There is a generic and easy way to unpack Java malware that is not well-known yet. For demonstration I use a recent JAR malware sample that jumps on the COVID-19 bandwagon.
Article Link: https://feeds.feedblitz.com/~/625190382/0/gdatasecurityblog-en~Dumping-COVIDjar-with-Java-Instrumentation