Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha

Microsoft Defender is detecting legitimate DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha, resulting in ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

Microsoft Defender Experts observed a campaign beginning in late February 2026 that uses WhatsApp messages to deliver malicious Visual Basic Script (VBS) files. Once executed, these scripts initiate a ...
GitHub

PE / exe: goblin fails to parse dynamic file

Closed #1908 Closed PE / exe: goblin fails to parse dynamic file #1905 #1908 Glatzel opened on Sep 26 · edited by Glatzel ...
TWCN Tech News

What is System32 folder and how to open it?

If you are wondering what the System32 folder is on your Windows computer, then this article will help you clear up all your questions. Here is everything you need to know about the System32 folder ...
The Hacker News

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

Cybersecurity researchers have taken the wraps off an unusual cyber attack that leveraged malware with corrupted DOS and PE headers, according to new findings from Fortinet. The DOS (Disk Operating ...
GitHub

MalwareFileAnalyzer is a tool for analyzing files to detect indicators of compromise and anomalies. It supports analyzing PE (Portable Executable) and PDF files, as well as ...

Clone the repository Open the solution in Visual Studio 2022. Add your VirusTotal API key in the MalwareAnalyzer.cs file: private static readonly string VirusTotalApiKey = "YOUR_VIRUSTOTAL_API_KEY"; ...
Android Authority

What are APK files, and are they safe to install?

If you’ve been in the Android sphere long enough, you’ve probably heard people talking about APK files and terms like sideloading. Indeed, an APK can be invaluable if you cannot find a specific app on ...
IEEE

An Analysis Tool that Detects The Code Caves in Specified Sizes for Portable Executable Files

Abstract: Code caves represent sequential null bytes in portable executable files and are particularly used in reverse engineering. With the help of code caves, the execution flow of the program can ...