Configuring a Windows Domain to Dynamically Analyze an Obfuscated Lateral Movement Tool
Researchers at FireEye recently encountered a large obfuscated malware sample that offered several interesting analysis challenges. It used virtualization that prevented us from producing a fully-deobfuscated memory dump for static analysis. Statically analyzing a large virtualized sample can take anywhere Read More …

