all InfoSec news
Python Ciphering : Delving into Evil Ant’s Ransomware’s Tactics
Malware Analysis, News and Indicators - Latest topics malware.news
Recently we at K7Labs came across a tweet and analysed the Evil Ant ransomware sample mentioned in the tweet.
Evil Ant,also a member of ransomware list that employs Python, a versatile and widely used programming language. This blog describes how this ransomware works and what its features are.
Binary Analysis
Evil Ant ransomware is packed by pyinstaller as shown in Figure 1.
Figure 1: File info (Evil Ant ransomware)
After extracting the pyc files from this sample using pyinstxtractor, we …
analysis ant binary binary analysis blog evil features language list malware analysis programming programming language python ransomware sample tactics