Static and dynamic malware analysis of a trojanized Windows executable using FLARE VM, FLOSS, Metasploit, and Kali Linux.

Reverse engineered a PE64 binary using IDA Pro. Identified XOR obfuscation (key: 0x5A) via static analysis, traced the decrypt() function, and recovered the hidden password. Includes Python decryption script & full walkthrough.

A structured malware analysis lab covering static analysis, dynamic behavioral analysis, memory forensics, and detection engineering with Sigma and Wazuh.

Isolated FLARE-VM + REMnux detonation lab for safe malware analysis and detection development.