0xFF_Samples
This page centralizes the current status of my writeups about samples from the book Practical Malware Analysis. Some of them are quite lengthy because I can’t help myself when it comes to go down the rabbit hole. Please note this is a work in progress project and I’m not following any specific schedule. Binaries can be downloaded directly from authors’ website.
| MD5 | Filename | Writeup | comments |
|---|---|---|---|
| bb7425b82141a1c0f7d60e5106676bb1 | Lab01-01.exe | read | Part 1/2 of Lab01-01 |
| 290934c61de9176ad682ffdd65f0a669 | Lab01-01.dll | read | Part 2/2 of Lab01-01; duplicate: Lab07-03.dll |
| 8363436878404da0ae3e46991e355b83 | Lab01-02.exe | read | |
| 9c5c27494c28ed0b14853b346b113145 | Lab01-03.exe | read | |
| 625ac05fd47adc3c63700c3b30de79ab | Lab01-04.exe | read | |
| d537acb8f56a1ce206bc35cf8ff959c0 | Lab03-01.exe | read | |
| 84882c9d43e23d63b82004fae74ebb61 | Lab03-02.dll | read | |
| e2bf42217a67e46433da8b6f4507219e | Lab03-03.exe | read | |
| b94af4a4d4af6eac81fc135abda1c40c | Lab03-04.exe | read | Duplicate: Lab09-01.exe |
| 1a9fd80174aafecd9a52fd908cb82637 | Lab05-01.dll | NONE | work in progress |
| 6abde2f83015f066385d27cff6143c44 | Lab06-01.exe | NONE | Subset of Lab06-02.exe; see Lab06-04 writeup |
| c0b54534e188e1392f28d17faff3d454 | Lab06-02.exe | NONE | Subset of Lab06-03.exe; see Lab06-04 writeup |
| 3f8e2b945deba235fa4888682bd0d640 | Lab06-03.exe | NONE | Subset of Lab06-04.exe; see dedicated writeup |
| 21be74dfafdacaaab1c8d836e2186a69 | Lab06-04.exe | read | All Lab06-* in one |
| c04fd8d9198095192e7d55345966da2e | Lab07-01.exe | NONE | Same as Lab01-02.exe; see dedicated writeup |
| 7bbc691f7e87f0986a1030785268f190 | Lab07-02.exe | NONE | Unpacked version of Lab01-03.exe; see dedicated writeup |
| bd62dab79881bc6ec0f6be4eef1075bc | Lab07-03.exe | NONE | Same as Lab01-01.exe; see dedicated writeup |
| 251f4d0caf6eadae453488f9c9c0ea95 | Lab09-02.dll | read |