Jump to content
View in the app

A better way to browse. Learn more.

Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Featured Replies

Posted

Very easy fishme:

http://downtown.vc/index.php?page=main&id=89092038&name=FishMe.v.1.exe.rar

Edited by Teddy Rogers
Corrected topic title...

  • 8 months later...

This file shows up as a trojan backdoor.

This file shows up as a trojan backdoor.

Upack is evil ;)

Not sure if it is needed (or correct)

CD407CDC <-- OEP??

greetz

Edited by BlacKaT

004502F7 <<<<<< Serial

00455424 > 55 PUSH EBP ; OEP!

Edited by dustyh1981

ok, see this is why i normally don't use tools ;) (quick unpack)

my post ladies and gentleman is why you should always mup. ;)

Edited by BlacKaT

WinUpack is pretty easy.

Step with F7... after 2 EAX = OEP, set HWBP there, and run twice or so. 2nd time it breaks it is unpacked.

You can find the import redirection by HWBP first byte in IAT, you will have to break several times until you see it writes the redirected import to the JMP table. Then there is JE after comparing EAX to see if the import is by ordinal. Trace into the call after and that is the import redirection routine, which you can patch easy, there is a JE you patch to JMP.

Some of the imports can be emulated a bit like old asprotect... so you just need to use some brains to figure these... typical is GetProcAddress.

Lord 0.o I do think i have been noob'd. :sweat:

Edited by BlacKaT

Create an account or sign in to comment

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.