Skip to content

Reverse engineered APT38 DYEPACK samples used to empty SWIFT banking servers. Use caution when handling live binaries.

Notifications You must be signed in to change notification settings

649/APT38-DYEPACK

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

APT38 DYEPACK FRAMEWORK

Reverse engineered using IDA Pro + Ghidra. Live binaries are in /sample/binaries.zip

Password: infected

DISCLAIMER

Samples are for malware research ONLY. Do not use decompiled versions of the framework to cause harm, I am not responsible for any damages caused. Handle live binaries with care, and use a VM for any dynamic analysis.

alt text alt text alt text alt text alt text alt text alt text

About

Reverse engineered APT38 DYEPACK samples used to empty SWIFT banking servers. Use caution when handling live binaries.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published