Category Archives: Uncategorized

Pealing back the layers of a batch script ransomware

Our sample today comes from Ahmet Payaslioglu AT_Computeus7 in This twitter thread. I was tagged along with a few other people that may be interested in the sample. The main file was run on AnyRun Here. This is where I … Continue reading

Posted in Uncategorized | Tagged , , | 1 Comment

What’s the difference and why should I care ?

On occasion I go hunting in various sandboxes by scrolling down the list of submissions to look for something interesting to look at. I don’t normally see that many PowerPoint samples  So I took an interest in this one that … Continue reading

Posted in Uncategorized | Leave a comment

Peeling away the layers of obfuscation from Excel VBA to dll

When I first seen this Tweet here by FileScan.IO @filescan_itsec I thought this would be a easy target for deobfuscation. I was wrong. The layers just kept peeling away. Looking at the Twitter link you can get a pretty good … Continue reading

Posted in Uncategorized | Tagged , , , | 1 Comment

Excel 4 macro code obfuscation

This sample comes from a Twitter thread located Here by Frost @fr0s7_ and appears to be  “BazarLoader” Since this is a Xlsb file I usually just open it up in my Office 2010 Pro sandbox and then convert to Xlsm … Continue reading

Posted in Uncategorized | Tagged , , | 1 Comment

Add a new line instead of a new paragraph in Live Writer

I have been looking for some time on the best way to just start a new line instead of always adding a extra line when you hit the enter key. Here is a sample. Here after hitting the enter key. … Continue reading

Posted in Uncategorized | Tagged | Comments Off on Add a new line instead of a new paragraph in Live Writer

Code Insert Tool Test

This Is Just A Test. Tool being tested is by Steve Dunn http://code.google.com/p/codeformatterpluginforwindowslivewriter/ Also downloadable at:  http://plugins.live.com/writer/detail/code-formatter-for-windows-live-writer   Private Sub BackgroundWorker1_DoWork(ByVal sender As Object, ByVal e As System.ComponentModel.DoWorkEventArgs) Handles BackgroundWorker1.DoWork Try Dim files As System.Collections.ObjectModel.ReadOnlyCollection(Of String) ‘ Look in each … Continue reading

Posted in Uncategorized | Comments Off on Code Insert Tool Test

Face book Viruses/Malware

Face book is getting several viruses sent around in links and when 1 person clicks on it then it can infect that system and depending on the virus and weather or not you have your username and password saved then … Continue reading

Posted in Uncategorized | Comments Off on Face book Viruses/Malware