App Review Hiding malicious scripts/codes using MS-DOS - DOSfuscation

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
HackExplorer

HackExplorer

New Member
Thread author
Mar 27, 2019
4
Content source
https://youtu.be/ptsF2PvD4vY
Watch Here:



I created a video showing how to de-obfuscate a DOSfuscated PowerShell command obtained from an infected Word Document. Here you will learn some simple tricks used to obfuscate commands using CMD, and De Obfuscate an advanced dosfuscation scenario. I will be using Cyberchef to perform all the decoding and String operations.
 

Attachments

  • De-Dosfuscation.png
    De-Dosfuscation.png
    347.7 KB · Views: 255
  • Like
Reactions: Deletedmessiah, Andy Ful, harlan4096 and 1 other person
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,174
The white paper:

CyberChef - The Cyber Swiss Army Knife GitHub webpage
github.com

GitHub - gchq/CyberChef: The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis - gchq/CyberChef
github.com github.com

The working tools online:

CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
gchq.github.io gchq.github.io
"CyberChef is still under active development. As a result, it shouldn't be considered a finished product. There is still testing and bug fixing to do, new features to be added and additional documentation to write. Please contribute!"
 
Last edited:
  • Like
Reactions: harlan4096 and Deletedmessiah

Similar threads

Lymphocyte
    • Like
    • +Reputation
Security News ESET repports that OilRig’s persistent attacks using cloud service-powered downloaders
Replies
0
Views
2,191
Security News
Lymphocyte
Lymphocyte
Sandbox Breaker
    • Like
    • Applause
AWS SSM Agent can be used as a RAT
Replies
0
Views
1,086
News Archive
Sandbox Breaker
Sandbox Breaker
silversurfer
    • Like
    • Wow
Cybercriminals Using Telegram Messenger to Control ToxicEye Malware
Replies
0
Views
1,415
News Archive
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top