Hybrid-Analysis.com
VirusTotal
Any.Run
Cuckoo Sandbox
URLscan.io
Joe Sandbox
Metadefender
AbuseIPDB
Malcat
IDA
pestudio
HxD
PE-bear
PE Explorer
010 Editor
WinHex
Malcat is a feature-rich hexadecimal editor / disassembler for Windows and Linux targeted to IT-security professionals. Inspect dozens of binary file formats, dissassemble and decompile different CPU architectures, extract embedded files and scan for Yara signatures or anomalies in a fast and easy-to-use graphical interface. Don't like what you get? Malcat is also heavily customizable and scriptable using python.
Hybrid-Analysis.com MalcatBased on our record, Hybrid-Analysis.com seems to be a lot more popular than Malcat. While we know about 38 links to Hybrid-Analysis.com, we've tracked only 3 mentions of Malcat. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
I've been using Rocketdock for years. I recently formatted my PC and installed the famous Dock. I decided to run it through Virus Total and everything went ok. On the website https://hybrid-analysis.com, RocketDock is listed as malicious. Source: 9 months ago
You can also try https://hybrid-analysis.com. Source: 12 months ago
Hello! Try to analyze this samples to: https://opentip.kaspersky.com for more information. False-positive situation 50% because 1,2,4 looks more solid than 3,5 from your list. Source: 12 months ago
Could you upload both .exe files on virustotal.com and hybrid-analysis.com (Make sure to press Advanced & Windows 10 64 bit) and respond with the links? Source: 12 months ago
Virustotal (https://www.virustotal.com) is indeed a good website for fast analysis. Given that this is an online platform and that they have to optimize the analysis, many scans will be done quickly, or "messed up", which means that an anti-virus on virustotal could not detect anything, whereas an anti-virus on a private computer would. Performing several scans with online services and on your own computer is the... Source: 12 months ago
If the DLL exports at least one function (which should be the case), you can look in the ExportDirectory structure of the dll (using CFF explorer or malcat), there is a field at offset 0xC which is a RVA to the DLL's name. Source: about 2 years ago
Did you try https://malcat.fr ? The free edition seems to check all your boxes. Source: about 2 years ago
If you're into bin diffing, you can give malcat a try. Its diff algorithm is also based on Meyer's algorithm so it can realign, and its view modes let you compare structures as well as code or bytes. Diff mode is only available in paid version though, but the price is fair. Source: over 2 years ago
VirusTotal - VirusTotal is a free service that analyzes suspicious files and URLs and facilitates the quick...
IDA - The best-of-breed binary code analysis tool, an indispensable item in the toolbox of world-class software analysts, reverse engineers, malware analyst and cybersecurity professionals.
Any.Run - Interactive malware hunting service. Any environments ready for live testing most type of threats.
pestudio - pestudio is a tool allowing to statically analyze malicious files.
Cuckoo Sandbox - Cuckoo Sandbox provides detailed analysis of any suspected malware to help protect you from online threats.
HxD - HxD is a carefully designed and fast hex editor which, additionally to raw disk editing and...
