Awaken Posted August 7, 2020 Share Posted August 7, 2020 Hello, Im trying to reverse malware,but can't remove the protection I think this is KoiVM(names in PE header),but oldrod can't devirtualize it What can I do?help please password:infected Btw,that malware cheks does it run on vm or not vklctukzxyuvdxvcsx.zip Link to comment Share on other sites More sharing options...
Awaken Posted August 8, 2020 Author Share Posted August 8, 2020 Anyone? Link to comment Share on other sites More sharing options...
Awaken Posted October 14, 2020 Author Share Posted October 14, 2020 Still lookin for any help/advice Link to comment Share on other sites More sharing options...
0xdeadcode Posted October 15, 2020 Share Posted October 15, 2020 If its KoiVM then its probably modified,try to modify oldrod devirtualizator made by Washi or at least check its source code. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now