malware-analyst
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill references several standard command-line utilities and security tools intended for file analysis, including
file,sha256sum,strings,FLOSS,diec,exeinfope,rabin2, anddumpbin. These tools are used for legitimate forensic purposes such as string extraction, packer detection, and import analysis. - [INDIRECT_PROMPT_INJECTION]: The skill is designed to process untrusted external data in the form of malware samples (
sample.exe). - Ingestion points: The analysis workflow involves ingesting and processing unknown binary files through various forensic tools.
- Boundary markers: The skill relies on procedural isolation (Phase 4: Environment Setup) using Virtual Machines and monitoring tools to separate the analysis environment from the host system.
- Capability inventory: The skill utilizes local subprocess calls to execute analysis binaries and forensic tools.
- Sanitization: The instructions emphasize the use of isolated analysis environments (VMs) and simulation tools (INetSim, FakeNet) to safely handle malicious inputs.
Audit Metadata