aljaz/securedorg.github.io
1
0
Fork 0
mirror of https://github.com/aljazceru/securedorg.github.io.git synced 2026-01-10 01:34:21 +01:00
Code Issues Packages Projects Releases Wiki Activity

fixing Entrypoint

Browse Source
This commit is contained in:
Amanda Rousseau
2017-03-27 20:28:47 -07:00
parent 2e621bec46
commit b439048fdf
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
dynamic.md
View File

@@ -12,13 +12,13 @@ title: Dynamic Analysis
## LAB 3
Dynamic analysis is a deeper analysis of the program to understand hidden functionality not understood statically. The static analysis will serve as a guide for stepping through the program in a debugger.
Open the unpacked malware into the **x64dbg** debugger and **IDAfree**.
Open the unpacked malware into the **x32dbg.exe** (refered as x64dbg) debugger and **IDAfree**.
---
### Rebasing the disassembler
Typically programs start at **004010000** but your debugger might start the program at a different address. You will need to rebase the program's address in the disassembler. In x64dbg, scroll up to find the very first address, this is the address that you will need to rebase.
Typically programs start at **004010000** but your debugger might start the program at a different address. You will need to rebase the program's address in the disassembler. In x64dbg, after you hit run or **F9**, it will stop you at the EntryPoint. Scroll up to find the very first address, this is the address that you will need to rebase.
Edit->Segements->Rebase Program.