Categories

UnpacMe Automated Malware Unpacking - How We Built It and Why

Published: 06 January 2020
on channel: OALabs
16,172
439

https://www.unpac.me

Automated malware unpacking! Expand description for more info...

-----
OALABS DISCORD
  / discord  

OALABS PATREON
  / oalabs  

OALABS TIP JAR
https://ko-fi.com/oalabs

OALABS GITHUB
https://github.com/OALabs

UNPACME - AUTOMATED MALWARE UNPACKING
https://www.unpac.me/#/

-----

Video Bookmarks:
Terminology 4:31
Packer Basics 7:27
Packer Evolution 10:07
Unpacking Basics 25:18
Automated Unpacking 26:44
Building UnpacMe 1.0 35:58
Building UnpacMe 2.0 39:41

Some research notes...

Saffron BlackHat Talk
https://www.blackhat.com/presentation...

Packer Attacker Talk
https://www.slideshare.net/EC-Council...

Pintool Unpacking PoC
http://jbremer.org/malware-unpacking-...

Open Sourced Frida Based Unpacker (Proof of Concept)
https://github.com/OALabs/frida-extract

EndGame Process Injection Techniques
https://www.endgame.com/blog/technica...

Feedback, questions, and suggestions are always welcome : )

Sergei   / herrcore  
Sean   / seanmw  

As always check out our tools, tutorials, and more content over at https://www.openanalysis.net

#MalwareAnalysis #Unpacking #Automation

Watch video UnpacMe Automated Malware Unpacking - How We Built It and Why online without registration, duration hours minute second in high quality. This video was added by user OALabs 06 January 2020, don't forget to share it with your friends and acquaintances, it has been viewed on our site 16,172 once and liked it 439 people.

play_arrow
580
22

Explained: How to shoot an event 📸 Use this vision! 🙌

Explained: How to shoot an event 📸 Use this vision! 🙌

play_arrow
371
85

00:00:00

ModerPlay против ДИМЫРИ́КА | БИТВА ЛЕГЕНД | 1 серия

ModerPlay против ДИМЫРИ́КА | БИТВА ЛЕГЕНД | 1 серия
play_arrow
1,942
39

Two Sided Geometry in Marmoset ToolBag 4 | Tamil Tutorial| Cull Back Faces

Two Sided Geometry in Marmoset ToolBag 4 | Tamil Tutorial| Cull Back Faces
play_arrow
125
5

Top 5 Smart Gadgets from Amazon under 1000 bucks from online stores

Top 5 Smart Gadgets from Amazon under 1000 bucks from online stores
play_arrow
1,027,088
39K

CATEYE Makeup

CATEYE Makeup
play_arrow
1,139
4

Visit St. Francis College

Visit St. Francis College
play_arrow
149,339
5.5K

Soldiers React To Roman Dmitry | The Heavenly Demon Can't Live A Normal Life | Nirimi_Kun

Soldiers React To Roman Dmitry | The Heavenly Demon Can't Live A Normal Life | Nirimi_Kun
play_arrow
1,689,373
5.1K

Ikkitousen Western Wolves [•AMV•]~House Of Glass (Hentai Chicas Sexy)🔥

Ikkitousen Western Wolves [•AMV•]~House Of Glass (Hentai Chicas Sexy)🔥
Related
play_arrow
Zombieware

Zombieware
play_arrow
Introduction to YARA Part 2 - Hunting on UnpacMe

Introduction to YARA Part 2 - Hunting on UnpacMe
play_arrow
Introduction to YARA Part 3 - Rule Use Cases

Introduction to YARA Part 3 - Rule Use Cases
play_arrow
Introduction to YARA Part 4 - Efficient Rule Development

Introduction to YARA Part 4 - Efficient Rule Development
play_arrow
Introduction to YARA Part 1 - What is a YARA Rule

Introduction to YARA Part 1 - What is a YARA Rule
play_arrow
Tips For Analyzing Delphi Binaries in IDA (Danabot)

Tips For Analyzing Delphi Binaries in IDA (Danabot)
play_arrow
How To Recognize Macro Encrypted Strings in Malware

How To Recognize Macro Encrypted Strings in Malware
play_arrow
Direct vs. Indirect Syscalls What Is All The HYPE?! [OALABS Call-In Show]

Direct vs. Indirect Syscalls What Is All The HYPE?! [OALABS Call-In Show]
play_arrow
Are Red Team Tools Helping or Hurting Our Industry? [OALABS Call-In Show]

Are Red Team Tools Helping or Hurting Our Industry? [OALABS Call-In Show]
play_arrow
Reverse Engineering With Unicorn Emulation

Reverse Engineering With Unicorn Emulation
play_arrow
Emulation Fundamentals - Writing A Basic x86 Emulator

Emulation Fundamentals - Writing A Basic x86 Emulator
play_arrow
AV Emulation Detection Tricks Used by Malware

AV Emulation Detection Tricks Used by Malware
play_arrow
Tips to Learn Reverse Engineering: Avoid These Common Pitfalls!

Tips to Learn Reverse Engineering: Avoid These Common Pitfalls!
play_arrow
Understanding The PEB for Reverse Engineers

Understanding The PEB for Reverse Engineers
play_arrow
Well it finally happened... infected myself with Emotet lel

Well it finally happened... infected myself with Emotet lel
play_arrow
ESXiArgs Ransomware Analysis with @fwosar

ESXiArgs Ransomware Analysis with @fwosar
play_arrow
Do Companies Actually Pay Ransomware [ Reverse Engineering AMA ]

Do Companies Actually Pay Ransomware [ Reverse Engineering AMA ]
play_arrow
What The Security Industry Should Know About Reverse Engineering [ Reverse Engineering AMA ]

What The Security Industry Should Know About Reverse Engineering [ Reverse Engineering AMA ]
play_arrow
What is The Future of Reverse Engineering [ Reverse Engineering AMA ]

What is The Future of Reverse Engineering [ Reverse Engineering AMA ]
play_arrow
One Trick To Level Up Your Reverse Engineering [ Reverse Engineering AMA ]

One Trick To Level Up Your Reverse Engineering [ Reverse Engineering AMA ]
play_arrow
How To Identify Unknown Crypto Functions [ Reverse Engineering AMA ]

How To Identify Unknown Crypto Functions [ Reverse Engineering AMA ]
play_arrow
Tips For Writing a .NET Static Config Extractor for Malware [ Reverse Engineering AMA ]

Tips For Writing a .NET Static Config Extractor for Malware [ Reverse Engineering AMA ]
play_arrow
What Is The Most Interesting Malware From 2022 [ Reverse Engineering AMA ]

What Is The Most Interesting Malware From 2022 [ Reverse Engineering AMA ]
play_arrow
Most Embarrassing Malware You Have Analyzed [ Reverse Engineering AMA ]

Most Embarrassing Malware You Have Analyzed [ Reverse Engineering AMA ]