Malware Unpack Tutorials?

Ask your beginner questions here.
Post Reply
User avatar
FakeAVHunter
Posts: 117
Joined: Thu Feb 01, 2018 6:20 pm
Location: Romania
Contact:

Malware Unpack Tutorials?

Post by FakeAVHunter » Sat Jan 05, 2019 1:35 pm

Hey , guys is 5 January 2019 and i have my own first question about how i do unpack them, is not a easy submission for me.
So i will wait for the steps or lessons and i have the programs required installed. :D ;) :)

User avatar
Xylitol
Global Moderator
Posts: 1681
Joined: Sat Apr 10, 2010 5:54 pm
Location: Seireitei, Soul Society
Contact:

Re: Malware Unpack Tutorials?

Post by Xylitol » Sat Jan 05, 2019 2:40 pm

there is no universal way but have a look at this http://interestingmalware.blogspot.com/ ... runpe.html you might see that often.
https://vimeo.com/290820683

User avatar
FakeAVHunter
Posts: 117
Joined: Thu Feb 01, 2018 6:20 pm
Location: Romania
Contact:

Re: Malware Unpack Tutorials?

Post by FakeAVHunter » Sat Jan 05, 2019 5:50 pm

Xylitol wrote:
Sat Jan 05, 2019 2:40 pm
there is no universal way but have a look at this http://interestingmalware.blogspot.com/ ... runpe.html you might see that often.
https://vimeo.com/290820683
Thank You :D

User avatar
FakeAVHunter
Posts: 117
Joined: Thu Feb 01, 2018 6:20 pm
Location: Romania
Contact:

Re: Malware Unpack Tutorials?

Post by FakeAVHunter » Sun Jan 06, 2019 8:12 am

I Use ollydbg other version and i doesn't find some plugins i Use Evo_Dbg 110

User avatar
xors
Posts: 163
Joined: Mon May 23, 2016 2:01 am

Re: Malware Unpack Tutorials?

Post by xors » Sun Jan 06, 2019 3:14 pm

FakeAVHunter wrote:
Sun Jan 06, 2019 8:12 am
I Use ollydbg other version and i doesn't find some plugins i Use Evo_Dbg 110
no need to use "modified" Ollydbg. Most samples follow the same (un)packing techniques/methods.

You might find this helpful
https://github.com/malwaremusings/unpac ... /unpack.py
@xorsthingsv2

nimaarek
Posts: 9
Joined: Tue Jun 23, 2015 3:51 am
Location: IRan
Contact:

Re: Malware Unpack Tutorials?

Post by nimaarek » Sun Jan 06, 2019 3:55 pm

Friends have given the necessary explanations, but you can read Practical malware analysis's book chapter 18 as Packers and Unpacking
https://nostarch.com/malware

Post Reply