Home / Incident Management / Digital Forensics / MalConfScan
MalConfScan

MalConfScan

Pricing: Free
Write a Review Visit Website
MalConfScan

What is MalConfScan

A command-line utility to show and change EXIF information in JPEG files

MalConfScan: A Volatility Plugin for Malware Analysis

MalConfScan is a Volatility plugin designed to extract configuration data from known malware. It searches for malware within memory images and dumps the relevant configuration data.

It also includes a feature...

It also includes a feature that lists the strings referenced by malicious code. The supported malware families are Ursnif, Emotet, Smoke Loader, PoisonIvy, CobaltStrike, among others. Furthermore, it can extract decoded strings or DGA domains. MalConfScan also offers additional analysis by listing the strings that malicious code refers to and decoding configuration data that is typically encoded by malware.
 

MalConfScan Reviews

Write a Review

No reviews yet. Be the first to review this tool!

Write a Review

Share your experience with MalConfScan tool and help others make informed decisions.

Similar Tools

View All Incident Management
Exterro
Free
Digital Forensics

Exterro View Exterro

Exterro is a comprehensive Legal Governance, Risk, and Compliance (Legal GRC) platform designed for in-house legal, privacy, and IT teams within Global 2000 and Am Law 200 organizations. By automating the intricate connections between privacy, legal operations, digital investigations, cybersecurity response, compliance, and information governance, Exterro empowers legal departments to proactively manage risks and achieve defensible outcomes. Trusted globally by corporations, law firms, government, and law enforcement agencies, Exterro drives successful, cost-effective risk management through its integrated GRC solution.

Unified Legal GRC Platform
Automated Privacy Management
Digital Investigations
Belkasoft
Free
Digital Forensics

Belkasoft View Belkasoft

Belkasoft provides advanced digital forensic solutions to public agencies, corporate security, and private investigators worldwide. Its flagship product, Belkasoft Evidence Center (BEC), empowers investigators to efficiently acquire, analyze, group, and present digital evidence. BEC is specifically designed for seamless teamwork and robust access control, offering powerful capabilities like remote data acquisition, advanced data carving, cross-case searching, and comprehensive incident investigation support.

Efficient Digital Evidence Acquisition
Comprehensive Data Analysis and Grouping
Streamlined Teamwork and Access Management
Zenduty
Free
Digital Forensics

Zenduty

A library to access and parse Windows Shortcut File (LNK) format.

YARALYZER
Free
Digital Forensics

YARALYZER

Python forensic tool for extracting and analyzing information from Firefox, Iceweasel, and Seamonkey browsers.

YARA-Forensics
Free
Digital Forensics

YARA-Forensics

A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.

xxUSBSentinel
Free
Digital Forensics

xxUSBSentinel

A console program for file recovery through data carving.