Awaken Posted August 7, 2020 Posted August 7, 2020 Hello, Im trying to reverse malware,but can't remove the protection I think this is KoiVM(names in PE header),but oldrod can't devirtualize it What can I do?help please password:infected Btw,that malware cheks does it run on vm or not vklctukzxyuvdxvcsx.zip
0xdeadcode Posted October 15, 2020 Posted October 15, 2020 If its KoiVM then its probably modified,try to modify oldrod devirtualizator made by Washi or at least check its source code.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now