Malware Analysis - Unpacking Alpha Ransomware (Pt. 1)

In this first part we unpack a .NET based ransomware that uses a DLL to inject its payload.
The ransomware was crypted by Codelux according to MalwareHunterTeam.

My malware analysis course for beginners: www.udemy.com/course/windows-malware-analysis-for-…
Buy me a coffee: ko-fi.com/struppigel
Follow me on Twitter: twitter.com/struppigel

Sample: www.hybrid-analysis.com/sample/fc21ac155de398cba7c…
DnSpy: github.com/0xd4d/dnSpy/releases
De4Dot: github.com/0xd4d/de4dot
Process Explorer: technet.microsoft.com/en-us/sysinternals/processex…