 19, 2023Jul 19, 2023
Vladyslav BahlaiWinDbg not connecting to VMware virtual machine for kernel debugIf you chose to debug VM’s kernel using COM port, but the debugger is not able to detect the virtual machine, the fix is very simple and…Jun 29, 2023Jun 29, 2023
Vladyslav BahlaiMacBook 12 (A1534) flashes the battery icon and does not turn onIf your MacBook 12 stopped turning on after the disassembly, then this story may be helpful for you.Jun 29, 2023Jun 29, 2023
Vladyslav BahlaiInstalling Yara “ — with-crypto” on MacOSDon’t know about you, but I struggle every time I’m setting up a new working environment for malware analysis on a Mac. The problem is…Sep 6, 2022Sep 6, 2022
Vladyslav BahlaiUkrainians’ Data Leak and Why It’s RealDisclaimer. The information below is just my assumption. I’m not responsible for any consequences.Jan 23, 2022Jan 23, 2022