all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

I found malware on my system, help me reverse engineer it

Add to bookmarks
Aug. 2, 2023, 3:09 p.m. | /u/Remote-Appearance955

Malware Analysis & Reports www.reddit.com

[https://anonymfile.com/8pWXn/virus.zip](https://anonymfile.com/8pWXn/virus.zip)

Zipped folder of the malware (was in C:/ProgramData/PerfLogs)

Loader.vbs was starting with Task Scheduler as administrator (task created on Dec 17 2022

The virus is not really obfuscated but the x.ps1 has hex data which I wasn't able to deobfuscate it.

Would appreciate any help

data dec folder hex loader malware obfuscated scheduler task task scheduler vbs virus zipped

Visit resource

More from www.reddit.com / Malware Analysis & Reports

Phising opensea 4 days, 18 hours ago | www.reddit.com
mail malware opensea phishing +1
Understanding How CVEProject/cvelistV5 Works 1 week ago | www.reddit.com
api cve cves etc +18
[Video] Triaging Files on VirusTotal 1 week, 4 days ago | www.reddit.com
files malware video virustotal
Need recommendations for Premium Tools 1 week, 5 days ago | www.reddit.com
analysis atm budget can +12
Are hidden incoming SMS common for C&C? 2 weeks ago | www.reddit.com
account android android malware carrier +12
Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters 2 weeks ago | www.reddit.com
attackers clusters critical exploiting +5
A Powerful tracing engine based on Qemu 2 weeks, 4 days ago | www.reddit.com
binary called can case +20
[Fixed] Coding The Rat King: A Multi-Family Malware Configuration Parser 2 weeks, 6 days ago | www.reddit.com
code coding configuration family +5
Dynamic Malware Analysis of Konni RAT Malware APT37 With Any.Run 3 weeks, 4 days ago | www.reddit.com
advanced amp analysis any.run +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs