Solutions Overview

Solution Search

Solution	Author	SHA256	Difficulty	Tags	Likes	Posted
A Deep Dive into a Loader-as-a-Service	malwarecakefactory	`161f2a6ecf64dcbbc1616d536cb2ed2e53afc5a4f5deca810b0f55cc82a6b447`	medium	matanbuchus		22 Feb 2026
AgeoStealer - Electron-based infostealer	para0x0dise	`dca13fc006a3b55756ae0534bd0d37a1b53a219b5d7de236f20b0262f3662659`	medium	packed stealer electron javascript		06 Feb 2026
Ageostealer: The Game, The Malware, The Report	nanoamano	`dca13fc006a3b55756ae0534bd0d37a1b53a219b5d7de236f20b0262f3662659`	medium	packed stealer electron javascript		30 Apr 2026
AlmondRAT Analysis	0xdeluks	`55901c2d5489d6ac5a0671971d29a31f4cdfa2e03d56e18c1585d78547a26396`	easy	string deobfuscation .net rat almondrat		05 Jan 2026
Analysis Report: AlmondRAT (stdrcl.exe)	hexwarden	`55901c2d5489d6ac5a0671971d29a31f4cdfa2e03d56e18c1585d78547a26396`	easy	string deobfuscation .net rat almondrat		26 Feb 2026
Analyzing MS Office Macro Malware with Oletools	struppigel	`9887f1e95b4e11825941bd207400d1cc1580a7d438969f6c8d8c656551d339e2`	easy	loader macro office		05 Jan 2026
API Hashing in the Zloader malware	larsborn	`4029f9fcba1c53d86f2c59f07d5657930bd5ee64cca4c5929cbd3142484e815a`	medium	string deobfuscation		13 Jan 2026
Binary Refinery URL Extraction of Multi-Layered PoshLoader for LummaStealer	struppigel	`3d1a4b9e37868f54e7e7eb98aae0203e2c50b2977170e0006cd3cbcb071c6b94`	medium	lummastealer powershell vbscript hta loader		29 Dec 2025
C2 Extractor for Turla's Kopiluwak Using Binary Refinery	struppigel	`2299ff9c7e5995333691f3e68373ebbb036aa619acd61cbea6c5210490699bb6`	medium	js macro office apt kopiluwak turla vba		11 Jan 2026
Config extraction of a cobalt strike beacon	malcat	`4109d17d439e425d24e9d11956adcc63ff8e24ccfffe21dd8c5431fe969d2783`	medium	powershell config extraction cobal strike		04 Jan 2026
Cutting corners against a Dridex downloader (part #1)	malcat	`6f8f1b26324ea0f3f566fbdcb4a61eb92d054ccf0300c52b3549c774056b8f02`	medium	hta loader macro office		04 Jan 2026
Cutting corners against a Dridex downloader (part #2)	malcat	`277089cb78a9c493cecd8f5fbe70df0577d4f9557fb8b55ff5f7c2505308ca3a`	advanced	obfuscated anti-dumping dridex		04 Jan 2026
D3f@ck Loader from Inno Setup to JPHP	struppigel	`7409250e8be3bdcdaa756faff2150b13677ae066e42cefa52844c87451f6f60d`	medium	string deobfuscation loader d3f@ck inno stage 1		09 Jan 2026
D3f@ck Loader from Inno Setup to JPHP	struppigel	`e7cf02ad880e8ebb37134c5370189bd2620ce1bf60794aa8776db6ccc4d4f0f7`	medium	loader d3f@ck jphp jvm stage 2		09 Jan 2026
Defeating ConfuserEx Anti-Analysis with Hooking	struppigel	`0d7e7c6c1e02f7e5e5d0bf8f191e9d50636e71cabc2b4883d112b0f04da3d9f0`	advanced	string deobfuscation .net		29 Dec 2025
Defeating Sodinokibi/REvil String-Obfuscation in Ghidra	larsborn	`5f56d5748940e4039053f85978074bde16d64bd5ba97f6f0026ba8172cb29e93`	medium	string deobfuscation ransomware revil		07 Jan 2026
Deobfuscating NodeJs pkg packed stealer MythJs	struppigel	`49660527c1c910ad2d3c5625c1b44682e465e45b65883dfc8d7d229d1bd0ebd8`	advanced	packed stealer javascript discord mythjs nodejs pkg		07 Mar 2026

Page 1 of 4

»