Exposing DoNex Ransomware Secrets with Malcore!

Channel:
United States Guided Hacking
Subscribers:
178,000
Published on ● Video Link: https://www.youtube.com/watch?v=LPaMroC-gMk


Duration: 0:00
2,873 views
0

🔥 DoNex Ransomware does WHAT?
❤ ️ Try Malcore For FREE https://link.malcore.io/redirect/guidedhacking..
👨 ‍💻 Buy Our Courseshttps://guidedhacking.com/register/r/
💰 Donate on Patreonhttps://patreon.com/guidedhacking  
❤ ️ Follow us on Social Medhttps://linktr.ee/guidedhackingking

© GuidedHacking - GuidedHacking™

🔗 Arthttps://guidedhacking.com/threads/donex-ransomware-analysis-with-malcore.20750/don...

❤ ️ Try Malcore Forhttps://link.malcore.io/redirect/guidedhacking/guid...

Donex malware https://app.malcore.io/share/6700512884e17599109bebb6/6705ee23c6859106c77b74c405128...

👨 ‍💻 Video Author: Codehttps://guidedhacking.com/members/codenulls.272722/s/cod...

Code Nulls also known as Danish Khan is a professional Malware Analyst and tutor who has been making text and video tutorials for GH since 2023. He enjoys analyzing new malware samples, writing reports, and delivering threat intelligence to cybersecurity businesses. He has experience with a wide variety of tools, such as IDA Pro, x64dbg, Process Monitor, YARA, Wireshark and more, which aid him in his reverse engineering endeavors

📜 Video Description:
Malware Analysis with Malcore using DoNex ransomware as a sample. Using the malcore.io malware sandbox, I'll demonstrate how to efficiently perform malware analysis by leveraging both static and dynamic analysis features of Malcore.

I examine the malware's static properties with Malcore, analyzing file entropy imports & suspicious assembly code. The analysis reveals antidebugging imports & dynamic imports loaded at runtime, which are common techniques used by malware to evade static analysis. The string summary hints at the use of RSA encryption & typical ransomware behaviors such as deleting batch files to remove traces.

We analyze the process hollowing techniques employed by DoNex ransomware, by utilizing functions like "unmap view of file" & "create file mapping," the ransomware injects malicious code into legitimate Windows processes.Malcore's dynamic output feature logs the arguments of each function call, allowing for detailed observation of these suspicious activities. I also cover how the ransomware terminates security related processes, deletes shadow copies, & clears event logs to hinder recovery efforts.

Finally, I showcase how malcore.io's features can be used to understand & analyze malware like DoNex effectively. Whether you're using the free tier or a paid subscription, Malcore provides comprehensive tools for dynamic analysis. I encourage you to try out malcore for your own malware analysis needs.

What is Malcore?
Malcore is a malware analysis sandbox designed for static and dynamic examination of malicious software.

Who uses Malcore?
Cybersecurity researchers, malware analysts, and IT security professionals use Malcore to study and detect malware.

Why use Malcore?
Malcore provides efficient tools for analyzing binaries, identifying malicious behavior, and generating detailed reports.

How does Malcore work?
It uses advanced static and dynamic analysis to inspect file properties, detect suspicious activity, and generate YARA rules.

What is DoNex Ransomware?
DoNex Ransomware is a malware variant that encrypts files on infected systems and demands a ransom for decryption.

Where is DoNex Ransomware distributed?
It is often spread through phishing emails, malicious attachments, and compromised websites.

How does DoNex Ransomware operate?
It encrypts files using RSA and other algorithms, disables security processes, and may spread laterally across networks to maximize impact.

📝 Timestamps:
0:00 Donex Ransomware Intro
0:08 Macore Static Analysis
1:11 String Analysis & Encryption
1:57 Import Functions
3:11 Process Hollowing
4:15 Dynamic Analysis
5:07 Ransomware Tactics
6:07 Ransom Note
6:45 Malcore Features

✏ ️ Tags:
DoNex Ransomware
malcore.io malware sandbox
malware analysis
dynamic analysis
static analysis
ransomware behavior
anti-debugging techniques
process hollowing
malware detection
ransomware tactics
ransomware analysis tools
malware imports analysis
malcore malware analysis
malware research
ransomware



Other Videos By Guided Hacking


2025-01-02Why is IL2CPP Harder to Hack?
2024-12-27The BEST Unreal Engine Dumper!
2024-12-23BEAT the Cheat Engine Mini Games Before They BEAT YOU!
2024-12-19RIOT GAMES Cracks Down on Cheaters HARD
2024-12-14Game Hacking Bible = The Best Resource for Beginners #gamehacking
2024-12-13MASTER the x64 Cheat Engine Tutorial in 2024!
2024-12-09What is the Thread Stack? 👨‍💻
2024-12-05Roblox Hackers SELL OUT! #robloxhackers #robloxexploits
2024-11-26Why C++ For Game Hacking? #gamehacking
2024-11-23GAME HACKERS CAUGHT Red Handed! #gamehacking #anticheat
2024-11-22Exposing DoNex Ransomware Secrets with Malcore!
2024-11-14GuidedHacking.com is the GOAT #gamehacking #guidedhacking
2024-11-13What Nobody Tells You About Becoming a Vulnerability Researcher
2024-11-08Cheat Engine IMGUI? Coming soon! #cheatengine #imgui
2024-11-05Unity il2cpp Hacks #gamehacking #gamemodding
2024-11-03Arrays in C - Low Level C Programming
2024-10-27WriteProcessMemory ❤️ Extremely Rare Self Own
2024-10-24Low Level C Data Types - Structs, Floats & Doubles
2024-10-23ImGui Meme #imgui #gamehacking
2024-10-17Integer Data Types in C - Low Level Programming
2024-10-14Why did Zac Make CS420? #gamehacking