Malware Analysis - Unpacking RunPE Loyeetro Trojan
|
Malware Analysis - Unpacking RunPE Loyeetro Trojan
|
08-09-2017 , 02:19 AM
Published on Aug 8, 2017 We look at signs that this sample is packed and how we can see that it uses RunPE to inject the packed code into its own process. We unpack the sample with x64dbg and HxD. Follow me on Twitter: @struppigel And MalwareBlocker: @Malware_Blocker Sample: https://www.hybrid-analysis.com/sampl... HxD: https://mh-nexus.de/en/hxd/ x64dbg: https://x64dbg.com/
|
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| Malware adds Any.Run sandbox detection to evade analysis | 2 | 3,803 |
07-14-2020 , 11:01 PM Last Post: |
||
| Malware Analysis - Deobfuscating Loyeetro Trojan-Spy | 0 | 2,667 |
08-18-2017 , 12:49 AM Last Post: |
||
| Trojan-Spy Analysis with Karsten | 0 | 2,217 |
08-11-2017 , 12:50 AM Last Post: |
||
| Malware Analysis - PortexAnalyzer Repair and Dump PE Files | 0 | 2,742 |
08-07-2017 , 11:51 AM Last Post: |
||
| Malware Analysis - Creating a Decrypter for Alpha Ransomware Pt. 3 | 0 | 2,498 |
08-02-2017 , 12:41 AM Last Post: |
||
