Learn how to automate the decryption of the KLBanker's strings with Python.
Support us on GH: guidedhacking....
Support us on Patreon: / guidedhacking
Support us on YT: / @guidedhacking
KLBanker String Decryption - Malware Analysis with fr3dhk
guidedhacking....
The KLBanker malware is believed to be a Brazilian banking trojan used to steal a victims' money, and with the.NET v4 extension, we'll see that it's not an intuitive analysis because all of the strings are encrypted, making detection and reversing much more difficult.
We will show you how to reverse KLBanker malware and write a Python script to decrypt strings and annotate the binary. KLBanker is a banking trojan written in C# that uses AES encryption for string obfuscation. Today we'll use Python3 to break down the analysis.
Video Author: guidedhacking....
Follow us on Facebook : bit.ly/2vvHfhk
Follow us on Twitter : bit.ly/3bC7J1i
Follow us on Twitch : bit.ly/39ywOZ2
Follow us on Reddit : bit.ly/3bvOB57
Follow us on GitHub : bit.ly/2HoNXIS
Follow us on Instagram : bit.ly/2SoDOlu
KLBanker String Decryption - Malware Analysis with fr3dhk
#MalwareAnalysis #Malware #pythonprogramming