UnpacMe Weekly: RAT Pack
This week we have added config extractors for the following malware families; WarZone RAT, PrivateLoader, VenomRAT, Azorult, Vidar Stealer.
More issues
UnpacMe Weekly: Smokin' Loaders
This week we have added malware configuration extractors for SmokeLoader, and DbatLoader.
UnpacMe Weekly: Extractor Updates
This week we have added malware configuration extractors for Raccoon Stealer, and Redline Stealer.
UnpacMe Weekly: Maintenance & Bug Hunting
This week we have updated configuration extractors for FormBook, NetWire, and RecordBreaker (RaccoonStealer).
UnpacMe Weekly: Malware Configs, Yara Updates, & capa v4.0
UnpacMe now enriches submissions with our proprietary Yara rules, malware config extraction, and CAPA.
UnpacMe Weekly: CAPA
This week we wanted to highlight the inclusion of CAPA
[https://www.mandiant.com/resources/capa-automatically-identify-malware-capabilities]
within the UnpacMe [https://www.unpac.me] 5.3 release. CAPA
[https://github.com/mandiant/capa] detects capabilities of a binary, using a
corpus of community written rules [https://github.com/mandiant/capa-rules].
Rules
Intezer x UnpacMe Integration
With Release 5.0.0 UnpacMe now supports direct integration with the community edition of the Intezer Analyze service!
AutoIt Extraction and More
With Release 2.7.0 UnpacMe now supports automatic extraction of embedded AutoIt scripts, URL extraction from VB6 Downloaders, and a lot of bug fixes!
Malpedia Integration
With Release 2.4.0 UnpacMe now supports tighter integration with Malpedia!