Awesome video! You really broke down how the Redline Stealer works in a way that makes sense. It's wild to see how these hacks happen. Can't wait to see what you dive into next!
Really interesting - I couldn't follow 100%, as I'm fairly new to de-obfuscating, but it's really cool to get a glimpse of an actual workflow! Keep uploading videos like these man 💜
Thanks for the kind words. I didn't do too much regarding deobfuscation in this video other than using the de4dot fork I specified in the description to deobfuscate both of the stage one files. If you are interested in learning how to write your own (relatively) basic de4dot deobfuscator, I have an article about that on my GitHub site: ryan-weil.github.io/posts/AGENT-TESLA-2/
I almost feel honoured to have been recommended this video. 8 views and a channel created today. Maybe this is because the type of video is quite similar to those of Eric Parker, who I watch a lot, although your video appears lot more in depth. Very interesting, but due to lack of the technological knowledge, I could not understand a lot. Let's see if the algorithm blesses you with more recommendations. 😊
@@wittingsun7856 Kasseika looks cool because it uses BYOVD. May be worth looking at when I have more time. Otherwise, I am not interested in ransomware at all in terms of its encryption scheme, etc. so I'd probably just analyze the attack chain itself! Also, from what I've heard the ransomware payload is virtualized with Themida, so even if I wanted to do some static analysis on it I'd stand no chance against that haha (and I find dynamic analysis boring).
not a clue whats going on but this just got posted bros going somewhere 100%
Awesome video! You really broke down how the Redline Stealer works in a way that makes sense. It's wild to see how these hacks happen. Can't wait to see what you dive into next!
Really interesting - I couldn't follow 100%, as I'm fairly new to de-obfuscating, but it's really cool to get a glimpse of an actual workflow! Keep uploading videos like these man 💜
Thanks for the kind words. I didn't do too much regarding deobfuscation in this video other than using the de4dot fork I specified in the description to deobfuscate both of the stage one files. If you are interested in learning how to write your own (relatively) basic de4dot deobfuscator, I have an article about that on my GitHub site: ryan-weil.github.io/posts/AGENT-TESLA-2/
I almost feel honoured to have been recommended this video. 8 views and a channel created today.
Maybe this is because the type of video is quite similar to those of Eric Parker, who I watch a lot, although your video appears lot more in depth. Very interesting, but due to lack of the technological knowledge, I could not understand a lot.
Let's see if the algorithm blesses you with more recommendations. 😊
Very nice vid, that's the recommendations I love.
Hey I’m watching but am very confused love it tho :)
Can you do some hard ransomware?
Any particular one you have in mind?
@@RyanWeil-r1n maybe noescape, hunters and kasseika, what do you think?
@@wittingsun7856 Kasseika looks cool because it uses BYOVD. May be worth looking at when I have more time. Otherwise, I am not interested in ransomware at all in terms of its encryption scheme, etc. so I'd probably just analyze the attack chain itself! Also, from what I've heard the ransomware payload is virtualized with Themida, so even if I wanted to do some static analysis on it I'd stand no chance against that haha (and I find dynamic analysis boring).
hallo can i get your contact?