David's blog

ESET Wiper - Hey ESET, wait for the leak..

I've reversed engineered the ESET Wiper targeting ESET's exclusive partner in Israel to send phishing emails to Israeli businesses. See this article on bleepingcomputer.com. ...more

October 19, 2024 #Malware #Reverse Engineering

Zero2Automated Advanced Malware Analysis Course - Certification

I've done the Zero2Automated Advanced Malware Analysis Course over the last few months and have now finally passed the exam! ...more

May 24, 2024 #Zero2Automated #Malware #Reverse Engineering

Hiding between opcode bytes - GUloader-like string obfuscation in Rust

I recently came across the GULoader malware family with its string obfuscation and wondered if one can build a similar technique in Rust. ...more

March 30, 2024 #Obfuscation #Malware #Reverse Engineering

Recent

ESET Wiper - Hey ESET, wait for the leak..

Zero2Automated Advanced Malware Analysis Course - Certification

Hiding between opcode bytes - GUloader-like string obfuscation in Rust

Zero2Automated - Custom Sample

Writing a simple self-injecting packer