MaldevAcademyLdr.1 – Advanced EXE Loader Unveiled

It is our latest innovation in cybersecurity tools. This EXE loader goes beyond conventional designs, offering advanced features for robust system interactions.

With a focus on enhanced security and sophisticated integration capabilities, it’s set to revolutionize the way users interface with executable files.

Quick Links

EXE Loader

Maldev Academy’s October update saw several interesting modules being released to our users. One of them was our DLL loader that was successfully tested against several EDRs including MDE and Crowdstrike.

We promised to release an EXE version of the loader on GitHub.

Features

Indirect-Syscalls using an improved HellsHall implementation.
Dll Unhooking via the \KnownDlls\ directory
Payload injection by chunking
Using custom AES encryption library.
Executing payload via Thread Pool APIs.
Obfuscating IAT using API hashing and API camouflage.
CRT library independent.

Demo

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Next Cloud Katana - Serverless Security for Multi-Cloud »

Previous « Cartographer - Advanced Code Coverage Mapping in Ghidra

Leave a Comment

Share

Published by

Varshini

Tags: cybersecurityinformationsecuritykalilinuxkalilinuxtoolsMaldevAcademyLdr.1

1 year ago

Recent Posts

Vulnerability Analysis

garak, LLM Vulnerability Scanner : The Comprehensive Tool For Assessing Language Model Security

garak checks if an LLM can be made to fail in a way we don't…

24 hours ago

Post Exploitation

Vermilion : Mastering Linux Post-Exploitation For Red Team Success

Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…

24 hours ago

Exploitation Tools

AD-CS-Forest-Exploiter : Mastering Security Through PowerShell For AD CS Misconfiguration

ADCFFS is a PowerShell script that can be used to exploit the AD CS container…

24 hours ago

Hacking Tools

Usage Of Tartufo – A Comprehensive Guide To Securing Your Git Repositories

Tartufo will, by default, scan the entire history of a git repository for any text…

24 hours ago

software

Loco : A Rails-Inspired Framework For Rust Developers

Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…

2 days ago

Applications

Monolith : The Ultimate Tool For Storing Entire Web Pages As Single HTML Files

A data hoarder’s dream come true: bundle any web page into a single HTML file.…

2 days ago

L