🇧🇷
$ whoami
just a guy who came too late to the cybersecurity party.
| Interests | Cybersecurity, Linux, Malware Analysis |
yuriaugustus 🏴☠️
- 43 Followers
- 303 Following
- 266 Posts
apoie o comércio local, beba Corote.
É aquilo, é barato demais para ser falsificado (e contaminado) e aqueles corantes azuis devem ser ainda piores que o metanol.
@jsmall I didn’t find anything on this. I’ll try to take a look tomorrow and try to understand it. Basically it’s an obfuscated powershell running some malicious code, but this part is strange.
These “simple” attacks are awesome, all the commands are executed in powershell. Not even one binary downloaded.
JP
There’s a lot of fileless attack happening in Brazil. People send a zip in WhatsApp containing a .lnk file.
I couldn’t deep dive this yet, but some things are intriguing me. What the hell is this in the beginning of the command line?
C:\Windows\System32\cmd.exe /WMRX:F0E /WFXI:BNYE5S
Enough of bullshit now
Talking about lack of focus: need to learn python to facilitate my life, but the will to learn rust is bigger haha
I also need to learn python, I’m 3 years trying to learn. But there’s always other priorities haha