Highest Rated Comments

Odd_Dig_12026 karma

Hi I am learning how to reverse engineer malware in particularly ransomware and I have a few questions about that.

What is important to include in a Yara rule to so you can detect new versions of malware?

How do you detect or analyse which encryption algorithm is used in the ransomware?