Author Topic: I was analyzing Equation Group's malware TripleFantasy  (Read 10120 times)

0 Members and 1 Guest are viewing this topic.

March 04, 2017, 09:32:25 PM

Narc0lepsy

  • Newbie

  • Offline
  • *

  • 2
  • Reputation:
    0
    • View Profile
I was analyzing Equation Group's malware TripleFantasy
« on: March 04, 2017, 09:32:25 PM »
So I was analyzing equation groups triplefantasy malware with pestudio and it seems as thought triple fantasy has strong anti-analysis features because as soon as I loaded the file, it killed the application.

Reply #1March 06, 2017, 02:56:40 PM

Curson

  • Global Moderator
  • Hero Member

  • Offline
  • *****

  • 2809
  • Reputation:
    100
    • View Profile
Re: I was analyzing Equation Group's malware TripleFantasy
« Reply #1 on: March 06, 2017, 02:56:40 PM »
Hi Narc0lepsy,

Malware usually use antidebug/antiVM routines to make their analysis harder.
For more information, please refer to : Windows Anti-Debug Reference.

Regards.