M1 Mac Malware Analysis VM Setup with Windows 11 (Free)

preview_player
Показать описание
* Chapters *

0:00 Intro
1:40 Hypervisor Overview
3:37 ARM VM Overview
6:17 Installing VMWare Fusion 22H2
6:35 Free Copy of Windows 11 ARM (beta)
7:25 Converting VHDX to VMDK
8:23 Create Windows VM
11:15 Disable Windows Defender
13:31 FLARE-VM for Windows 11 ARM

-----
OALABS PATREON

OALABS DISCORD

Twitch

OALABS GITHUB

UNPACME - AUTOMATED MALWARE UNPACKING
-----

UTM

VMWare Fusion Tech Preview 22H2 for M1

Windows Insider Registration

Windows 11 ARM Beta Release

Convert VHDX to VMDK

Windows ARM Install Guide for VMWare Fusion

LazyAdmin Disable Windows Defender

FLARE-VM Windows 11 Profile (OALABS GitHub)
** This is no longer supported due to major breaking changes to the original FLARE-VM repo
  1. OALabs
Рекомендации по теме
M1 Mac Malware 0:18:09

M1 Mac Malware Analysis VM Setup with Windows 11 (Free)

Windows on apple 0:07:18

Windows on apple M1/M2 Macs: For Windows Hacking and malware analysis

#OBTS: Do as 0:29:34

#OBTS: Do as I say, Not as I did: Pivoting into Mac Malware Analysis for the 1st Time/ K. Del Rosso

REMnux on M1 0:09:08

REMnux on M1 Mac

OBTS v4.0: 'Anti 0:30:54

OBTS v4.0: 'Anti Analysis Logic of Arm Malware on macOS' - Patrick Wardle

Mac-A-Mal: An Automated 0:17:37

Mac-A-Mal: An Automated Platform for Mac Malware Hunting

When you first 0:00:32

When you first time install Kali linux for hacking 😄😄 #hacker #shorts

Mr. Robot Sucks 0:00:55

Mr. Robot Sucks

Flare-VM Installation 0:18:01

Flare-VM Installation

How awful is 0:04:29

How awful is UTM in MacBook Pro M1 (ARM) 16Gb emulating Kali Linux (x86_64) 8Gb.

How To Setup 0:18:17

How To Setup A Sandbox Environment For Malware Analysis

Windows on M1/M2 0:00:58

Windows on M1/M2 Macs #shorts #cybersecurity #m1 #apple

Dissecting Rotten Apples 0:59:16

Dissecting Rotten Apples – macOS Malware Analysis | Felix Seele | NULLCON Goa 2020

Anti Analysis Logic 0:30:54

Anti Analysis Logic of Arm Malware on macOS Patrick Wardle

#OBTS v5.0: 'Making 0:35:32

#OBTS v5.0: 'Making oRAT, Go' - Patrick Wardle

I say, Not 0:29:34

I say, Not as I did Pivoting into Mac Malware Analysis for the 1st Time K Del Rosso

UTM Networking Mac 0:16:55

UTM Networking Mac M1

How to Emulate 0:05:30

How to Emulate X86 and X64 on Apple M1 M2 Macs | M1 M2 Pentest

Mac Malware Uses 0:11:54

Mac Malware Uses Run-Only AppleScripts| AT&T ThreatTraq

Rosetta 2 Keeping 0:51:16

Rosetta 2 Keeping Mac Malware Alive for Years to Come

Atomic macOS stealer 0:00:58

Atomic macOS stealer malware #malware #macos #shorts

2/23/20 - Guest 2:00:19

2/23/20 - Guest Speaker Dr. Stroschein and M1 Mac Malware

MacOS Malware caught 0:01:24

MacOS Malware caught using a zero-day vulnerability to secretly take screenshots

Free Windows 11 0:32:45

Free Windows 11 on UTM 4.1 vs Paid Parallels 19 on Mac - Speed Test, Performance. What's Better...

Комментарии
Автор

I once again write a comment. I think this video absolutely deserves many more views and acknowledgements. Thanks to this video and the suggestion to use Windows 11 Arm as a workaround for x86/x64 instructions, I was finally able to create the testing environment that I needed and could not achieve before on my M1 Pro. It is full of comments on the forums/reddits from users who do not know about this possibility and have to opt for another laptop.
Again, thank you very much for this video.

netrunner
Автор

Awesome as always! I have an M1 and this is very helpful!

mytechnotalent
Автор

best video I ever watched! Congratulations and thank you so much for sharing.

davitrindade
Автор

Thank you very much! You saved me a lot of debugging time.

ca
Автор

I disable Defender by feeding it Malware. My kids, grand kids are going to know about your content. Marvelous.

kritikusi-
Автор

thank you very very very very much!! Unfortunately, I was about to sell my macbook 16 with M1 Pro specifically because of the difficulty of doing analysis on x86 and x64.

netrunner
Автор

Hi, nice video as always. I’d just like to add that there is also a preview of Virtualbox 7, that should be able to run on Apple Silicon. I haven’t tried it yet, but during my last malware analysis speech, somebody told me that. Maybe it can be a free alternative when the tech preview of fusion will expire 😅

Edit: also, while I can do my RE stuff with x64dbg on Win11ARM, I had some issues running OllyDbg… it had some serious stability issue.

LucaDAmico
Автор

One thing to keep in mind is that some plugins for x64dbg (mapoanalyzer for one) won't work on W11 ARM and will crash x64dbg

je
Автор

Hello! Thank you for this! Has anyone here run into the issue that after restart to Safe Boot, when logging on it says an app is need and one simply cannot log on?

johndoe-kgnv
Автор

I tried with UTM but no success on reboot in safe mode and cant disable Windows Defender.

LLv
Автор

Hi, I was wondering if you could do a more in-depth video about how life is like doing malware analysis using a m1? i am curious to know are you able to run older malware? which targeted OS's like windows xp or window 7 etc. While I feel apple silicon machines are amazing, they are quite limited due to not really able to run anything to test. Looks like we are stuck using win 11 cos if its good x86 support but not able to test like older os vulns to learn about. Any thoughts on this would be welcome since apple silicon is not going anywhere. Thanks

dtybqrb
Автор

Asking this more than a year after this video's release .... is this the best and most optimal way to build a Windows Malware Analysis environment on ARM Macs ?

skycracker
Автор

Hi can I run Remnux on Flare VM for Windows on ARM?

alphabetadministrator
Автор

I am getting a zsh: command not found: qemu-img trying to convert it would you know why? Any suggestions?

doniyorismatilloev
Автор

somehow M1 Mac and free do not go together in one sentence

fsacer
Автор

On Mac this works for me: qemu-img convert -p -O vmdk Windows11_....VHDX win11.vmdk

MatthiasToberer