1
0
mirror of https://github.com/nganhkhoa/malware.git synced 2024-06-10 21:32:07 +07:00

Update malware-analysis_ref_and_memo.md

This commit is contained in:
mether049 2020-10-04 00:33:01 +09:00 committed by GitHub
parent 08fb2931d7
commit c0485a91cc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -547,6 +547,8 @@ Injecition/Hollowingされたプロセスの自動検出<br>
- exiftoolでもパース可能
- [[MS-SHLLINK]: Shell Link (.LNK) Binary File Format](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-shllink/16cb4ca1-9339-4d0c-a68d-bf1d6cc0f943?redirectedfrom=MSDN)
- .lnkファイルのバイナリフォーマット
- **[LECmd.exe](https://github.com/EricZimmerman/LECmd )**
- **[lp.exe](https://tzworks.net/prototype_page.php?proto_id=11)**
# C2 Analysis
- **[C2MATRIX](https://www.thec2matrix.com/matrix)<br>**