Analyzing memory dump for malware

Message Topic Search Topic Options Post Reply Create New Topic Printable Version

Hello. Is there any tool that would search some malicious code from a memory dump file. I have this memory dump of explorer.exe and it size is 61.6 mb, so how could i find some tool that would tell me if there something malicious in it. All av says that it's clean. Thanks. 

Edited by Bomb123 - 07 November 2009 at 8:15am

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version
Bomb123 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 13 October 2009 Online Status: Offline Posts: 10	Quote Reply Topic: Analyzing memory dump for malware Posted: 07 November 2009 at 8:15am
	Hello. Is there any tool that would search some malicious code from a memory dump file. I have this memory dump of explorer.exe and it size is 61.6 mb, so how could i find some tool that would tell me if there something malicious in it. All av says that it's clean. Thanks. Edited by Bomb123 - 07 November 2009 at 8:15am

PROROOTECT Members Profile Send Private Message Find Members Posts Add to Buddy List Senior Member Joined: 06 April 2008 Online Status: Offline Posts: 298	Quote Reply Posted: 07 November 2009 at 9:05am
	Hi Bomb123, Try free tool from Mandiant, called Memoryze: http://www.mandiant.com/software/freesoftware.htm ... also MBAM, a-squared ... P.
	I remember:GMER\|RootRepeal\|kX-Ray\|Kernel Detective\|XueTr\|..Sarah ah! He remembers me:AntiVir\|IMMUNET PROTECT\|I'm a stranger HERE..

Bomb123 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 13 October 2009 Online Status: Offline Posts: 10	Quote Reply Posted: 09 November 2009 at 8:00am
	Thanks. I will try that.