Page 1 of 1

Malware Unpack Tutorials?

Posted: Sat Jan 05, 2019 1:35 pm
by FakeAVHunter
Hey , guys is 5 January 2019 and i have my own first question about how i do unpack them, is not a easy submission for me.
So i will wait for the steps or lessons and i have the programs required installed. :D ;) :)

Re: Malware Unpack Tutorials?

Posted: Sat Jan 05, 2019 2:40 pm
by Xylitol
there is no universal way but have a look at this http://interestingmalware.blogspot.com/ ... runpe.html you might see that often.
https://vimeo.com/290820683

Re: Malware Unpack Tutorials?

Posted: Sat Jan 05, 2019 5:50 pm
by FakeAVHunter
Xylitol wrote:
Sat Jan 05, 2019 2:40 pm
there is no universal way but have a look at this http://interestingmalware.blogspot.com/ ... runpe.html you might see that often.
https://vimeo.com/290820683
Thank You :D

Re: Malware Unpack Tutorials?

Posted: Sun Jan 06, 2019 8:12 am
by FakeAVHunter
I Use ollydbg other version and i doesn't find some plugins i Use Evo_Dbg 110

Re: Malware Unpack Tutorials?

Posted: Sun Jan 06, 2019 3:14 pm
by xors
FakeAVHunter wrote:
Sun Jan 06, 2019 8:12 am
I Use ollydbg other version and i doesn't find some plugins i Use Evo_Dbg 110
no need to use "modified" Ollydbg. Most samples follow the same (un)packing techniques/methods.

You might find this helpful
https://github.com/malwaremusings/unpac ... /unpack.py

Re: Malware Unpack Tutorials?

Posted: Sun Jan 06, 2019 3:55 pm
by nimaarek
Friends have given the necessary explanations, but you can read Practical malware analysis's book chapter 18 as Packers and Unpacking
https://nostarch.com/malware