<img src="https://ws.zoominfo.com/pixel/JrRu3vUM8j33QSR7Bwxw" width="1" height="1" style="display: none;">

ReversingLabs Blog

Robert Simmons

Robert Simmons
Independent malware researcher and threat researcher at ReversingLabs. With an expertise in building automated malware analysis systems based on open source tools, he has been tracking malware and phishing attacks and picking them apart for years. Robert has spoken on malware analysis at many of the top security conferences including DEFCON, HOPE, botconf, and DerbyCon among others. Robert also is a maintainer of plyara, a YARA rule parser written in pure Python.

Recent Posts from Robert Simmons

November 16, 2020

PoorWeb - Hitching a Ride on Hangul

Tearing Down HWP Files To Expose a Trojan
September 8, 2020

Excel 4.0 Macros

The Risk of Hidden Threats in Compound Files
June 26, 2020

Five Uses of YARA

Setting the Stage for REVERSING 2020
June 5, 2020

Retread Ransomware

In March of 2020, MalwareHunterTeam discovered a downloader which installed both a KPot infostealer as well as a second payload which was a ransomware variant that used the string "CoronaVirus".
March 23, 2020

Exposing Ryuk Variants Using YARA

Getting Ahead of Ryuk attacks using YARA Rules - Continued
January 31, 2020

RATs in the Library

Public hosting sites present a challenge for defenders when exploited by adversaries to conceal payloads using various encoding techniques