Home How To Detect Known Malware from Memory Images with Impfuzzy for Volatility

Detect Known Malware from Memory Images with Impfuzzy for Volatility

0
0
3,030

Impfuzzy for Volatility is a tool created by JPCERT/CC, which can be used for extracting known malware from memory images. To enable detection even after information in the malware executable file is partially altered when loaded on the memory, the tool uses “impfuzzy” method which compares the similarities of Windows executable files based on hash values generated from Import API.

Visit JPCERT/CC blog to learn more about this plugin, including usage examples and download links.

 

Load More Related Articles
Load More In How To
Comments are closed.