JayzerJul 4, 2024

GootLoader malware employs sophisticated evasion techniques, using time-consuming loops and function arrays to delay malicious code execution. This article dissects GootLoader's JavaScript, revealing its anti-analysis methods that challenge sandboxes. Using Node.js debugging in Visual Studio Code, researchers uncover the malware's deobfuscation process and execution flow.

#GootLoader #MalwareAnalysis #CyberSecurity #ThreatIntel #AntiAnalysis

https://unit42.paloaltonetworks.com/javascript-malware-gootloader/

Dissecting GootLoader With Node.js

We demonstrate effective methods to circumvent anti-analysis evasion techniques from GootLoader, a backdoor and loader malware distributed through fake forum posts.

Unit 42
0xor0neJul 2, 2023

#Linux #AntiAnalysis and #AntiDebugging #rust library.

https://github.com/0xor0ne/debugoff

#reversing #reverseengineering #rustlang

GitHub - 0xor0ne/debugoff: Linux anti-debugging and anti-analysis rust library

Linux anti-debugging and anti-analysis rust library - GitHub - 0xor0ne/debugoff: Linux anti-debugging and anti-analysis rust library

GitHub