Month: June 2026

This is a quick analysis session where I take a suspicious file and perform malware analysis. We start off looking at static indicators and then pivot into some dynamic analysis, perform pattern matching with yara, and use some relevant tools to aid our analysis. As a quick shoutout, I recently have started another malware course…

Malware Analysis Template Basic File Information Filename: Player.exe SHA-256 Hash: CE7CB2767010C3F6DABF6FBD6E7A68510D6390DBD59C97C815EEF626E20DFAD6 File Location/Source: www.virustotal.com/gui/file/ce7cb2767010c3f6dabf6fbd6e7a68510d6390dbd59c97c815eef626e20dfad6/detection Date Acquired: 6/17/2026 Detection Context: N/A Automated Triage YARA Matches (local ruleset, Thor Lite, VT): SIGNATURE_BASE_SUSP_XMRIG_Reference FLOSS Decoded Strings: N/A Capa Findings: link function at runtime on Windows (6 matches) write file on Windows   PE-Seive/mal_unpack Results: N/A Static File Analysis…