Greetings! Stay a while and listen!
I'm Sophia, a cybersecurity enthusiast and an IT engineer living in Hong Kong. You can find me 🏠 here.
When reviewing logs on my own site, browsing the internet, or exploring other OSINT communities, I conduct incident investigations and even deobfuscation on any suspicious activities that catch my interest.
Some malicious activities involve file entities that are usually coded in scripting languages. Some of these files have remarkable features, such as very special encoding methods or associations with known antivirus databases. Therefore, I uploaded these samples to this GitHub repository and organized them into folders based on their related URLs or filenames.
Some samples have corresponding analysis articles linked below. Please refer to the table below for more details.
| Folder Name | Article Links |
|---|---|
| dd_txt | Part one |
| ote_php | Part one, Part two |
| mmrtb.com | Part one, Part two, Part three |
If you find this content interesting, you are welcome to become a regular visitor to my site. I am actively seeking opportunities in threat intelligence analysis and incident response, with a primary focus on the Greater China region. If your team believes I would be a suitable fit, please feel free to contact me.