04 - Uncovering the Final Stage Payload and Identifying the Malware Family (it's AgentTesla)

In the last video we'll identify our final stage payload - which is a .Net binary. We'll discuss some common obfuscation techniques, such as code flattening, and some techniques to help overcome it. We'll use dnSpy to decompile the code and identify the configuration data before finally using open-source intell to help identify the family.

Join this channel to get access to perks:
   / @jstrosch  

Cybersecurity, reverse engineering, malware analysis and ethical hacking content!
🎓 Courses on Pluralsight 👉🏻 https://www.pluralsight.com/authors/j...
🌶️ YouTube 👉🏻 Like, Comment & Subscribe!
🙏🏻 Support my work 👉🏻   / joshstroschein  
🌎 Follow me 👉🏻   / jstrosch  ,   / joshstroschein  
⚙️ Tinker with me on Github 👉🏻 https://github.com/jstrosch
🤝 Join the Discord community and more 👉🏻 https://www.thecyberyeti.com