I believe that encryption uses AES ECB, which is known to be insecure. That's because two 16 bytes blocks with the same values are encrypted the same. So, you would be able to detect the malware based on the repeating patterns of 16 bytes blocks.
Your channel is an absolute goldmine! I'm getting started into cybersec in uni and I've also been looking to learn Rust and use it for development and research, really eager to see more content bro!
you don't seem to know what the PE format or ELF format looks like if you can't even infer what include_bytes does if your first assumption is "end of the binary" ? did you ever open a executable in a static analysis software ?
Hey there guy. I’m assuming you haven’t been around this channel much considering how rudely you started the convo. This is a channel where I learn alongside folks as I cover stuff. I don’t know everything and I don’t pretend to. If you would like expertise, I have a list of channels to share with you, because I’d rather you go and watch them than come into my comment section like this. Have a good one!
Your right about showing memory , real malware deletes all its functionality which is not needed as soon as it runs to further hide and prevent footprinting functions or binaries
