Malpedia Library

Click here to download all references as Bib-File.•

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #3: Fixing The Function-Related Issues
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #2: First Attempt At Devirtualization
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #1: Deobfuscating FinSpy VM Bytecode Programs
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization. Phase #4: Second Attempt At Devirtualization
FinFisher RAT

2018-02-21 ⋅ GitHub (RolfRolles) ⋅ Rolf Rolles
FinSpyVM (Static Unpacker for FinSpyVM)
FinFisher RAT

2018-02-21 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
FinSpy VM Unpacking Tutorial Part 3: Devirtualization
FinFisher RAT

2018-01-23 ⋅ Möbius Strip Reverse Engineering ⋅ Rolf Rolles
A Walk-Through Tutorial, with Code, on Statically Unpacking the FinSpy VM: Part One, x86 Deobfuscation
FinFisher RAT

2018-01-11 ⋅ Youtube (OALabs) ⋅ Sergei Frankoff
Unpacking Pykspa Malware With Python and IDA Pro - Subscriber Request Part 1
Pykspa

2017-12-30 ⋅ Youtube (hasherezade) ⋅ hasherezade
Unpacking TrickBot with PE-sieve
TrickBot

2017-12-15 ⋅ hasherezade
Unpacking Magniber ransomware with PE-sieve (former: 'hook_finder')
Magniber

2017-12-03 ⋅ Karsten Hahn
Malware Analysis - ROKRAT Unpacking from Injected Shellcode

2017-11-02 ⋅ Palo Alto Networks Unit 42 ⋅ Jacob Soo, Josh Grunzweig
Recent InPage Exploits Lead to Multiple Malware Families
Confucius

2017-11-02 ⋅ Palo Alto Networks Unit 42 ⋅ Jacob Soo, Josh Grunzweig
Recent InPage Exploits Lead to Multiple Malware Families
BioData

2017-06-14 ⋅ Youtube (hasherezade) ⋅ hasherezade
Unpacking YoungLotus malware
YoungLotus

2017-03-17 ⋅ Malwarebytes ⋅ Malwarebytes Labs
Diamond Fox – part 1: introduction and unpacking
DiamondFox

2016-11-23 ⋅ Kaspersky Labs ⋅ Denis Legezo
InPage zero-day exploit used to attack financial institutions in Asia
BioData

2016-08-25 ⋅ Malwarebytes ⋅ Malwarebytes Labs
Unpacking the spyware disguised as antivirus
PlugX

2016-03-18 ⋅ Malwarebytes ⋅ Malwarebytes Labs
Teslacrypt Spam Campaign: “Unpaid Issue…”
TeslaCrypt

2012-12-12 ⋅ Volatility Labs ⋅ Michael Hale Ligh
Unpacking Dexter POS "Memory Dump Parsing" Malware
Dexter

2008-05-18 ⋅ ThreatExpert ⋅ Sergei Shevchenko
Rustock.C – Unpacking a Nested Doll
Rustock