|
|
|
|
|
|
by arsome
1207 days ago
|
|
|
IDA's decompiler is only cloud dependent if you have the crappy version, if you have the full Pro version with the add on its entirely local. While it's true that malware could hide well theoretically, I'll also add that in my experience investigating malware infections from friends and family and occasionally hunting for malware myself, samples attached to cracked software tend to be things like miners, iStealer, script kiddie RATs, etc using simple "binders" - which are usually incredibly obvious, like extract the real executable into %temp% or the usual RunPE gimmick. People posting malware on torrent sites are not exactly APTs using spear phishing attacks. |
|
|