Vulnerable Antivirus Driver Used by Ransomware - We Reverse Engineer How!!?

How was a vulnerable AV driver used to deploy ransomware? Join us as we reverse engineer this unique deployment tool! Mandiant Blog: https://www.mandiant.com/resources/un... Aon Blog: https://www.aon.com/cyber-solutions/a... TrendMicro Blog: https://www.trendmicro.com/en_us/rese... PowerShell Script: https://www.virustotal.com/gui/file/8... ----- OALABS DISCORD   / discord   OALABS PATREON   / oalabs   Twitch   / oalabslive   OALABS GITHUB https://github.com/OALabs UNPACME - AUTOMATED MALWARE UNPACKING https://www.unpac.me/#/ -----

Join Today
Malware Triage Tips: How To Stop Wasting Time in IDA On Packed Samples [ Twitch Clip ]
▶︎

Malware Triage Tips: How To Stop Wasting Time in IDA On Packed Samples [ Twitch Clip ]

How Hackers Exploit Vulnerable Drivers
▶︎

How Hackers Exploit Vulnerable Drivers

Why Is The PE Entry Point Not The Same As Main SEH and The _security_init_cookie [Patreon Unlocked]
▶︎

Why Is The PE Entry Point Not The Same As Main SEH and The _security_init_cookie [Patreon Unlocked]

reverse engineering doesn't have to be hard
▶︎

reverse engineering doesn't have to be hard

How your ISP tracks you (even with encrypted DNS)
▶︎

How your ISP tracks you (even with encrypted DNS)

Bypassing BlackMatter Anti-Debug With x64dbg [Patreon Unlocked]
▶︎

Bypassing BlackMatter Anti-Debug With x64dbg [Patreon Unlocked]

Something is jamming GPS over Europe. Here's what we found
▶︎

Something is jamming GPS over Europe. Here's what we found

I Gave ChatGPT a Body
▶︎

I Gave ChatGPT a Body

How Do Packers Work - Reverse Engineering "FUD" Aegis Crypter
▶︎

How Do Packers Work - Reverse Engineering "FUD" Aegis Crypter

I Hacked This Temu Router. What I Found Should Be Illegal.
▶︎

I Hacked This Temu Router. What I Found Should Be Illegal.

Detecting & Hunting Ransomware Operator Tools: It Is Easier Than You Think!
▶︎

Detecting & Hunting Ransomware Operator Tools: It Is Easier Than You Think!

UnpacMe Automated Malware Unpacking - How We Built It and Why
▶︎

UnpacMe Automated Malware Unpacking - How We Built It and Why

BlueHat v18 || Return of the kernel rootkit malware (on windows 10)
▶︎

BlueHat v18 || Return of the kernel rootkit malware (on windows 10)

GHIDRA for Reverse Engineering (PicoCTF 2022 #42 'bbbloat')
▶︎

GHIDRA for Reverse Engineering (PicoCTF 2022 #42 'bbbloat')

Analyzing the FBI's Qakbot Takedown Code (Malware Analysis & Reverse Engineering)
▶︎

Analyzing the FBI's Qakbot Takedown Code (Malware Analysis & Reverse Engineering)

Unraveling a REMOTE ACCESS TROJAN (VBScript Deobfuscation)
▶︎

Unraveling a REMOTE ACCESS TROJAN (VBScript Deobfuscation)

How Computers BOOT: From Startup to Viruses
▶︎

How Computers BOOT: From Startup to Viruses

WinDbg Basics for Malware Analysis
▶︎

WinDbg Basics for Malware Analysis

But what is quantum computing? (Grover's Algorithm)
▶︎

But what is quantum computing? (Grover's Algorithm)

Analyzing the Zeus Banking Trojan - Malware Analysis Project 101
▶︎

Analyzing the Zeus Banking Trojan - Malware Analysis Project 101