How to Extract Command Line (CMD process) Data from Malware Documents HD

youtube 09.02.2019

Most of malware documents (maldocs) uses CMD (cmd.exe) on its VBA macro to launch its next stage, while you can look directly on its VBA macro code, most of the time they are obfuscated and will be needing to spend some time decoding it; also others are password protected VBA Projects which you needed to crack first to be able to read the VBA macro. Hence might cause you a bit of time, depending on knowledge and experience. One quick way to be able to find out what the second stage command/script/file does is by directly examining its CMD process data along with the parameters it uses. Here is a video tutorial on extracting command line data from malware documents. Document samples used are connected to: Trickbot Malware Emotet Malware and IceID Trojan Emotet Malware and Gootkit Trojan Tools used in video: Process Explorer by Microsoft Sysinternal https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer CMD Watcher by Kahu Security http://www.kahusecurity.com/tools/CMDWatcher_v0.3.7z (password: kahusecurity) Hope this video helped you somehow. Like and subscribe for more video tutorials.

How to Extract Command Line (CMD process) Data from Malware Documents HD

Похожие видео

How to Extract Command Line (CMD process) Data from Malware Documents

How to Extract Data from Website to Excel Automatically (Tutorial 2020)

Excel 2016 - Page Break - How to Set Adjust Insert Remove Use & Preview Breaks - Inserting in MS .32

Windows 10 - Unzip Files & Folders - How to Extract a Zip File or Folder on MS Microsoft PC Explorer

How to open a .rar zip file in Winrar (unzip files in Winrar)

How To Use HTML Web Scraping Using Python

How To Run R & Python in SQL Server from Jupyter Notebooks or any IDE

How To Hack WiFi Password 2017

Why and How to Convert FAT32 to NTFS | Fat32 నుండి NTFS కి మార్చడం ఎలా మరియు ఎందుకు ?

How to install PostgreSQL - 13 on windows 10 | 2020

How to Install Eclipse on Ubuntu 22.04 LTS Linux / Ubuntu 20.04 LTS

How to insert or update MongoDB array items using SSIS (Load JSON File, Use $set, $push operator)

How to Import Large MySQL Database (.sql) file to phpmyadmin using WAMP server

How to encrypt and decrypt data in Python using Simple-crypt

How to Fix : File Is Too Large For The Destination File System

How to Fix Error Code 0xc0000225 Windows 10 - Fixed Easily

Excel 2016 - Printing & Display Formulas - How To Print a Spreadsheet on One Page, Repeat Rows Sheet

How to Get Emails From Facebook in 2018

Computer Fundamentals - PDF Format - What is a PDF File? How To Use Create & Make PDF Files in Word

Publisher 2016 - Page Size - How to Change and Create Custom Pages in MS Office 365 - Full Tutorial

PowerPoint 2016 - Insert Video - How to Add Put Videos in MS Microsoft Office 365 PPT Presentation

How to Download GTA 5 Official Game APK+Obb file and Gameplay for Android by Technical Deepak

Using Deep Learning to Extract Feature Data from Imagery

How to Import Excel Data into Access 2016 - Importing Spreadsheet File From Database in Microsoft MS

How to Fix PC Error 0xc0000142

Java Eclipse GUI Tutorial 9 # Populate JTable data from database in java Eclipse and Sqlite

PowerPoint 2016 - Download Templates - How To Search for a Free Online Template in Microsoft Office

How to cite references in LaTeX

How to Flash Any MTK Android using Smartphone Flash Tool

How to add hyperlinks to a LaTeX document

How to remove Wana Decryptor (WannaCry) and restore .WNCRY files

How to add custom music to Saints Row the Third - PC