Latest Solutions

Clear

Solution	Author	SHA256	Difficulty	Tags	Posted
Extractor for custom PyInstaller executables as seen in PDFly or PDFClick	struppigel	`8c9d9150efa35278afcb23f2af4c4babcc4dd55acd9e839bed4c04cb5a8d9c3f`	advanced	packed custom wrapper evilai pdf converter pyinstaller	01 Feb 2026
The Wolf in AutoIt’s Clothing - How Vidar Hides in Plain Sight	para0x0dise	`eee8a68511bd00ff98425cf9e9bd12873a5e742548fe7e2b72add7ff8dbabb24`	advanced	packed autoit cypherit	31 Jan 2026
[Samplepedia Solution] Unveiling the Layers: Analyzing a Multi-Stage APT-Style Loader	m4n0w4r	`5544e6c66cbf6503cddef2797acbff4fb81ededaef2334a596e6484cfaa0b8e8`	medium	dll sideloading packed shellcode	19 Jan 2026
JS to PowerShell to XWorm with Binary Refinery	struppigel	`cb21368467bdf0ca8a4cd458f54d684e10da2d43a9c7285e094d39bdc410fb10`	medium	packed powershell config extraction xworm stage 2	04 Jan 2026
Virut's File Infection, Part 3	struppigel	`096607aa89ea6f17e5a815a67b94bc245ecbf18a87705e1dec2f1d85f8350e32`	advanced	packed virut polymorphic virus hooking self-modifying	28 Dec 2025
Virut's Ntdll Hooking and Process Infection, Part 2	struppigel	`096607aa89ea6f17e5a815a67b94bc245ecbf18a87705e1dec2f1d85f8350e32`	advanced	packed virut polymorphic virus hooking self-modifying	28 Dec 2025
Virut, Unpacking a Polymorphic File Infector, Part I	struppigel	`096607aa89ea6f17e5a815a67b94bc245ecbf18a87705e1dec2f1d85f8350e32`	advanced	packed virut polymorphic virus hooking self-modifying	28 Dec 2025

Page 1 of 1

Solutions Overview