วีดีโอ

What if we have the access token

is it ok to enable the clipboard share feature on flarevm ?

How do you get PEView?

I was struggling with the very last part finding the phpinfo file, danke.

One tip, personally I would go the extra step and by ensuring clipboard sharing is disabled when deploying malware. I don't think he mentioned that and did notice he had it enabled when copying hashes to virus[.]total just my two cents. But great video none the less!

Hi, mr Husky. I have a little bit problem. As you showed at 59:09 to run wannacry then try it in my flare VM but wannacry.exe didn't run. I wonder why this happened(defender was off) Thanks in advance

Windows Defender is not letting me detonate de virus :(

Dumping the access tokens is nice but dumping the refresh tokens would be cooler :)

Can you show the same lab setup using VMware Workstation Pro? I haven't been able to find a single video on this topic.

A file can perform certain checks on the system before downloading and executing the final malware, such as checking if the system is a virtual machine, for example by looking for this registry key: *HKEY_LOCAL_MACHINE\SOFTWARE\VMware, Inc.\VMware Tools* I think that all possible traces of virtualization must be eliminated

I am still a beginner, how to install the files to my flare vm and I have no connection to the internet ?

i cannot find the flare-vm github repo

Thanks! The information about the jwt token helped me find a big vulnerability

I Just found you , and you have great Content. Im trying to learn some stuff, how to be soc Analyst?

Can you make a video by testing the any malware in kali Linux , I mean whole malware analysis on kali Linux with Linux tools .

Just a quick question.. why does my Network setting is not working? I tried everything but the configuration is just not working in my case? Any solution?

hey husky i tried to download the repo on my physical host but the defender and browser didn't let me download the repo as it was detection viruses into it can you help me with it please

5:02 5:03 5:05

Malware analysis didn't work anymore.

This has been such an amazing journey. Much respect to Husky! Heath's crew @ TCM are awesome! 🎉

Man thank you this has been amazing. Liked and Subbed and going to recommend your channel. 💙💻🦠😎

Thank you very much for this video, can I get your mail id so that can discuss which are related to this in details. Am a PhD student and faculty in an organization, my work on this is very interesting.

I enjoyed these! thanks for writing them coming back now to see the ones I missed

Thanks a lot sir. Just what to know for after ransomware detonation which tools I can use for dynamic analysis like you have shown how to use procmon and procexp but when I detonate the ransomware tools get crash.

I swear to God, This is very good malware analysis for real, I will recommend to my folks, HuskyHacks, Thank you for everything

best malware analysis course. Thanks for this amazing course

floss cmmand not working in my cmd said that it is not recognizeble how to solve this issue

hello

Hello Sir, I am facing one issue, whenever I try to arm any binary, win10 defender or firewall removes it, Although all security options are turned off, Via Real Time Protection, Registry entry, group security policy etc. Still whenever any binary is converted to armed mode, windows automatically removes it. Kindly help what to do?

In remnux when i mount it said no medium found on dev/sro what i can do for these

Subscribed!!

Decided to run through AoC 2022 after doing the 2023 version because I found it very informative. I got stuck on one question and this helped me out. Thanks.

Thank you my friend. Excelent tutorial :) I'm cheering for you to do more. hhaha

When I try to mount the cdrom I get this error message, mount: /media/cdrom: no medium found on /dev/sr0.

Thank you so much for this amazing tutorial Please release next set of malware analysis video

Hi @huskyhacks ! Thank you for sharing the video. I am unable to get Fireeye Flare-vm, it it mandiant/Flare-vm ?

listening to all the safety spiels as a linux user is funny. I have a habit of just leaving malware .exes lying around my pc because it can't do anything aha

Doesn't work. even with renewed token it errors out: {"error":{"code":"InvalidAuthenticationToken","message":"Access token validation failure. Invalid audience.","innerError....

Nice video man this was fun to watch <3

Why is there no shared clipboard in this machine? It's just poor execution to force people to write everything to the answer boxes.

Thank you for the extremely informative intro to Jupyter Notebooks!

You have a new subscriber through Advent of Cyber 2023. Thank for your eloquent presentation.

when run, it says "pd is not define"

It was really good..there’s a small doubt that in this we are using get and post methods, is it using for getting information and instruction from c2 server/giving the data to the c2 server..there’s a bit of confusion in that 9:57

Unbelievable how clear your explanations are, I appreciate you doing this - thank you!

okayyyy, fun and interesting. learned something new despite needed my hand held 😂😂

Very informative explanation, Thank you brother ^___^

Thanks man!!!

Great explanation and a great tool to have in the bag!

Great video, thanks!!