|
| Author |
Message |
K.I.M
Good Member
Joined: 13 Dec 2007
Posts: 79
|
 |
|
heres my protected file unpack it and write a tourital
| Code: |
| http://www.2shared.com/file/2852542/be648d5b/Get_IPs.html |
|
|
|
 Date Posted:Sat Feb 16, 2008 2:26 amThanks: 2Thanked 1 Times In 0 Posts
|
| Author |
Message |
SHKODRAN
Hall of Fame
.png)
Joined: 09 Jun 2007
Posts: 90
|
| |
|
| What neded you the decompressed program or the way like is made? |
|
|
Date Posted:Sat Feb 16, 2008 12:14 pmThanks: 0Thanked 6 Times In 2 Posts
|
| Author |
Message |
K.I.M
Good Member
Joined: 13 Dec 2007
Posts: 79
|
| |
|
| chupachu wrote: |
I think he wants a tutorial  |
yes ur right |
|
|
Date Posted:Sun Feb 17, 2008 6:16 amThanks: 2Thanked 1 Times In 0 Posts
|
| Author |
Message |
LCF-AT
Special Member
Joined: 17 Jan 2008
Posts: 205
Location: Chateau-Saint-Martin
|
| |
|
The app is protected with armadillo 5.40 with NO special features but one this protection use a little trick with GetTickCount.
| Your download link: |
| Code: |
CALL 00BB9100
CMP DWORD PTR DS:[C1D5B8],0
JNZ SHORT 00BEC46C
CALL DWORD PTR DS:[C0E344] ; kernel32.GetTickCount
MOV DWORD PTR DS:[C1D5B8],EAX ; Get_IP's.00472E68
JMP SHORT 00BEC456 |
|
So you must set a value in eax because eax is 0 after GetTickCount to jump over the API or olly runs endless. This is a VB app.
| Your download link: |
| Code: |
004012A0 PUSH Get_IP's.004081E8 ; <- OEP
004012A5 CALL Get_IP's.0040129A ; JMP to MSVBVM60.ThunRTMain
|
|
One invalid pointer can cut away its just a loop.Iat size E8.
After unpacking no checks pops up just the normal running app.
greetz |
|
|
Date Posted:Sun Feb 17, 2008 7:02 amThanks: 0Thanked 44 Times In 29 Posts
|
| Author |
Message |
zuma555
Good Member
Joined: 05 Jan 2008
Posts: 89
|
| |
|
Okay LCF-AT is an unpacking god. Trust him! lol  |
|
|
Date Posted:Sun Feb 17, 2008 3:35 pmThanks: 0Thanked 0 Times In 0 Posts
|
| Author |
Message |
zuma555
Good Member
Joined: 05 Jan 2008
Posts: 89
|
| |
|
WHAT? how the hell you can say that a girls knows so much on unpacking??lol chups we are talking about a girls its a minor being.  |
|
|
Date Posted:Sun Feb 17, 2008 3:39 pmThanks: 0Thanked 0 Times In 0 Posts
|
| Author |
Message |
Encrypto
Super Member
Joined: 26 Jun 2007
Posts: 996
|
| |
|
Zuma555 i would like you to shut your trap ! Girls are human beings like
you !. Maybe it is foreign to you but keep your idiotic opinions to yourself.
Think how manytimes LCF-AT Has helped you and say that again!.
How dare you hold such beliefs is un-believable.
P.S : keep up the good work LCF-AT |
_________________
sig by skytactic. Thanks mate. |
|
Date Posted:Sun Feb 17, 2008 4:26 pmThanks: 3Thanked 110 Times In 40 Posts
|
| Author |
Message |
LCF-AT
Special Member
Joined: 17 Jan 2008
Posts: 205
Location: Chateau-Saint-Martin
|
| |
|
Hello together,
i just wanna say that this is a good RE board what i like and of course i try also to help other people with some RE problems if i can and i also will need sometimes help for my problems.Thank´s chupachu for this nice words so we
know us already a little bit and i have just to say same about you.
And also a thank´s for all other reverser on this place for the good welcome.
greetz |
|
|
Date Posted:Mon Feb 18, 2008 12:52 amThanks: 0Thanked 44 Times In 29 Posts
|
Astalavista Forum Index :: Crack Me's and Challenges :: Unpack Me
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
