This repository contains two static malware analysis labs: one exploring Emotet using VirusTotal and Hybrid Analysis, and another focused on keylogger dissection using REMnux and PEStudio.
Static and dynamic malware analysis of RustyStealer, AsyncRAT, and Babuk in an isolated Windows 11 ARM64 lab environment using PEStudio.
Static analysis of XWorm RAT, A heavily obfuscated .NET backdoor. Includes IOCs, MITRE ATT&CK mapping, and VirusTotal confirmation.
Static analysis of an AgentTesla loader, a .NET steganography based infostealer. Includes IOCs, MITRE ATT&CK mapping and a full loader breakdown.
Performed deep static analysis using tools like HxD, Cmder, HashCalc, BinText, XorSearch, FLOSS, UPX, and PEStudio to extract strings, identify file structure, detect obfuscation, and reveal indicators of compromise.
Add a description, image, and links to the pestudio topic page so that developers can more easily learn about it.
To associate your repository with the pestudio topic, visit your repo's landing page and select "manage topics."