-
Hey, when I only check anti VM, the grabber doesn't work. When I only check anti Debug, the grabber is working but the anti debug not if you can check this I'm not a pro to do that so thats why I do a…
-
I didn't see an existing implementation in al-khaser for the technique detailed here - https://search.unprotect.it/technique/smsw/
Reference: https://krabsonsecurity.com/2019/12/05/buer-loader-new-…
-
# Sample
https://play.google.com/store/apps/details?id=com.einnovation.temu&hl=en&gl=US
```sh
$ apkid ~/Downloads/Temu_\ Shop\ Like\ a\ Billionaire_2.4.1_Apkpure.apk
[+] APKiD 2.1.5 :: from RedN…
-
### What Did You Expect To Happen?
i expected it to build and let me open the file
### What Happened?
it doesnt build for me it just says Error with compiling file: module 'pyaes' has no attribute …
-
## Description
I was aware that previous versions of OFscraper are flagged by 1-2 engines on [virustotal.com](https://virustotal.com), however when I was updating to 3.12.9, my AV went off as it seem…
-
**Describe the protection**
I discovered a really interesting "String2C" protection, all the strings from the smali gets converted and encrypted to C++ (the liblzuvfr.so file). Possibly custom VNGGam…
ghost updated
3 months ago
-
Hi,
I came across some malware that uses XSETBV to check for VM presence.
Could we add some checks on this?
-
While not a full-proof detection vector, using common default VM resolutions (I.e. 800x600 or 1024x768), could be a good test for default sandboxes.
https://www.bleepingcomputer.com/news/security/t…
-
I noticed some anti analysis/VM trick which I think that is not really new at all. This trick is by computing the interval of last input events of the user. Its pseudocode is as follows:
Its a simple but great addition.