Main.UnpackingNotes History

Hide minor edits - Show changes to output

June 16, 2012, at 10:38 PM EST by 155.97.237.229 -
Changed lines 23-25 from:
[[http://static.usenix.org/event/woot09/tech/full_papers/rolles.pdf | Unpacking virtualization obfuscators.]]. Rolf Rolles. In WOOT'09.
to:
[[http://static.usenix.org/event/woot09/tech/full_papers/rolles.pdf | Unpacking virtualization obfuscators.]]. Rolf Rolles. In WOOT'09.

Java
Restore
June 16, 2012, at 10:34 PM EST by 155.97.237.229 -
Changed lines 11-12 from:
to:
!Code normalization

[[http://infoscience.epfl.ch/record/167534/files/malwarenorm.pdf | Malware Normalization]].
Changed line 23 from:
[[http://static.usenix.org/event/woot09/tech/full_papers/rolles.pdf | Unpacking virtualization obfuscators.]]. Rolf Rolles. In WOOT'09.
to:
[[http://static.usenix.org/event/woot09/tech/full_papers/rolles.pdf | Unpacking virtualization obfuscators.]]. Rolf Rolles. In WOOT'09.
Restore
June 16, 2012, at 10:31 PM EST by 155.97.237.229 -
Changed lines 19-21 from:
[[http://smartech.gatech.edu/xmlui/bitstream/handle/1853/30791/GT-CS-09-05.pdf?sequence=1 | Rotalume: A Tool for Automatic Reverse Engineering of Malware Emulators]]. Monirul Sharif, Andrea Lanzi, Jonathon Giffin, Wenke Lee.
to:
[[http://smartech.gatech.edu/xmlui/bitstream/handle/1853/30791/GT-CS-09-05.pdf?sequence=1 | Rotalume: A Tool for Automatic Reverse Engineering of Malware Emulators]]. Monirul Sharif, Andrea Lanzi, Jonathon Giffin, Wenke Lee.

[[http://static.usenix.org/event/woot09/tech/full_papers/rolles.pdf | Unpacking virtualization obfuscators.]]. Rolf Rolles. In WOOT'09.
Restore
June 16, 2012, at 10:29 PM EST by 155.97.237.229 -
Changed lines 1-2 from:
[[http://www.scribd.com/doc/78588052/Survey-of-Unpacking-Malware | Survey of Unpacking Malware]].
to:
[[http://www.scribd.com/doc/78588052/Survey-of-Unpacking-Malware | Survey of Unpacking Malware]]. Silvio Cesare.

[[ http://www.foocodechu.com/?q=node/10 | Fast Automated Unpacking and Classification of Malware]]. Silvio Cesare. MS Thesis. 2010.

[[http://indefinitestudies.org/2008/09/25/automatic-unpacking/ | A Quick Survey on Automatic Unpacking Techniques]].
Changed lines 11-12 from:
[[http://indefinitestudies.org/2008/09/25/automatic-unpacking/ | A Quick Survey on Automatic Unpacking Techniques]].
to:
Changed lines 15-19 from:
Program feature analysis: Polymorphic worm detection using structural information of executables.
to:
Program feature analysis: Polymorphic worm detection using structural information of executables.

!Code virtualization

[[http://smartech.gatech.edu/xmlui/bitstream/handle/1853/30791/GT-CS-09-05.pdf?sequence=1 | Rotalume: A Tool for Automatic Reverse Engineering of Malware Emulators]]. Monirul Sharif, Andrea Lanzi, Jonathon Giffin, Wenke Lee.
Restore
June 15, 2012, at 07:37 AM EST by 155.97.237.229 -
Changed lines 9-11 from:
Undecidable disassembly: An approach to program detranslation.
to:
Undecidable disassembly: An approach to program detranslation.

Program feature analysis: Polymorphic worm detection using structural information of executables.
Restore
June 15, 2012, at 07:26 AM EST by 155.97.237.229 -
Changed lines 7-9 from:
[[http://indefinitestudies.org/2008/09/25/automatic-unpacking/ | A Quick Survey on Automatic Unpacking Techniques]].
to:
[[http://indefinitestudies.org/2008/09/25/automatic-unpacking/ | A Quick Survey on Automatic Unpacking Techniques]].

Undecidable disassembly: An approach to program detranslation.
Restore
June 14, 2012, at 12:44 PM EST by 155.99.180.73 -
Added lines 1-2:
[[http://www.scribd.com/doc/78588052/Survey-of-Unpacking-Malware | Survey of Unpacking Malware]].
Restore
June 14, 2012, at 12:41 PM EST by 155.99.180.73 -
Added lines 1-5:
[[http://uninformed.org/?v=10&a=1&t=txt | Using dual-mappings to evade automated unpackers]].

[[http://bitblaze.cs.berkeley.edu/papers/renovo.pdf | Renovo: A Hidden Code Extractor for Packed Executables]].

[[http://indefinitestudies.org/2008/09/25/automatic-unpacking/ | A Quick Survey on Automatic Unpacking Techniques]].
Restore