+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: Security (https://www.geeks.fyi/forumdisplay.php?fid=68)
+--- Forum: Security Vendors (https://www.geeks.fyi/forumdisplay.php?fid=87)
+---- Forum: Other Security Vendors (https://www.geeks.fyi/forumdisplay.php?fid=122)
+----- Forum: Adlice (https://www.geeks.fyi/forumdisplay.php?fid=125)
+----- Thread: Adlice PE Viewer: a tool for malware analysis! (/showthread.php?tid=5022)
Adlice PE Viewer: a tool for malware analysis! - Deep900 - 08 January 19
Adllice PE Viewer is a tool that can be used to do static malware analysis simply and fastly. Adlice PE Viewer let us to get several information about the analysed file(s), for example we can get hashes, dump process memory, imports (very useful to know more about the PE and the methods called during its execution), assembly code, hexadecimal code, hooks detection (fundamental to know more about the behaviour of an analyzed PE, so we can understand if the analysed file monitors for example new events (e.g. process termination)) with hook abilities, get strings (very important in a static analysis, we can find for example emails used by a malware), get malicious indicators, VirusTotal information, etc.
https://www.adlice.com/download/roguekillerpe/
RE: Adlice PE Viewer: a tool for malware analysis! - Deep900 - 08 January 19
Adlice PE Viewer 2.0.3:
Quote:V2.0.3 10/12/2017
=========================
- Fixed issue with TLS callbacks parsing
- Added Company name field in dashboard
- Added Product name field in dashboard
- Added Product version field in dashboard
https://www.adlice.com/download/roguekillerpe/