Need help to unpack RLPacker with antidebug protection
I join an anti-malware community here in my country (Brazil), which developes a job similar to the MIRT from old CastleCops forum, but dedicated to local threats only (trojans bankers).
I need some help to unpack a DLL packed with:
RLPack 1.20 with fake signature (ExeInfoPE) with LZMA engine.
I already tried RLdePacker 1.4, RL!Unpacker and some IDA scripts I've found but with no results.
I attached this DLL to explorer.exe and ran the debugger, I figured it calls ntdll_DbgBreakPoint, but I have no good skills running a debugger.
Can you point me to some direction how I can learn to unpack it?
Thanks in advance.