Solutions Overview

Solution Search

Solution	Author	SHA256	Difficulty	Tags	Likes	Posted
Malware Analysis - PoisonX Rootkit, Kernel Driver Rootkit Markup in Ghidra	struppigel	`db5d284b9a9c02f76030ba89fd85c7c8f830f8fe4195cdc1f9cddf15f127125d`	medium	kernel mode rootkit kernel driver poisonx		20 Jun 2026
A Short Journey from Zero to a Binref One-liner	david1a2a3a	`13063a496da7e490f35ebb4f24a138db4551d48a1d82c0c876906a03b8e83e05`	easy	loader emulation office cve-2018-0798		13 Jun 2026
Windows Shortcut (.LNK)	hwangstice	`95a636c2b3af0bc69cc05f7b32281ff17c58cbe637bec5f8918f7514a5f37e09`	easy	lnk godmode		13 May 2026
Ageostealer: The Game, The Malware, The Report	nanoamano	`dca13fc006a3b55756ae0534bd0d37a1b53a219b5d7de236f20b0262f3662659`	medium	packed stealer electron javascript		30 Apr 2026
Sweet Minecraft Mods – The Dark Tale of SugarSMP Scam, Malware & Extortion	struppigel	`060ed0ec27a0a4ad7b55425ed56d8ef0c55aa61b499d4884d1679f18d518ddf3`	medium	js stealer discord curseforge jar java minecraft modpack		23 Mar 2026
Deobfuscating NodeJs pkg packed stealer MythJs	struppigel	`49660527c1c910ad2d3c5625c1b44682e465e45b65883dfc8d7d229d1bd0ebd8`	advanced	packed stealer javascript discord mythjs nodejs pkg		07 Mar 2026
Trying out speakeasy	Voixel	`b0e365c603013751085946ff0500f7d8c0e3c106d3b02c368c2f267279660a6d`	medium	loader anti-vm anti-debug godrat		02 Mar 2026
SilentNight Analysis Report	hexwarden	`4029f9fcba1c53d86f2c59f07d5657930bd5ee64cca4c5929cbd3142484e815a`	medium	string deobfuscation		26 Feb 2026
Analysis Report: AlmondRAT (stdrcl.exe)	hexwarden	`55901c2d5489d6ac5a0671971d29a31f4cdfa2e03d56e18c1585d78547a26396`	easy	string deobfuscation .net rat almondrat		26 Feb 2026
A Deep Dive into a Loader-as-a-Service	malwarecakefactory	`161f2a6ecf64dcbbc1616d536cb2ed2e53afc5a4f5deca810b0f55cc82a6b447`	medium	matanbuchus		22 Feb 2026
AgeoStealer - Electron-based infostealer	para0x0dise	`dca13fc006a3b55756ae0534bd0d37a1b53a219b5d7de236f20b0262f3662659`	medium	packed stealer electron javascript		06 Feb 2026
SmokedHam - Malware Analysis	oxygen	`361f20f5843a9d609d42fc17f164eb44ed4f86ae3062e66e978c2c93890f65fd`	medium	python packed smokedham		04 Feb 2026
Unpacking Ageostealer Built with Electron Framework	struppigel	`dca13fc006a3b55756ae0534bd0d37a1b53a219b5d7de236f20b0262f3662659`	medium	packed stealer electron javascript		04 Feb 2026
Extractor for custom PyInstaller executables as seen in PDFly or PDFClick	struppigel	`09474277051fc387a9b43f7f08a9bf4f6817c24768719b21f9f7163d9c5c8f74`	advanced	packed custom wrapper evilai pdf converter pyinstaller		01 Feb 2026
The Wolf in AutoIt’s Clothing - How Vidar Hides in Plain Sight	para0x0dise	`eee8a68511bd00ff98425cf9e9bd12873a5e742548fe7e2b72add7ff8dbabb24`	advanced	packed autoit cypherit		31 Jan 2026
Zpaq to .NET Downloader to Injector DLL Unpacking	struppigel	`c2c466e178b39577912c9ce989cf8a975c574d5febe15ae11a91bbb985ca8d2e`	medium	string deobfuscation packed .net injector stage 2 encrypted purecrypter		27 Jan 2026
Zpaq to .NET Downloader to Injector DLL Unpacking	struppigel	`1c33eef0d22dc54bb2a41af485070612cd4579529e31b63be2141c4be9183eb6`	easy	loader stage 1 bloated zpaq		27 Jan 2026

Page 1 of 4

»