During runtime we can see more dlls being imported. importsįrom IDA Pro we can see that DLL1, Dll2, KERNE元2 and NETAPI32 is imported by the malware. What DLLs are imported by Lab09-03.exe? Figure 1. The purpose of this lab is to make you comfortable withįinding the correct location of code within IDA Pro when you are looking atġ. Viewing these DLLs in OllyDbg versus IDA Pro, code may appear at different That are all built to request the same memory load location. This malware loads three included DLLs (DLL1.dll, DLL2.dll, and DL元.dll) View report here(1) & here(2) & here(3) & here(4)Īnalyze the malware found in the file Lab09-03.exe using OllyDbg and IDA Pro.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |