Malware Analysis - C2 extractor for Turla’s Kopiluwak using Binary Refinery
We create a C2 extractor for APT malware Kopiluwak. For that we need to unpack two layers of code (JScript, VBA) and remove the slight obfuscation. The sample is suitable for beginners who want to train their RE skills with JScript, VBA and C2 extraction. You find the sample download below.
Malware Analysis course:
binary refinery:
oletools:
sample:
kopiluwak on malpedia:
Follow me on Twitter:
1 month ago 00:09:02 1
1 month ago 00:41:39 1
2 months ago 00:31:23 1
2 months ago 00:08:27 1
3 months ago 00:08:01 1
3 months ago 02:27:57 1
4 months ago 00:06:50 1
5 months ago 00:28:31 1
5 months ago 00:31:10 1
5 months ago 00:32:12 1
5 months ago 00:20:53 1
5 months ago 00:57:39 1
7 months ago 00:08:03 1
8 months ago 00:15:34 1
8 months ago 00:08:28 3
8 months ago 00:08:32 5
8 months ago 00:01:15 1
9 months ago 00:39:13 1
9 months ago 00:05:30 1
9 months ago 00:34:03 1
10 months ago 00:13:11 1
10 months ago 00:40:05 1
10 months ago 00:27:09 1
10 months ago 02:09:07 8
