hugo_glez Profile Banner
Hugo Glez Profile
Hugo Glez

@hugo_glez

Followers
823
Following
1K
Media
197
Statuses
9K

Information security. reversing, code. I like linux, challenges, puzzles and pizza. Finally got my PhD.

https://t.co/qpMoLg7nP2
Joined April 2010
Don't wanna be here? Send us removal request.
@hugo_glez
Hugo Glez
@hugo_glez
3 months
Hahaha, first think I got when looking in the new dex file. "CROCODILE BOT" and something for Lucas Stefanko
Tweet media one
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
Once the dex file is decrypted, it is loaded and now it can talk with the Internet with okhttp3 and use more robust encryption with BouncyCastle lib. Among other interesting ones.
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
Almost forgot, I got stuck obtaining the obfuscated name of the next code to call at the beginning, triple base64 decode with no padding, python failed, but I got javascript to work :p mlbpdnmi.synthesisvelvet.tampercertainly.Scrubberearplugs was the result
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
Google says that text messages in the code are Turkish
Tweet media one
Tweet media two
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
The main dex file is not malicious, but it dynamically loads another dex file from an encrypted asset. In my case the file is assets/yzzu.json c8f66ba2fcdf169e163810c68c355dce0df46808e302113c39f88954da2e2c4c
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
I'm reversing a sample from Crocodilus Android malware https://t.co/Pzjv3TdaQm sample b9ddc7c5f9adbf012494ab258acd80ab35311b52e3b28f2a78a1d8dad75ab259
Tweet card summary image
threatfabric.com
ThreatFabric analysts discovered a new Device-Takeover Android banking Trojan equipped with remote access, black screen overlays, and advanced credential theft capabilities.
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
3 months
After a great #HoneynetWorkshop in Prague this year, I decided that I will incorporate Ghidra for Android malware reversing. I'm very satisfied. Even though I still need to use apktools for manifest and other minor stuff it is great!
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
5 months
Siempre hay una primera vez. Me bolsearon en CDMX, me sacaron unos billetes de una bolsa con cierre del pantalón. También iban sobre mi cartera, pero esa no pudieron, pero ya lo estaban intentando :(
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
11 months
Cappuccino time. #CoffeeLovers
Tweet media one
0
0
1
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Ayer tocó así. #CoffeeLovers
Tweet media one
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Café con anís, combustible para trabajar ;) #CoffeeLover
Tweet media one
Tweet media two
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Café colombiano #CoffeeLover
Tweet media one
0
0
2
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Almost ready the integration of guarddog with #intelowl . It needs more testing before submitting PR.
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Cold brew con baileys. Café con crema irlandesa
Tweet media one
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Preparando "cold brew" #CoffeeLover
Tweet media one
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Nueva definición de #CISO: Cyber Incident Scapegoat Officer
0
0
1
@hugo_glez
Hugo Glez
@hugo_glez
1 year
En Estados Unidos, Canadá, Alemania, Australia, Inglaterra y otros, los directivos de las empresas pueden ser "castigados" por la ley en incidentes de ciberseguridad. ¿Existe algo parecido en México? @cynsol
1
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Café Pluma Oaxaca, denominación de origen, me agradó bastante. #CoffeeLover https://t.co/BpnTAgAcmp
Tweet media one
Tweet media two
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
Café con clavo. Además de un café frío para compartir. #cafeconespecias El sabor es fuerte.
Tweet media one
Tweet media two
0
0
0
@hugo_glez
Hugo Glez
@hugo_glez
1 year
New arrive to make coffee. #CoffeeLover
Tweet media one
1
0
1