[0x0] Summary # This week i enjoyed solving a reverse engineering challenge proposed by 0verfl0w in the context of the amazing malware analysis course zero2auto. The main task was to reverse engineer the string decryption routine used by Gozi. I really liked this challenge because it improve my technical and methodological skills, without too much drama here is my write up ☺️ [0x1] Unpacking the first stage # When we start analyzing malware, one of the earlier verifications is to check if the sample that we are dealing with is packed .