Jump to content
Tuts 4 You

A New Anti-Olly Trick


waliedassar

Recommended Posts

It is a buffer overflow in ollydbg v1.10. It occurs when olly tries to find the .sym file for the being-loaded module.

POC:
/>http://ollytlscatch.googlecode.com/files/trick.exe
/>https://docs.google.com/document/d/1T5LPY3qDkxmR1XVgxnsKW42lggS5iSjtQwFXOtNfqMM/edit

Further details:
/>http://waleedassar.blogspot.com/2011/12/new-ollydbg-anti-debug-trick.html


/>http://www.virustotal.com/file-scan/report.html?id=97f2c22d3fde1db56aaef4e555e32927d0a0087e7e92d369093ac5ac749e83d9-1324964958

Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...