Saturday, November 26, 2011

Hook Analyser 1.4 updates

The Hook Analyser 1.4 development is on full swing and I must say that code base has changed a lot. The overall functionality and UI has changed.

Few updates from my side -

  • Intergration with VMware workstation to automate the analysis tasks i.e - sandbox mode.
  • Improved hooking functionality
  • Detailed report from the analysis.
  • Bug fixes.

I will post some videos soon.

Till then, stick to version 1.3.

Saturday, November 19, 2011

Hook Analyser 1.4 - Development

I had request from a few people asking, how this tool could be used for malware analysis. Since I'm currently working on the next release, so I decided to analyse a malware sample using Hook Analyser 1.4 (in development).

Please note; this release is not stable at the moment and I advice to continue using version 1.3 if you need to. 

Some of the interesting information I was able to extract -

File system indicators
Network indicators
Malware compile platform
Malware attribution (Pretty interesting)

Hook Analyser log files (generated during malware analysis) -

Analysis video - 

Thursday, November 10, 2011

Hook Analyser 1.3

Here is the update of this release.

--Smart Hooking
--Bug fixes

Copy is available to contributors/donor.

Feel free to reach on