Themida x64 architecture decision vulnerability exploit to unpack protected targets

February 1, 2018

I just came across to this video on YouTube and thought it will not be a bad idea to share it with the community, and I don't know if this is new for some people or not but...

February 1, 2018

hello, this is not a vulnerability of themida, its a vulnerability of process hollowing procedure if you don't take the precaution of protecting the injected process itself. If you use the protection in a wrong way, then it stops being secure. Themida is alright. This is a rare example of one very bad implementation of themida and it can happen to any other protector if bad implemented.

Edited February 1, 2018 by Aesculapius

February 1, 2018

Very interesting technique

February 1, 2018

It is easier with megadumper...

February 2, 2018

yes, the app add Themida x64 protected is weakness. Just megadumper + de4dot .

April 9, 2018

where is the video?

any one can upload it again?

April 9, 2018

No sure if it is the same video but its the same idea

Sign In

Themida x64 architecture decision vulnerability exploit to unpack protected targets

Recommended Posts

loggedout

Link to comment

Share on other sites

Aesculapius

Link to comment

Share on other sites

samoray

Link to comment

Share on other sites

cachito

Link to comment

Share on other sites

collins

Link to comment

Share on other sites

V65j

Link to comment

Share on other sites

jameswoods

Link to comment

Share on other sites

Create an account or sign in to comment

Create an account

Sign in

Community

Search