Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development: unpacking UPX or PE-packed binaries

unpacking UPX or PE-packed binaries

From: Karma <steve_at_frij.com>
Date: Fri, 23 Apr 2004 12:25:38 +1000

Hi List,

Just interested in how AV R&D companies unpack worms with complex UPX and PE
pack protocols.

Been trying to disect the recent Gaobot variants and getting no where with
my generic UPX-unpacker. Since this is more and more commonly used, I
thought I would be wise to consult the Lists.

Cheers,

Karma
Received on Apr 23 2004

This message: [ Message body ]
Next message: Kevin Partridge: "cobol language vulnerabilities"
Previous message: Greg Kilford: "key material"
Next in thread: Gadi Evron: "Re: unpacking UPX or PE-packed binaries"
Reply: Gadi Evron: "Re: unpacking UPX or PE-packed binaries"
Reply: Blue Boar: "Re: unpacking UPX or PE-packed binaries"
Maybe reply: Kayne Ian (Softlab): "RE: unpacking UPX or PE-packed binaries"
Reply: Henrik Bøgh: "Re: unpacking UPX or PE-packed binaries"
Maybe reply: Suresh Ponnusami: "Re: unpacking UPX or PE-packed binaries"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]