Venus Chhantel is a SOC Analyst with expertise in Malware Analysis. He possesses a strong understanding of various types of malware, their behavior, and their impact on computer systems, as well as exposure to various security tools and technologies. His primary responsibility includes detecting, identifying, and analyzing potential threats and intrusions in systems and networks to improve security posture and protect the assets of the organization.
Venus Chhantel
September 8, 2024
Reversing Malware Internals: DarkGate v6
Table Of Contents Execution Flow Technical Analysis Initial Stager URL Obfuscation Second Stager CAB Extraction & Execution by DLL Third Stager DLL SideLoading Decrypting Files from Encryted Dropper Drop Next Stager Files Fourth Stager Decrypting Obfuscated Autoit (.
Read More September 7, 2023
Analysis on “MalDoc in PDF”
Table Of Contents Introduction: Identification: Analysis Static Analysis Dynamic Analysis: Detection with YARA: IoC: Introduction: This year, in July, a new “MalDoc in PDF” attack which could evade detection and analysis was shared by JPCERT.
Read More September 7, 2023
Black Basta 1.0 Ransomware
Table Of Contents Introduction Case Study: Black Basta 1.0 Identification Analysis MITRE ATT&CK TTP: Detection with YARA: This blog will be covering code level analysis of Black Basta 1.
Read More September 7, 2023
Malware Families Attempting to Exploit Legacy Vulnerability (CVE-2017–11882)
Table Of Contents Introduction: CVE-2017–11882 Summary: Technical Analysis: Identification: Analysis: Recommendations: Conclusion: Introduction: CVE-2017–11882, a 6-year-old vulnerability in Microsoft Office, is still being attempted to exploit by several malware families.
Read More September 7, 2023
Rhysida 0.1 Ransomware
Table Of Contents Introduction: Case Study: Rhysida 0.1 Ransomware Identification: Analysis: MITRE ATT&CK TTP: Detection with YARA: Conclusion: Introduction: arlier this year, in May, Rhysida, a new ransomware strain has surfaced.
Read More
March 20, 2023
Analysis on malware imposing as adult content of Nepali celebrity
Table Of Contents Background Analysis MITRE ATT&CK TTP Further Findings Indicator of Compromise (IoC) Recommendations Background In the recent month, there is misinformation circulating concerning leaks of private video of Nepali female celebrities.
Read More
March 6, 2023
Analysis on Stock Trading Nepal malware campaign
Table Of Contents Background Analysis Detection Through SayCure Indicator of Compromise Further Findings Recommendations Background In the recent event of time, there has been increase in scam and malware incidents in Nepal.
Read More