mal_unpack
Dynamic unpacker based on PE-sieve.
It deploys a packed malware, waits for it to unpack the payload, dumps the payload, and kills the original process.
Usage
mal_unpack.exe /exe <path_to_the_malware> /timeout <timeout: ms>
WARNING: This unpacker deploys the original malware. Use it only on a VirtualMachine.
Clone
Use recursive clone to get the repo together with submodules:
git clone --recursive https://github.com/hasherezade/mal_unpack.git
Builds
Download the latest release.