(re-post from Nov/24)

The sixth article in the Malware Analysis Series (MAS) is available:

https://exploitreversing.com/2022/11/24/malware-analysis-series-mas-article-6/

The C2 configuration extractor is slightly less trivial than expected.

Thank you @ilfak and @HexRaysSA for supporting and providing me with IDA Pro.

#malwareanalysis #malware