Automated Malware Analysis - Part 2

If you have been following along from Part 1, we discussed a general overview of what we are going to accomplish. Here in Part 2 we will discuss how to setup host machine which is a Mac OSX device.

Install Required Software and Dependencies

  1. Download and install VirtualBox
  2. Download and install XCode
    • This may require a free Apple Developer account
  3. Install XCode command-line tools
$ xcode-select --install
  1. Download and install Homebrew
ruby -e "$(curl -fsSL https://raw.github.com/Homebrew/homebrew/go/install)”
  1. Once you have Homebrew installed, let’s add all the dependiencies. Type the following commands in your orginal terminal windows:
$ brew install libtool
$ brew install pycrypto
$ brew install pil
$ brew install openpyxl
$ brew install ocaml
$ brew install wget
$ brew install subversion
$ brew install libtool

  1. Install distorm3
    • Download the latest version
$ unzip distorm3-1.0.zip
$ cd distorm3-1.0
$ python setup.py build
$ python setup.py build install
  1. Install Yara
    • Download the latest version
# ./bootstrap.sh
# ./configure —enable-cuckoo

At this point you should have all the applications and dependiencies installed in your OSX device. Next we will discuss creating the guest operating systems in Part 3.

comments powered by Disqus