Our first write up regarding Malware Analyzer can be found here. A few hours ago, an updated version – Malware Analyzer version 3.0 was released and is now available for download.
“Malware Analyzer is an open source tool for analyzing malwares. It can perform the following functions:
- String based analysis for registry, API calls, IRC Commands, DLL’s called and VMAware.
- Display detailed headers of PE with all its section details, import and export symbols etc.
- On distros, can perform an ASCII dump of the PE along with other options (check –help argument).
- For windows , it can generate various section of a PE : DOS Header, DOS Stub, PE File Header, Image Optional Header, Section Table, Data Directories, Sections
- ASCII dump on windows machine.
- Code Analysis (disassembling)
- Online malware checking (www.virustotal.com )
- Check for Packer from the Database.
- Tracer functionality: Can be used to identify
- Anti-debugging Calls tricks, File system manipulations Calls Rootkit Hooks, Keyboard Hooks, DEP Setting Change, Network Identification traces.
- Signature Creation: Allows to create signature of malware.”
This is the change log for the updated release:
- Added Banking Trojan Traces
- Added Dynamic Registry Analysis
- Process listing displays loaded modules information for all processes
- Improved Traces signatures
Download Malware Analyzer v3.0 (malware_analyser 3.0.zip) here.
The author has moved his project to a newer location. Please update your bookmarks!
Searches leading to this post:
malware analyzer 3 0, Malware Analyzer v3 0, Malware Analyzer v3 0 download, malware analyzer
Comments on this entry are closed.