17 PACKERS AND UNPACKING MALWARE
Modern malware needs built-in protections to evade modern endpoint and network defenses. Ideally, these protections will also impede reverse-engineering and help protect the malware’s payload and internals from investigators. One option is a packer, a tool that adds obfuscation and protection to software. Many of the malware samples you’re likely to encounter in the wild will be packed, so it’s very important to be familiar with them. This chapter will introduce various types of malware packers, their architecture, how they work, and, most importantly, how to bypass them in order to access the malicious code ...
Get Evasive Malware now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
