Monthly Archives: March 2016

Petya key decoder

source code (Red Petya recovery) NEWS [17 July 2016] A new (3-rd) version of Petya has been released – the current solutions no longer work. It looks exactly like the previous (green) Petya, but contains fixes in cryptography implementation and … Continue reading

Posted in Malware, Malware Decryptor, Tools | 18 Comments

Introduction to ADS – Alternate Data Streams

Sometimes during automated malware analysis in a sandbox (i.e. Cuckoo), we can get in the report the following information: “creating alternate data streams”. It is related with an interesting feature of NTFS file system,  that can be used for hidden … Continue reading

Posted in Malware, Uncategorized | Leave a comment