all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Reversing - .NET main is not the first thing executed

Add to bookmarks
Oct. 7, 2023, 9:31 a.m. | MalwareAnalysisForHedgehogs

MalwareAnalysisForHedgehogs www.youtube.com

The main() method in .NET applications is considered as the entry point. But it is not the first thing being executed, which is purposefully used to deter reverse engineers. We write Intermediate Language assembly code to find out what is actually executed before main() in a .NET assembly.

Malware Analysis Course: https://www.udemy.com/course/windows-malware-analysis-for-hedgehogs-beginner-training/?couponCode=B1FC6A4384F0C7A05A98

Washis article: https://blog.washi.dev/posts/entry-points/

Follow me on Twitter: https://twitter.com/struppigel

00:00 Intro
00:19 Writing a Hello World in IL
02:43 Adding a static constructor
04:28 Adding a module constructor
05:24 …

applications assembly code engineers entry find language main point reverse reversing what is

Visit resource

More from www.youtube.com / MalwareAnalysisForHedgehogs

How to deal with bloated malware #malwareanalysis #debloat #shorts 1 week ago | www.youtube.com
deal malware malwareanalysis reverseengineering +2
Malware Analysis - D3f@ck loader from Inno Setup to JPHP 1 week, 5 days ago | www.youtube.com
analysis download engineer implementation +11
Reversing PyInstaller in 6 Steps #python #reverseengineering #pyinstaller #shorts 2 weeks, 6 days ago | www.youtube.com
decompile engineer extract file +8
Can PDFs be Malware? #malware #pdf #exploits #shorts 3 weeks, 1 day ago | www.youtube.com
can exploits malware pdf +4
Malware Simulators cannot test Antivirus Software 4 weeks ago | www.youtube.com
antivirus antivirus software capabilities malware +7
Triaging Files on VirusTotal 1 month, 1 week ago | www.youtube.com
can depth files find +11
Malware Analysis - JS to PowerShell to XWorm with Binary Refinery 2 months ago | www.youtube.com
analysis atom binary configuration +19
Malware Theory - Five Unpacking Methods and Generic Unpacking Approach 2 months, 2 weeks ago | www.youtube.com
breakpoints debugger emulation encryption +7
Binary Ninja - Fix unresolved stack pointer 3 months, 1 week ago | www.youtube.com
binary binary ninja fix function +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com