Unpack Sodin, no IDAPython required

Intro I see there is quite some interest around Sodin on OSINT pages, some have problems with unpacking the sample, others reverse and create complex IDAPython scripts to recreate the IAT. In this post, I'll demonstrate a quick and easy way to unpack this malware without losing time with scripting. IDAPython has it's benefits, but … Continue reading Unpack Sodin, no IDAPython required