Skip to content
Reverse engineered APT38 DYEPACK samples used to empty SWIFT banking servers. Use caution when handling live binaries.
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
img
sample
.gitattributes
.gitignore
README.md

README.md

APT38 DYEPACK FRAMEWORK

Reverse engineered using IDA Pro + Ghidra. Live binaries are in /sample/binaries.zip

Password: infected

DISCLAIMER

Samples are for malware research ONLY. Do not use decompiled versions of the framework to cause harm, I am not responsible for any damages caused. Handle live binaries with care, and use a VM for any dynamic analysis.

alt text alt text alt text alt text alt text alt text alt text

You can’t perform that action at this time.