Results 1 to 3 of 3

Thread: some crushing malware unpacking

  1. #1
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,489
    Blog Entries
    1

    some crushing malware unpacking

    well, found some XOR-ed malware loader, which crushed on XP. (aclyop.exe)
    then I just forsed all code peaces to dexor.. (aclyop_dexored.exe)
    job happens in 3 update-able TLS-callbacks.

    finally new process will launched with decrypted and remapped main module. (aclyop_inside.bin)


    Password: malware
    Attached Files Attached Files

  2. #2
    So is the exercise to guess the password ?

    Woodmann
    Learn Or Die.

  3. #3
    Teach, Not Flame Kayaker's Avatar
    Join Date
    Oct 2000
    Posts
    4,124
    Blog Entries
    5
    The password is
    malware

Similar Threads

  1. Help unpacking old malware - Malware attached
    By JimmerRobber in forum Malware Analysis and Unpacking Forum
    Replies: 7
    Last Post: February 19th, 2013, 20:53
  2. Is this malware?
    By bboitano in forum Malware Analysis and Unpacking Forum
    Replies: 2
    Last Post: December 18th, 2009, 07:18
  3. lil malware unpacking contest here!
    By evaluator in forum Malware Analysis and Unpacking Forum
    Replies: 20
    Last Post: December 29th, 2008, 13:59
  4. Some VB malware
    By b3n in forum Malware Analysis and Unpacking Forum
    Replies: 3
    Last Post: November 24th, 2008, 11:38

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •