Status
Not open for further replies.

thea30

Level 1
Malware Analysis Set-up

Virtual Machine:
Windows 8.1
Ubuntu Server 16.04.2

VM Windows (analyse malware):
PEID
PEstudio
Process Monitor
Regshot
ApateDNS

VM Ubuntu Server (simulate fake network):
Inetsim


Above are my environment set up to start up my malware / ransomware analysis.
I m a beginner in malware analysis. Is there anything that I need to improve or fix in the set up?

Thanks :)
 

jamescv7

Level 85
Verified
Trusted
Well considering the fact you are in Mac OS X then you are already safe for majority of malware attacks except if you download some suspicious .dmg files which you need to be vigilant.

Also prior on the establishment of virtual machine, then make sure that the connection is isolated (using NAT) to avoid any worms jump on the network.
 

Winter Soldier

Level 25
Hello, about malware analysis and reverse engineering relatively to .NET platform, I'd like to suggest to you ILSpy, a powerful tool to decompile any (non-obfuscated) malware wrote in.NET.
It can open any executable compiled with the framework by showing you a very good approximation of the original source in C# and VB.
 
Status
Not open for further replies.
Top