Conquest Posted March 16, 2013 Share Posted March 16, 2013 A few years ago, themida, winlicense was people's choice . everyone seems to pack everything in themida, but now, those days are over. with deathways plugin + scripts from q, LCF-AT themida codes can be reverted back to almost clean. But VMp is the new pain in ass, more and more people these days packing everything in vmp and its very hard to restore those protected apps back to their original form. i got twice infected by vmped apps supposed to be clean. anyone has any idea about if vmp apps will ever get defeated. PS: i dont even like analyzing unpacked vmp apps. IDA kind of goes crazy with them and specially the current method of restoring IAT isnt clean IMO. Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now