Jump to content
Tuts 4 You


Teddy Rogers

Recommended Posts

Teddy Rogers

Trojan-Downloader.Win32.Small or Win32/PolyCrypt Analysis

PolyCrypt is spreaded through infected Websites by using Exploits or every other form of abusive Download mechanism. PolyCrypt is weakly Packer Protected, so with VMUnpack we can suddenly obtain the full working unpacked copy.



  • Like 1
Link to comment
Share on other sites


That's all? It ends right before the analysis of msstub.dll...isn't there a second paper?

Thanks. :D

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...