Jump to content
Tuts 4 You

Cant unpack malware under VM


Recommended Posts

Hello, Im trying to reverse malware,but can't remove the protection
I think this is KoiVM(names in PE header),but oldrod can't devirtualize it
What can I do?help please


Btw,that malware cheks does it run on vm or not


Link to comment
Share on other sites

  • 2 months later...

If its KoiVM then its probably modified,try to modify oldrod devirtualizator made by Washi or at least check its source code.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...