In this video we'll take a look at ways to tell if a malware author has used AutoIt as a form of packing, along with how to "unpack" those samples. We'll perform brief behavioral analysis in Any.run, then analyze the sample statically with PE Studio before unpacking. By the end of this video you will have better insight into detecting and unpacking AutoIt scripts.
Cybersecurity, reverse engineering, malware analysis and ethical hacking content!
π Courses on Pluralsight ππ» https://www.pluralsight.com/authors/josh-stroschein
πΆοΈ YouTube ππ» Like, Comment & Subscribe!
ππ» Support my work ππ» https://patreon.com/JoshStroschein
π Follow me ππ» https://twitter.com/jstrosch, https://www.linkedin.com/in/joshstroschein/
βοΈ Tinker with me on Github ππ» https://github.com/jstrosch
The sample that we'll be looking at can be found on Any.Run at: https://app.any.run/tasks/a5992e7b-d975-4a81-9952-8d98ec530c38/.
