Posted Updated Malware Analysis11 minutes read (About 1665 words)

Analyzing the Windows LNK file attack method

Recently a friend of mine shared an interesting Malicious sample, it was a Microsoft shortcut file (LNK file) which after clicking(execution) lead to infection, although I was not aware of this type of attack vector before doing a basic research on google I was surprised that there is an increase in this type of attacks since 2017. In this post we will Analysis the LNK file malware and uncover how attacker uses multiple layers of obfuscation to evade AV and finally dropping malicious binary, we will also look into how to de-obfuscate each layer and understand what the code is doing.

Read more
Follow

Categories

Tags

ACS7121
Arduino5
Bare-Metal1
CTF14
Chat Bots2
Classification1
Data Wrangling3
Dev1
Dropper1
ESP82662
Editor1
Emacs1
Exploitation2
GandCrab1
Grey Energy1
Heap Exploitation4
Kernel Debugging1
Linux16
Linux Malware3
Malware Analysis3
Python5
ROP1
Regression1
Reverse Engineering1
Visualization1
WarGames5
Windows Malware3
Windows Reversing1
glibc1
javascript obfuscation1
pwnable13
pwnable-kr7
pwnable-tw6
radare24

Recents

Archives

Your browser is out-of-date!

Update your browser to view this website correctly.&npsb;Update my browser now

×

×