nganhkhoa/mether049-malware
1
0
Fork 0
mirror of https://github.com/nganhkhoa/malware.git synced 2024-06-10 21:32:07 +07:00
Code Issues Projects Releases Wiki Activity

Update malware-analysis_ref_and_memo.md

Browse Source
This commit is contained in:
mether049 2020-03-09 21:04:18 +09:00 committed by GitHub
parent 92763a95e5
commit b02d080568
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
malware-analysis_ref_and_memo.md
View File

@ -262,7 +262,7 @@ Injecition/Hollowingされたプロセスの自動検出<br>
RTFファイルからOLEパッケージオブジェクトを検出し、埋め込みファイルを抽出<br> RTFファイルからOLEパッケージオブジェクトを検出し、埋め込みファイルを抽出<br>
# Other various file Analysis # Other various file Analysis
### lnkファイル ### lnk file
- [LnkParse](https://pypi.org/project/LnkParse3/) - [LnkParse](https://pypi.org/project/LnkParse3/)
- .lnkファイルのパーサ - .lnkファイルのパーサ
- [[MS-SHLLINK]: Shell Link (.LNK) Binary File Format](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-shllink/16cb4ca1-9339-4d0c-a68d-bf1d6cc0f943?redirectedfrom=MSDN) - [[MS-SHLLINK]: Shell Link (.LNK) Binary File Format](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-shllink/16cb4ca1-9339-4d0c-a68d-bf1d6cc0f943?redirectedfrom=MSDN)