Matt Posted August 28, 2012 Share Posted August 28, 2012 (edited) Hello everyone After some time I finally finished beta version of my vm based protector, so I'm publishing unpackme here. Main idea behind the code was to have an ability for generating very dynamic vm, so in the attached zip you will find 2 protected executables which were built from the same target. Protected files are DEP, UAC, ALSR compatible and should launch in any NT Windows. I'm greatly welcome to hear any suggestions and critics PS: Imports redirection is disabled. PSS: don't look for "opcode + pushfd" like in tmd and vmp, eflags calculation is manual written PSSS: I think that few guys will find some of the code already familiar but let's keep this silent, I appreciate this. unpackme_apollo.zip Edited October 26, 2012 by Matt 1 Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now