Tinkering around with some #malware at a client's today. Something they've been battling with for a while. I was thinking of doing a talk at @dallas_hackers but I think somebody covered almost exactly the same thing last night. PowerShell running PowerShell decoding base64 encoded DLLs and injecting into memory. #infosec
@j_angliss - Always good to see your specific methodology on how to reverse and analyze malware! Give a talk on it!