A curated list of high-quality technical blogs and resources for learning malware analysis.
Warning: There are few malware blogs aimed at beginners. If you are new to Malware Analysis and RE, many of these blogs will be difficult to grasp in one sitting. The primary purpose of each post in this list is to provide a list of topics and keywords that can be used for further research and learning.
This list will be updated over time as I find and remember new stuff :)
Detailed malware analysis writeups. A mix of corporate and non-corporate blogs.
- Outpost24 - GraceWrapper Malware Analysis (requires email)
- NtQuerySystemInformation - Qakbot Report (Great in-depth analysis of Qakbot)
- BoyModerRE - Brute Ratel Analysis (Very technical analysis and review of Brute Ratel)
- Elastic - Qbot Malware Analysis (More Deep Dive Qakbot Content)
- Chuong Dong - PLAY Ransomware - (In depth look into reverse engineering a ransomware sample)
- Alexandre Borges - Malware Analysis Article 1
The remaining 6 sections are for members of the site. Signing up is free and requires only a valid email.