Mohamed Ezat's Avatar

Mohamed Ezat

@zw01f

#MalwareAnalyst @ EG-FinCIRT | CTF Player | Myblog : https://zw01f.github.io/

34
Followers 151
Following 3
Posts 13.11.2024
Joined
Posts Following

Latest posts by Mohamed Ezat @zw01f

Preview
Auto-color - Linux backdoor A deep dive into the stealthy Linux ‘Auto-color’ Backdoor

I posted a detailed analysis of the #Auto_Color Linux #Backdoor, covering in-depth code analysis, a config extractor, and a YARA rule.

zw01f.github.io/malware%20an...

Looking forward to your feedback!

#Linux #Malware #MalwareAnalysis #ThreatResearch #ReverseEngineering #YARA

01.04.2025 14:15 👍 3 🔁 1 💬 0 📌 0

Thank you , sir

10.03.2025 23:02 👍 1 🔁 0 💬 0 📌 0
Preview
APT37 - RokRat An in-depth analysis of APT37’s latest campaign leveraging fileless RokRat malware

Hello, I wrote a new blog analyzing a sample from a recent APT37 phishing attack.

zw01f.github.io/malware%20an...

Would love to hear your feedback!
#RokRat #APT37 #ScarCruft #malware #APT #MalwareAnalysis #Infosec

09.03.2025 22:09 👍 4 🔁 2 💬 1 📌 0
Preview
GitHub - MalBeacon/what-is-this-stealer: A repository of credential stealer formats A repository of credential stealer formats . Contribute to MalBeacon/what-is-this-stealer development by creating an account on GitHub.

github.com/MalBeacon/wh...

13.01.2025 15:31 👍 8 🔁 5 💬 0 📌 0
Preview
Analysis of Counter-Ransomware Activities in 2024 CTI, threat intelligence, OSINT, malware, APT, threat hunting, threat analysis, CTF, cybersecurity, security

New Blog! Analysis of Counter-Ransomware Activities in 2024

blog.bushidotoken.net/2025/01/anal...

12.01.2025 13:21 👍 16 🔁 5 💬 0 📌 0
Post image

Malwoverview version 6.1.0 has just been released:

github.com/alexandrebor...

To install it:

$ python -m pip install -U malwoverview

This release includes several new features:

[+] Virus Exchange support.
[+] IPInfo and BGPView support.
[+] Global directory support.

#malware #threathunting

12.12.2024 15:58 👍 5 🔁 1 💬 0 📌 0