PDA

View Full Version : Malware Analysis and Unpacking Forum


Pages : [1] 2 3 4 5 6 7 8

  1. Restore Themida/Winlicense VM codes to original x86
  2. Debugging and unpacking NsPack
  3. Malware analysis Machine Reimaging
  4. Pokas x86 PE Emulator for Generic Unpacking
  5. Write your Own Unpacker
  6. analyze a dll
  7. How to analyze on a live system that is infected?
  8. immunity debugger plugin
  9. Unknown packed file prob Zbot variant
  10. {smartassembly} protection analysis + unpacker (with source)
  11. Armadillo help?
  12. Compromised by Super Private Keylogger
  13. Drive-by browser exploit analysis
  14. if WinRAR is in NullsoftInstaller, then...
  15. what about this sample?
  16. Java Malware question.
  17. AntiUnpacking Tricks of Malware
  18. KHOBE and Chicken Little
  19. extract runtime assembly code ?
  20. unlock file or folder , i hope this tool might be useful :)
  21. Interesting Malware analysis write up.
  22. IDA Debugger - strange behavior when debugging protectors
  23. Win32.Sinowal MBR rootkit
  24. Malware that tampers with debugger?
  25. Fake Virus Alert
  26. Relations Between APIs in Malware
  27. Easy and simple way to analyze malwares
  28. PHP Malware
  29. Parite.B virus
  30. Help to identify packer
  31. AntiDebug using GetKeyboardState?
  32. Autorun Malware
  33. unpack exe4j
  34. Infected, lets chase.
  35. JAVA malware
  36. Just 4 question ?
  37. Debugging an .msi .dll
  38. Setting up a malware analysis environment
  39. huh!? freeserials.ws Serials + Trojans!?!?
  40. KAV malware naming issue (funny)
  41. MBR worm
  42. Analysis of compiler infector Induc
  43. How Find Temporal Order Of API calls in PEs?
  44. Aurora Example
  45. Malware which password protects office files
  46. FSG unpacker with command line support?
  47. Is this malware?
  48. Trojan monitoring almost every browser
  49. Buster Sandbox Analyzer
  50. Visual Basic Packer???
  51. yoda cryptor help.
  52. swf exploit
  53. URLANDEXIT tag in WMV
  54. RBoT Packer Issues
  55. Tips for thwarting VM detection
  56. Best place to submit a new threat?
  57. Java Host Virus
  58. ARTeam: Swimming into Trojan and Rootkit GameThief.Win32.Magania Hostile Code
  59. MALWARE 0day..fun
  60. tools from china ->heuristic virus detection (bdv)
  61. problem with resource section after unpacking
  62. Malware for analysis - "Michael Jackson Gay" virus (Yahoo messenger spammer)
  63. i wrote a game music unpacker
  64. How to extract java classes from executable.
  65. [Question] How can you dump virtually allocated memory ?
  66. I got Trojanned
  67. Virii but we dont care!!!
  68. PDF Exploit
  69. exploited pdf
  70. Malware creates new thread, how do I follow it?
  71. funny comics unpacking tut
  72. Please help analysing new SWF exploit!
  73. LHA encoding/decoding
  74. Unpacking a MoleBox 2.5.7
  75. Entropy visualization utilities for packed malware?
  76. Trojan type infection perhaps?
  77. CRC calculation
  78. tinyPE reversing
  79. CrypKey Instant 6.x -> CrypKey Inc.
  80. Got a virus - please help analysing
  81. Question about an algorithm
  82. Trying to ID the packing in a BIOS file
  83. ExeCryptor kioresk Tut about lic
  84. psyb0t
  85. SANS malware analysis article
  86. Execryptor EC functions
  87. Common Malicious API's
  88. obscure rootkit(?) offer fr infected user, kernel detective (long post)
  89. Pace Interlok (iLok)
  90. Researchers unveil persistent BIOS attack methods
  91. Extracting shellcode from office docs?
  92. winzix fun??
  93. thekeys.ws virus (don't know what it is)
  94. securom nag
  95. How to deal with polymorphic code
  96. Where to download malware?
  97. VB injects DELHPI ~;
  98. Undetected home work
  99. Rootkit.Win32.TDSS.eyj Another custom packer/cryptor
  100. AV Emulators not able to handle far jmp, yet.
  101. fun malware cryptor ~;
  102. "HOT URL!" your PC infected, install AV2009
  103. Another unknown packer in malware
  104. Malware packed with unknown packer
  105. Trojan.Win32.VB.jir - Automated Analysis tools Aware
  106. in VB6 malware \Device\PhysicalMemory?
  107. today's torrent-malware fight
  108. Malware refuses to run properly on VMWare
  109. what's packer of this malware code.
  110. Conficker dll analyse
  111. fun remote DLL loading found in malware :)
  112. Themida protected plugin dll
  113. Question about Rootkit Unhooker
  114. Poison-Ivy RAT Packed with Molebox
  115. Some VB malware
  116. IDA - Analyzing offset independent malware
  117. lil malware unpacking contest here!
  118. Armadillo Inline Patching problem
  119. SVCHOST.EXE under seige.
  120. SecuRom 7.30.0012
  121. XP AntiVirus 2009
  122. Armadillo OEP
  123. Malware Challenge Contest
  124. Armadillo 5.x 6.x IAT problem (oep OK)
  125. LINK: A Quick Survey on Automatic Unpacking Techniques
  126. Shellcode analyzing
  127. PDF_stream_inflater
  128. Disinfecting a program.
  129. Themida IAT rebuild for Hardware Dependancys targets
  130. does this tmp5.tmp install any driver
  131. unpacked Srizbi
  132. For you guys to solve out
  133. recombining functions split into 1-cmd-chunks
  134. strange AntivirusXP2008?
  135. Trojan.Win32.Agent.vie
  136. Packed Malware - Double Packed?
  137. Please Dump me , Please !
  138. TR/Crypt.XPACK.Gen - Trojan
  139. Trojan horse...a Hellenes poetic fancy !!
  140. Unpacking Storm Worm
  141. Inside Parite.B virus
  142. Analyzing Google toolbar requests
  143. Trojan made in C#
  144. SWF Encrypt explanation.
  145. lARP v2.0 Ultra
  146. a packed exe file, can't be loaded normally
  147. an arma question
  148. Run-time Detection of Self-Replication
  149. Malware analysis examples @ Websense
  150. eEye BootRoot
  151. OEP of Arm 1.xx to 2.x protected Targets
  152. Virtual environment to test CIH (A.K.A Chernobyl) virus?
  153. seems to some script kiddies autit v3 virus
  154. Computer Viruses as Artificial Life
  155. SSDT Hooking + AV
  156. How to find a suspectious program?
  157. JSTrojan downloader
  158. Execryptor + Ollydbg
  159. 【Help】Please analyze the code
  160. How to solve this trick ?
  161. How to unpack this?
  162. Unpacking WinLicense
  163. found: Practical Malware Analysis
  164. Orer AKA W32/Hunk.a
  165. Very suspicious packed file
  166. Fake crackme on crackmes.de?
  167. Unpack securom 5.00.03
  168. Yoda's Crypter 1.2
  169. VM detection via VERR/VERW
  170. Example for nice custom obfuscation
  171. To start with malwares
  172. WORM/Nuj.A.124 - Something to play with...
  173. Debugged program unable to process exception
  174. help: packer identification
  175. PC Guard
  176. Strange section within EXE
  177. Packed sdbot variant
  178. SWF Encrypt (Flash 'obfuscator') hacking
  179. Who is working for an AV company?
  180. winlogon
  181. Quick Unpack v1.0 final
  182. Change file to work right
  183. possibble rootkit kdjfq.exe
  184. Malware (packed, polymorphic) dll. Pecompact 2.xx?
  185. the drivers are peed or wincom32 probably but the exe isnt detected by norton
  186. Article: "Stealth for Survival: Threat of the Unknown"
  187. AsProtect 2.2. Help with find OEP
  188. Recently appeared virus supposed to be from the German BKA :)
  189. Unwrapping PACE Interlok v5.5.0.2618
  190. Malware fight
  191. Suspicious file - Can't unpack
  192. Me code write good: The l33t skillz of the virus writer
  193. Capture, care and analysis of Malware made easy
  194. PE GRUM Virus and Some Search Engine Poisoning malware
  195. a nice paper on a trojan/malware
  196. Another trojan I couldn't identify the packer
  197. Another strange packer
  198. Strange Packer
  199. arma's processes
  200. Armadillo + other protections...
  201. Malware and Virtual Environments
  202. Old Stuff
  203. 2 malware video tutorials by Fifo
  204. Norwegian Bank Malware Analysis
  205. BIOHAZARD bags
  206. Malware analysis: Nailuj sys file
  207. Malware Forum RULES
  208. Ways to detect the difference between a packed and unpacked exe in memory
  209. Arma is breeding like a rabbit!
  210. Quality of WinLicense
  211. Malware Analysis: "Skype" Trojan
  212. Role of Imprec
  213. OVERLAY
  214. A new software protection method (Objantihack)
  215. Odd problem with Acudata
  216. SafeDisc 4.60 and on...
  217. HASP DOS Envelope
  218. re-write a MemoHasp-1 memory
  219. .NET dump
  220. armadillo I think, date check
  221. unknown packer / nice anti-olly trick
  222. Symbian 9.x ... how to decompress ?!
  223. Problem with Custom Armadillo Implentation
  224. [ARTeam] HASP SL - A Deeper Dig by potassium
  225. Packing / unpacking of Flash SWF files (yes, really!)
  226. Strange Packer
  227. 100% Unpacking Flash's tuts
  228. safedisc problem
  229. PECompact v1.67 Delphi DLL
  230. FSG 2 and Delphi...
  231. Another unknown
  232. Yoda's Protector 1.3
  233. Themida - VirtualAllocMemory of four bytes
  234. WIBU WkbCrypt2 (WITH dongle)
  235. HardLock Envelope unpacking (WITH dongle)
  236. Merging Imports with Exports?
  237. Safedisc dump
  238. Updating a Wise installation package
  239. How to extract a Install Shield 10.5 project
  240. Extracting java classes from exe ?
  241. SerialShield
  242. Code to find IAT
  243. Having trouble with an ARTtut.....arma related
  244. ASProtect 2.1x SKE
  245. Looking for the following tuturials
  246. ARTeam: TheMida_defeating_ring0_by_deroko
  247. What the heck is this
  248. Unpacking question
  249. Can't get the Import table right
  250. Help ACProtect