This week we have updated several malware config extractors including SmokeLoader, XLoader and VidarStealer.

This week we've updated the malware configurations in UnpacMe giving you the option to download all decrypted strings as a JSON formatted file.

This week we've added and updated several config extractors including Matanbucus Loader, Qakbot, and Snake Keylogger.

This week we have added config extractors for the following malware families; WarZone RAT, PrivateLoader, VenomRAT, Azorult, Vidar Stealer.

This week we have added malware configuration extractors for SmokeLoader, and DbatLoader.

This week we have added malware configuration extractors for Raccoon Stealer, and Redline Stealer.

This week we have updated configuration extractors for FormBook, NetWire, and RecordBreaker (RaccoonStealer).

UnpacMe now enriches submissions with our proprietary Yara rules, malware config extraction, and CAPA.

This week we wanted to highlight the inclusion of CAPA [https://www.mandiant.com/resources/capa-automatically-identify-malware-capabilities] within the UnpacMe [https://www.unpac.me] 5.3 release. CAPA [https://github.com/mandiant/capa] detects capabilities of a binary, using a corpus of community written rules [https://github.com/mandiant/capa-rules]. Rules

With Release 5.0.0 UnpacMe now supports direct integration with the community edition of the Intezer Analyze service!