Red Teaming and Malware Analysis

CtrlK

Basic tips

Find mutex Windows

Download WinObj from https://docs.microsoft.com/en-us/sysinternals/downloads/winobj
Unzip and run
Click menu File | Run as administrator
Click sessions in left hand navigation pane
Click on sub nodes until one displays BaseNamedObjects
Click on 'BaseNamedObjects'

PreviousUnpacking NextMalware instrumentation with frida

Last updated 3 years ago

Was this helpful?