PDA

View Full Version : Malware Analysis and Unpacking Forum

Pages : [1] 2 3 4 5 6 7 8 9
  1. Yet Another Anti-Debug Trick
  2. Setting up a mail server
  3. A new Anti-Olly trick
  4. Your free airline ticket is ready.
  5. An anti-attach trick.
  6. USPS Delivery Failure Notification "USPS report.zip"
  7. Cannot proceed - Packed EXE?
  8. [ARTeam] Analyzing an Adobe Flash Malware (CVE-2011-2110) by +NCR/CRC!
  9. Obfuscation affect on Dependency Walker?
  10. Patching Antivirus XP 2008 [Malware]
  11. Problem with MoleBox unpacking
  12. Unpacking / Patching Maleware - Help needed
  13. Pointers in unpacked file don't get rebased
  14. Thinstall Consult?
  15. [Unpackme] Unknown .net packer UnpackMe
  16. Help analyzing a malicious PDF
  17. Rooted/botted
  18. Malware(Hackarmy) - Olly hangs
  19. Trouble Unpacking Netsky-Q FSG 1.0 and UPX 0.80 - 1.24 DLL -> Markus & Laszlo
  20. MacDefender - Indicator of future malware or not?
  21. Honeynet Forensic Challenge 8 - "Malware Reverse Engineering"
  22. Is code analysis cost effective?
  23. Zeus sourcecode
  24. Compromised by a virus
  25. Malware Analysis - Starting out..
  26. Buster Sandbox Analyzer
  27. Trying to unpack .exe with Securom 7.00.00.0001
  28. LINK: Malcode Context of API Abuse
  29. Cracking the logic of XP security 2011 for 'fun'.
  30. packed dll file dropped by virus
  31. how to know which protection is used
  32. Change a intern link in a .exe file
  33. Amr Thabet: Reversing Stuxnet's Rootkit (MRxNet) Into C++
  34. Can't Dump a w32 binary (malware)?
  35. What packer is this?
  36. InternetSecurity2011
  37. Anti-Unpacker Tricks
  38. VB Header Info
  39. How can I handle waitforsingleobject() error while debugging?
  40. Extract Sequence of assembly codes during runtime ???
  41. ELF - problem with unpacking
  42. Unknown packer (MZP signature)
  43. CongratZ! Now .NETwill load malware
  44. MBR analysis
  45. Virtob.si yet ready to infect you..
  46. Restore Themida/Winlicense VM codes to original x86
  47. Debugging and unpacking NsPack
  48. Malware analysis Machine Reimaging
  49. Pokas x86 PE Emulator for Generic Unpacking
  50. Write your Own Unpacker
  51. analyze a dll
  52. How to analyze on a live system that is infected?
  53. immunity debugger plugin
  54. Unknown packed file prob Zbot variant
  55. {smartassembly} protection analysis + unpacker (with source)
  56. Armadillo help?
  57. Compromised by Super Private Keylogger
  58. Drive-by browser exploit analysis
  59. if WinRAR is in NullsoftInstaller, then...
  60. what about this sample?
  61. Java Malware question.
  62. AntiUnpacking Tricks of Malware
  63. KHOBE and Chicken Little
  64. extract runtime assembly code ?
  65. unlock file or folder , i hope this tool might be useful :)
  66. Interesting Malware analysis write up.
  67. IDA Debugger - strange behavior when debugging protectors
  68. Win32.Sinowal MBR rootkit
  69. Malware that tampers with debugger?
  70. Fake Virus Alert
  71. Relations Between APIs in Malware
  72. Easy and simple way to analyze malwares
  73. PHP Malware
  74. Parite.B virus
  75. Help to identify packer
  76. AntiDebug using GetKeyboardState?
  77. Autorun Malware
  78. unpack exe4j
  79. Infected, lets chase.
  80. JAVA malware
  81. Just 4 question ?
  82. Debugging an .msi .dll
  83. Setting up a malware analysis environment
  84. huh!? freeserials.ws Serials + Trojans!?!?
  85. KAV malware naming issue (funny)
  86. MBR worm
  87. Analysis of compiler infector Induc
  88. How Find Temporal Order Of API calls in PEs?
  89. Aurora Example
  90. Malware which password protects office files
  91. FSG unpacker with command line support?
  92. Is this malware?
  93. Trojan monitoring almost every browser
  94. Buster Sandbox Analyzer
  95. Visual Basic Packer???
  96. yoda cryptor help.
  97. swf exploit
  98. URLANDEXIT tag in WMV
  99. RBoT Packer Issues
  100. Tips for thwarting VM detection
  101. Best place to submit a new threat?
  102. Java Host Virus
  103. ARTeam: Swimming into Trojan and Rootkit GameThief.Win32.Magania Hostile Code
  104. MALWARE 0day..fun
  105. tools from china ->heuristic virus detection (bdv)
  106. problem with resource section after unpacking
  107. Malware for analysis - "Michael Jackson Gay" virus (Yahoo messenger spammer)
  108. i wrote a game music unpacker
  109. How to extract java classes from executable.
  110. [Question] How can you dump virtually allocated memory ?
  111. I got Trojanned
  112. Virii but we dont care!!!
  113. PDF Exploit
  114. exploited pdf
  115. Malware creates new thread, how do I follow it?
  116. funny comics unpacking tut
  117. Please help analysing new SWF exploit!
  118. LHA encoding/decoding
  119. Unpacking a MoleBox 2.5.7
  120. Entropy visualization utilities for packed malware?
  121. Trojan type infection perhaps?
  122. CRC calculation
  123. tinyPE reversing
  124. CrypKey Instant 6.x -> CrypKey Inc.
  125. Got a virus - please help analysing
  126. Question about an algorithm
  127. Trying to ID the packing in a BIOS file
  128. ExeCryptor kioresk Tut about lic
  129. psyb0t
  130. SANS malware analysis article
  131. Execryptor EC functions
  132. Common Malicious API's
  133. obscure rootkit(?) offer fr infected user, kernel detective (long post)
  134. Pace Interlok (iLok)
  135. Researchers unveil persistent BIOS attack methods
  136. Extracting shellcode from office docs?
  137. winzix fun??
  138. thekeys.ws virus (don't know what it is)
  139. securom nag
  140. How to deal with polymorphic code
  141. Where to download malware?
  142. VB injects DELHPI ~;
  143. Undetected home work
  144. Rootkit.Win32.TDSS.eyj Another custom packer/cryptor
  145. AV Emulators not able to handle far jmp, yet.
  146. fun malware cryptor ~;
  147. "HOT URL!" your PC infected, install AV2009
  148. Another unknown packer in malware
  149. Malware packed with unknown packer
  150. Trojan.Win32.VB.jir - Automated Analysis tools Aware
  151. in VB6 malware \Device\PhysicalMemory?
  152. today's torrent-malware fight
  153. Malware refuses to run properly on VMWare
  154. what's packer of this malware code.
  155. Conficker dll analyse
  156. fun remote DLL loading found in malware :)
  157. Themida protected plugin dll
  158. Question about Rootkit Unhooker
  159. Poison-Ivy RAT Packed with Molebox
  160. Some VB malware
  161. IDA - Analyzing offset independent malware
  162. lil malware unpacking contest here!
  163. Armadillo Inline Patching problem
  164. SVCHOST.EXE under seige.
  165. SecuRom 7.30.0012
  166. XP AntiVirus 2009
  167. Armadillo OEP
  168. Malware Challenge Contest
  169. Armadillo 5.x 6.x IAT problem (oep OK)
  170. LINK: A Quick Survey on Automatic Unpacking Techniques
  171. Shellcode analyzing
  172. PDF_stream_inflater
  173. Disinfecting a program.
  174. Themida IAT rebuild for Hardware Dependancys targets
  175. does this tmp5.tmp install any driver
  176. unpacked Srizbi
  177. For you guys to solve out
  178. recombining functions split into 1-cmd-chunks
  179. strange AntivirusXP2008?
  180. Trojan.Win32.Agent.vie
  181. Packed Malware - Double Packed?
  182. Please Dump me , Please !
  183. TR/Crypt.XPACK.Gen - Trojan
  184. Trojan horse...a Hellenes poetic fancy !!
  185. Unpacking Storm Worm
  186. Inside Parite.B virus
  187. Analyzing Google toolbar requests
  188. Trojan made in C#
  189. SWF Encrypt explanation.
  190. lARP v2.0 Ultra
  191. a packed exe file, can't be loaded normally
  192. an arma question
  193. Run-time Detection of Self-Replication
  194. Malware analysis examples @ Websense
  195. eEye BootRoot
  196. OEP of Arm 1.xx to 2.x protected Targets
  197. Virtual environment to test CIH (A.K.A Chernobyl) virus?
  198. seems to some script kiddies autit v3 virus
  199. Computer Viruses as Artificial Life
  200. SSDT Hooking + AV
  201. How to find a suspectious program?
  202. JSTrojan downloader
  203. Execryptor + Ollydbg
  204. 【Help】Please analyze the code
  205. How to solve this trick ?
  206. How to unpack this?
  207. Unpacking WinLicense
  208. found: Practical Malware Analysis
  209. Orer AKA W32/Hunk.a
  210. Very suspicious packed file
  211. Fake crackme on crackmes.de?
  212. Unpack securom 5.00.03
  213. Yoda's Crypter 1.2
  214. VM detection via VERR/VERW
  215. Example for nice custom obfuscation
  216. To start with malwares
  217. WORM/Nuj.A.124 - Something to play with...
  218. Debugged program unable to process exception
  219. help: packer identification
  220. PC Guard
  221. Strange section within EXE
  222. Packed sdbot variant
  223. SWF Encrypt (Flash 'obfuscator') hacking
  224. Who is working for an AV company?
  225. winlogon
  226. Quick Unpack v1.0 final
  227. Change file to work right
  228. possibble rootkit kdjfq.exe
  229. Malware (packed, polymorphic) dll. Pecompact 2.xx?
  230. the drivers are peed or wincom32 probably but the exe isnt detected by norton
  231. Article: "Stealth for Survival: Threat of the Unknown"
  232. AsProtect 2.2. Help with find OEP
  233. Recently appeared virus supposed to be from the German BKA :)
  234. Unwrapping PACE Interlok v5.5.0.2618
  235. Malware fight
  236. Suspicious file - Can't unpack
  237. Me code write good: The l33t skillz of the virus writer
  238. Capture, care and analysis of Malware made easy
  239. PE GRUM Virus and Some Search Engine Poisoning malware
  240. a nice paper on a trojan/malware
  241. Another trojan I couldn't identify the packer
  242. Another strange packer
  243. Strange Packer
  244. arma's processes
  245. Armadillo + other protections...
  246. Malware and Virtual Environments
  247. Old Stuff
  248. 2 malware video tutorials by Fifo
  249. Norwegian Bank Malware Analysis
  250. BIOHAZARD bags