Sounds dubious, do you have a citation? The disassembly looks very straightforward for a lot of Windows code.
replyThey're not encoded, but the code blocks are shuffled. That's why disassembly does look straightforward, but it used to thwart BinDiff at the time.
replyIf I understand correctly, that is just randomness comes from parallel compiling and linking.
replyIf you saying there is a whole step just scrambling blobs, i will be very surprised.
What made you believe this is the case? any examples/links/etc.?
replyIt was a part of our Windows build process when I was at Microsoft. I only assumed that they would keep doing it, but they might have as well dropped the practice.
reply