41.w4r10r

ZeroAccess new variant(Self Debugging) Unpacker
by
41.w4r10r

View Profile

View Forum Posts

Private Message

View Blog Entries

View Articles

, 12-04-2013 at 04:04 PM
On Behalf of Arunpreet Singh

ZeroAccess new variant (crypter) is in the news from past few days. It is different from traditional crypters which either uses RunPE or overwrite the original image with decrypted Image.It is already covered in avast blog post ,so i will just summarize it in shorter steps.It Basically uses Self debugging concept (it’s not a new thing)

1)Launch its own instance in debug mode (child process)
2)Parents Process Enter into debug ...

Tags: self debugging, unpacking, zap, zeroaccess

Categories

Uncategorized
0 Comments

Read More

+ Create Blog

Blog Categories
Local Categories
- Uncategorized
Recent Blog Posts
- This is test Blog
  10-01-2014 03:39 PM
- Test Blog
  10-01-2014 03:37 PM
- ZeroAccess new variant(Self Debugging) Unpacker
  12-04-2013 04:04 PM
Recent Visitors
- "vinnu",
- amolnaik4,
- b0nd,
- br0wn_sug4r,
- dracula23064,
- fb1h2s,
- purplex,
- spidey,
- the dark hat,
- Vrajesh

Archive

All times are GMT +5.5. The time now is 04:45 AM.

Powered by vBulletin® Version 4.2.1
Copyright © 2023 vBulletin Solutions, Inc. All rights reserved.

Copyright 2010 - 2017, Garage4Hackers