About

I am a Cyber Detection and Response analyst with a passion for malware analysis, reverse engineering, threat hunting, and detection engineering both professionally and in my free time.

My research focuses on malware campaigns, loaders, infostealers, proxyware malware, PowerShell malware, malicious installers, and obfuscation techniques. I enjoy analyzing suspicious software, identifying infrastructure overlaps, extracting indicators, and sharing findings with the broader security community.

This site serves as a hub for malware research notes, tooling, decoders, indicators of compromise (IOCs), YARA content, and links to detailed technical blog posts.

Contact: luke@lukeacha.com

Research Areas

Malware Analysis Reverse Engineering Threat Hunting Detection Engineering YARA Infostealers Proxyware Malware SEO Poisoning PowerShell Malware .NET Malware Loader Malware Malicious Installers

Research References and Mentions

Contributor to VirusTotal Contributors
TamperedChef/EvilAI Research referenced by The Hacker News
TamperedChef Research discussed by Expel Threat Research
UpStage Proxyware, Fake 7-Zip installoer Research cited by Malwarebytes Threat Intelligence
TamperedChef Research and indicators referenced by Red Canary Threat Intelligence
SolarMarker Research and campaign overlaps discussed by eSentire Threat Intelligence
Microsoft App Store Proxyware referenced IBM X-Force Exchange
SolarMarker YARA and analysis referenced Binary Defense