Page 1 of 2 12 LastLast
Results 1 to 15 of 17

Thread: AV VM BYPASS ENGINE.

  1. #1

    AV VM BYPASS ENGINE.

    http://indy-vx.narod.ru/Bin/VMBE.zip

    VmTest.zip


  2. #2
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    OMG! This is breaking news!! Are you saying that if you obfuscate malware then AV products won't be able to detect it?! Call the presses! Alert the media!

  3. #3
    Oh my, I didnt see this one coming..

  4. #4
    frozenrain
    Guest
    only check a api?av can add support this api quickly
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  5. #5
    The api can be any. Api's are emulated as atoms, this engine splits it, this mechanism can not work around.

  6. #6
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    this is TrapFlag_SelfTracer.

    any new code can be called "VM BYPASS ENGINE"

  7. #7
    Simple use of the TF can not determine the fact of emulation. Typical methods is a gag's(затычки по русски). They fix.
    Last edited by Indy; October 14th, 2012 at 22:51.

  8. #8
    Quote Originally Posted by Indy View Post
    http://indy-vx.narod.ru/Bin/VMBE.zip

    VmTest.zip

    Someone made Indy angry so he deleted all from his website. Can someone reupload this?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  9. #9

  10. #10
    Quote Originally Posted by Indy View Post
    woodmann
    VMBE.zip
    indy what is password for it??

  11. #11
    VMBE 2

    pass: vx

    VMBE2.zip

  12. #12
    Aver's is gone, Comrades

  13. #13
    wow fixed.

    vx

    VMBE2.zip

  14. #14
    damn.. .nice.. thx for rlz

  15. #15

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •