Summary
In this chapter, we introduced in detail how to develop the simplest compression packers. We learned about the design concepts of modern software packers and writing the packer builder and its entry program (stub) by ourselves. In practice, this software packing technology is commonly used by cyber forces. Many unpopular packers are also extended on this basis, adding new features such as anti-debugging and anti-sandboxing against researchers, or being equipped with vulnerabilities against antivirus software to enhance the firepower of malware attacks in the wild. The technology in this chapter is important for you to master in the future, whether you are writing packers or conducting research into decrypting malware.
In the next chapter, we will introduce the digital signature design of Windows. The fact that the presence of digital signatures in program files is often used by antivirus vendors to determine whether a program is trustworthy makes attackers in the wild highly...
