From bd8279b885aa457d2764957acc7378986ed2f5ca Mon Sep 17 00:00:00 2001
From: ryan-weil <60713027+ryan-weil@users.noreply.github.com>
Date: Thu, 16 May 2024 11:06:46 -0500
Subject: [PATCH] Grammar and formatting

---
 _posts/2024-02-25-AGENT-TESLA-1.md | 20 +++++++++-----------
 _posts/2024-02-28-AGENT-TESLA-2.md |  2 +-
 assets/lib                         |  2 +-
 3 files changed, 11 insertions(+), 13 deletions(-)

diff --git a/_posts/2024-02-25-AGENT-TESLA-1.md b/_posts/2024-02-25-AGENT-TESLA-1.md
index 5463ec9..11be10b 100644
--- a/_posts/2024-02-25-AGENT-TESLA-1.md
+++ b/_posts/2024-02-25-AGENT-TESLA-1.md
@@ -275,16 +275,14 @@ Opening the dumped file in dnSpy confirms that it is indeed Agent Tesla
 ![alt text](/images/at1/image-56.png)
 _Figure 53_
 
-Stay tuned for part two where we will be removing Agent Tesla's control flow flattening by writing our own de4dot plugin!
+I recommend [checking out my next post](https://ryan-weil.github.io/posts/AGENT-TESLA-2/) where I demonstrate how to remove Agent Tesla's control flow flattening by writing a de4dot plugin! 
 
-## IOC MD5's
+## IOCs
 
-Initial File/Stage One: B89F6062D174E452D189EC4248AF489C
-
-DeclareTextBoxValue.dll: 08ed70a40aa366a9d6e21cba736f4435
-
-ReactionDiffusion.dll: 440bb4db146ccb1161ac2bcf365d7676
-
-Tyrone.dll: a2f3cd39918ea671f5c983eccfd004d2
-
-Agent Tesla: 624b552d1e7457a345f89b6aa1d6c75b
\ No newline at end of file
+| File    | MD5 |
+| -------- | ------- |
+| Initial File/Stage One  | B89F6062D174E452D189EC4248AF489C  |
+| DeclareTextBoxValue.dll | 08ed70a40aa366a9d6e21cba736f4435  |
+| ReactionDiffusion.dll   | 440bb4db146ccb1161ac2bcf365d7676  |
+| Tyrone.dll              | a2f3cd39918ea671f5c983eccfd004d2  |
+| Agent Tesla Payload     | 624b552d1e7457a345f89b6aa1d6c75b  |
\ No newline at end of file
diff --git a/_posts/2024-02-28-AGENT-TESLA-2.md b/_posts/2024-02-28-AGENT-TESLA-2.md
index 07d0908..3acad0d 100644
--- a/_posts/2024-02-28-AGENT-TESLA-2.md
+++ b/_posts/2024-02-28-AGENT-TESLA-2.md
@@ -7,7 +7,7 @@ categories: malware
 
 ## Introduction
 
-In the [previous post](https://ryan-weil.github.io/posts/AGENT-TESLA-1/), we successfully unpacked Agent Tesla. We left off on a bit of a cliffhanger though, because after opening it in dnSpy it was apparent that it had control flow flattening applied. At first glance it doesn't look too unreadable:
+In the [previous post](https://ryan-weil.github.io/posts/AGENT-TESLA-1/) we successfully unpacked Agent Tesla. We left off on a bit of a cliffhanger though, because after opening it in dnSpy it was apparent that it had control flow flattening applied. At first glance it doesn't look too unreadable:
 
 ![alt text](/images/at2/first.png)
 _Figure 1_
diff --git a/assets/lib b/assets/lib
index 7bc0d86..b9c58cf 160000
--- a/assets/lib
+++ b/assets/lib
@@ -1 +1 @@
-Subproject commit 7bc0d86b6af83d7acfc63db50f29a5975cec2513
+Subproject commit b9c58cf485a7dcbc833e698d67dd1850bdc93eb3