polaryse

@[email protected]
41 Followers
22 Following
32 Posts
A cool little polar bear,
Who likes to be mal-aware.
#reverseengineering #malware #malwareanalysis #ghidra #macos
Bloghttps://polaryse.github.io
polaryseApr 14, 2025
CyberKaida (サイバーかいだ)Apr 9, 2025

Another malware campaign targeting streamers to steal their Discord and credentials.

Please be careful downloading games from Discord messages, especially if they are "beta" and need a password to access!

https://urlscan.io/result/0196196e-3874-703c-96eb-d146b26d214b/related/
https://bazaar.abuse.ch/sample/d75cf24a30202d36d98f7201d9a6d3df4a8a49577b15153e00a46ebab8ae9ea3/
https://app.any.run/tasks/5c272c58-1c4b-4d9e-ac21-30421d6818d4

#malware #vtuber #discord

yomiragame.blogspot.com - urlscan.io

urlscan.io - Website scanner for suspicious and malicious URLs

Show threadpolaryseMay 21, 2024
Let me know if you have any good resources to recommend :)
polaryseMay 21, 2024
I have been meaning to compile a list of resources I routinely leverage and courses I have completed in my malware RE journey. Heres a post popping it all in one nifty place: https://polaryse.github.io/topics/starting_resources/ #resources #reverseengineering #malwareanalysis #malware #ghidra #idapro #training #learning #reresources
Great resources for starting out in malware reverse engineering

A list of resources for people looking to start their adventure into the wonderful world of malware reverse engineering. This list will be dynamically updated as and when I can evaluate new training material (both paid and free) available on the market.

Show threadpolaryseMay 18, 2024
@13reak Hey thanks! I can't take all the credit, just used Hugo and the awesome themes folks have built to design it all :) definitely recommend!
polaryseMay 18, 2024
A bit of a different one from me. This time we are exploring the differences between dynamic and static analysis in reverse engineering. https://polaryse.github.io/topics/understanding_analysis/ #malwareanalysis #malware #reverseengineering #training #refundamentals #relifecycle
The difference between Dynamic and Static analysis

Explaining the fundamental differences in dynamic and static analysis in reverse engineering malware samples across Windows, Mac and Nix endpoints.

polaryseMay 18, 2024
Back with analysis of a late 2023 BlueNorOff MacOS sample. This was a great sample to understand some of the API calls malware leverages to extract information and send back to C2. https://polaryse.github.io/posts/bluenoroff-malware/
#macos #macmalware #ARM #YARA #Ghidra #reverseengineering #malware #APT #bluenoroff #lazarusgroup
Delving into BlueNorOff malware

In this article, we examine a newer strand of Bluenoroff malware from late 2023 on MacOS systems. It’s our first look at a strand of malware from an APT.

polaryseMay 13, 2024
What #macos #malware would folks prefer to read a breakdown about? #ecrime such as #lockbitransomware or #APT malware?
polaryseMay 13, 2024

#brew installing and updating #ghidra makes like so much easier when getting the latest version. I covered the installation process in my blog here: https://polaryse.github.io/posts/applesiliconenv_utm/

Just remember when you are updating #ghidra to updoot your .zshrc path and source it! And build those natives again so your decompiler still works :)

#reverseengineering #ARM #UTM #VMware #malwareanalysis #malware #analysisenvironment #macos

[Part 2] Creating a safe (and functional) RE environment on Apple Silicon - UTM

This blog post will guide you through the key programs and downloads required to successfully set up a functional and safe malware environment on M series MacBooks using UTM.

polaryseMay 5, 2024
Delving into the wonderful world of MacOS malware, this time I'm analysing "PureLand" - an info stealer targeting crypto wallets on MacOS systems. Its the first attempt and we spend some time understanding the structure of MacOS applications. https://polaryse.github.io/posts/pureland_analysis/#MacOS #macmalware #malware #reverseengineering #malwareanalysis #ARM #infostealer #pureland #eCrime
Analysis of PureLand Info Stealer

Analysis of an information stealer application designed for MacOS systems alongside a detailed breakdown of the structure of iOS applications to aid in future analysis of mac malware.

Show threadpolaryseFeb 11, 2024
@dwmetz you're most welcome! I'm glad to hear it helped!