[New Tool] Pafish v0.57 Malware Analysis Tool Released

[New Tool] Pafish v0.57 Malware Analysis Tool Released

Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do. It is licensed under GNU/GPL version 3.

The objective of this project is to collect usual tricks seen in malware samples. This allows us to study them, and test if our analysis environments are properly implemented.

screenshot_pafish

 

Changelog v0.57

  • Fix “Failure to detect Xen” #47
  • Add hypervisor information

Changelog v0.56

  • Added new checks
  • – IsNativeVhdBoot #46
  • – OS uptime check #45
  • Added a DNS request trace for each detection #43
  • Disabled check_hook_DeleteFileW_m1 because it causes FP in Win 8

 

[button size=large style=round color=red align=none url=https://github.com/a0rtega/pafish]Download Pafish v0.57[/button]

 

Thanks to our friend Alberto Ortega, for sharing this tool with us 😉

MaxiSoler

www.artssec.com @maxisoler