This project involves setting up a Virtual Machine (VM) sandbox in VirtualBox for malware analysis and examining a Remote Access Trojan (RAT).
- Virtual Machine Isolation: Setup for controlled malware execution.
- Malware Analysis: Process monitoring, registry tracking, and network simulation.
- Persistence Removal: Identified and removed scheduled tasks, registry keys, and files.
VM-Setup.md: Step-by-step guide for setting up a VirtualBox environment.Sandbox-Setup.md: Instructions for securing the malware analysis environment.Malware-Analysis.md: Report detailing malware behavior and removal.cleanup_script.py: Automates malware cleanup by removing scheduled tasks and registry keys.analyze_malware.py: Runs process and network monitoring tools automatically.
- Follow
VM-Setup.mdto create a virtual environment. - Use
Sandbox-Setup.mdto configure security settings. - Run
analyze_malware.pyto monitor malware behavior. - After analysis, execute
cleanup_script.pyto remove malware artifacts.