Pls help find malware

Ask your beginner questions here.
Post Reply
lili
Posts: 2
Joined: Sun Nov 05, 2017 11:51 pm

Pls help find malware

Post by lili » Sun Nov 05, 2017 11:57 pm

hello everyone.Im new in malware analyse and i want improve my dissassembler skill in IDA.Can u give some easy malware samples .

User avatar
EP_X0FF
Global Moderator
Posts: 4803
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Pls help find malware

Post by EP_X0FF » Mon Nov 06, 2017 4:08 am

Take any ransomware. They all easy as brain dead designed.
Ring0 - the source of inspiration

lili
Posts: 2
Joined: Sun Nov 05, 2017 11:51 pm

Re: Pls help find malware

Post by lili » Mon Nov 06, 2017 11:19 am

And can u give some tips where to start?Analyse all function?

User avatar
Brock
Posts: 204
Joined: Wed Apr 28, 2010 3:13 am
Location: Valparaiso, Florida USA
Contact:

Re: Pls help find malware

Post by Brock » Mon Nov 13, 2017 3:13 pm

@lili

If you're using IDA Pro 6.2+ you can switch into the user friendly Proximity View which will disassemble a complete call graph for you. The data and function code is separated for easy browsing and is displayed via tree nodes for simplified exploration. If you're looking for an in-depth guide to IDA (basic and advanced use) I don't think you can go wrong with The IDA Pro Book, 2nd Edition. This forum has quite a few useful resources as well if you search for them.

http://staff.ustc.edu.cn/~sycheng/ssat/ ... ok.2ed.pdf
Accept nothing less than STATUS_SUCCESS

Post Reply