A forum for reverse engineering, OS internals and malware analysis 

Trojan:WinNT/Hookmoot.gen!A

Forum for analysis and discussion about malware.

Trojan:WinNT/Hookmoot.gen!A

 #17080  by hx1997
 Sat Dec 08, 2012 1:39 pm
PEiD Result
Armadillo 3.78 - 4.xx -> Silicon Realms Toolworks

Antidebug
Can somebody unpack this sample? Thanks!
Attachments
infected
(1.64 MiB) Downloaded 49 times

Re: Trojan:WinNT/Hookmoot.gen!A

 #17081  by Xylitol
 Sat Dec 08, 2012 2:13 pm
it's the version 8.40
https://www.virustotal.com/file/d83f0e4 ... 354976095/
would be easier to find non-armapacked version i think (it's in attach)
https://www.virustotal.com/file/d7e8730 ... 354976255/
still i can get more samples, hookmoot.gen!a seem not difficult to find.
Attachments
infected
(532.7 KiB) Downloaded 58 times
 Return to “Malware”