Mohamed Ezat
@zw01f.bsky.social
#MalwareAnalyst @ EG-FinCIRT | CTF Player | Myblog : https://zw01f.github.io/
I posted a detailed analysis of the #Auto_Color Linux #Backdoor, covering in-depth code analysis, a config extractor, and a YARA rule.
zw01f.github.io/malware%20an...
Looking forward to your feedback!
#Linux #Malware #MalwareAnalysis #ThreatResearch #ReverseEngineering #YARA
zw01f.github.io/malware%20an...
Looking forward to your feedback!
#Linux #Malware #MalwareAnalysis #ThreatResearch #ReverseEngineering #YARA
Auto-color - Linux backdoor
A deep dive into the stealthy Linux ‘Auto-color’ Backdoor
zw01f.github.io
April 1, 2025 at 2:15 PM
I posted a detailed analysis of the #Auto_Color Linux #Backdoor, covering in-depth code analysis, a config extractor, and a YARA rule.
zw01f.github.io/malware%20an...
Looking forward to your feedback!
#Linux #Malware #MalwareAnalysis #ThreatResearch #ReverseEngineering #YARA
zw01f.github.io/malware%20an...
Looking forward to your feedback!
#Linux #Malware #MalwareAnalysis #ThreatResearch #ReverseEngineering #YARA
Hello, I wrote a new blog analyzing a sample from a recent APT37 phishing attack.
zw01f.github.io/malware%20an...
Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec
zw01f.github.io/malware%20an...
Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec
APT37 - RokRat
An in-depth analysis of APT37’s latest campaign leveraging fileless RokRat malware
zw01f.github.io
March 9, 2025 at 10:09 PM
Hello, I wrote a new blog analyzing a sample from a recent APT37 phishing attack.
zw01f.github.io/malware%20an...
Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec
zw01f.github.io/malware%20an...
Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec
Reposted by Mohamed Ezat
Reposted by Mohamed Ezat
Malwoverview version 6.1.0 has just been released:
github.com/alexandrebor...
To install it:
$ python -m pip install -U malwoverview
This release includes several new features:
[+] Virus Exchange support.
[+] IPInfo and BGPView support.
[+] Global directory support.
#malware #threathunting
github.com/alexandrebor...
To install it:
$ python -m pip install -U malwoverview
This release includes several new features:
[+] Virus Exchange support.
[+] IPInfo and BGPView support.
[+] Global directory support.
#malware #threathunting
December 12, 2024 at 3:58 PM
Malwoverview version 6.1.0 has just been released:
github.com/alexandrebor...
To install it:
$ python -m pip install -U malwoverview
This release includes several new features:
[+] Virus Exchange support.
[+] IPInfo and BGPView support.
[+] Global directory support.
#malware #threathunting
github.com/alexandrebor...
To install it:
$ python -m pip install -U malwoverview
This release includes several new features:
[+] Virus Exchange support.
[+] IPInfo and BGPView support.
[+] Global directory support.
#malware #threathunting