Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

[unpackme] Themida v2.0.5.0 ;)

Sp1d3rZ
Sp1d3rZ
in UnPackMe

Featured Replies

Posted

Protection Options for TMD 2.0.5.0 UnPack ME.exe

------------------------------------------------

Macros Information

------------------

VM Macros: 0

CodeReplace Macros: 0

ENCRYPT Macros: 0

CLEAR Macros: 0

CHECK_PROTECTION Macros: 0

Protection Options

------------------

Anti-Debugger: Ultra

Anti-Dumpers: ENABLED

Entry Point Ofuscation: ENABLED

Resource Encryption: ENABLED

VMWare compatible: ENABLED

API-Wrapping Level: Level 2

Anti-Patching: File Patch (sign support)

Metamorph Security: ENABLED

Memory Guard: ENABLED

When Debugger Found: Display Message

Application compression: ENABLED

Resources compression: ENABLED

SecureEngine compression: ENABLED

Anti-File Monitor: ENABLED

Anti-Registry Monitor: ENABLED

Delphi/BCB form protection: ENABLED

Virtual Machine Settings

------------------------

Number of Virtual APIs wrapped: 0

API Virtualization Level: 3

Entry Point Virtualization: 15 instructions

Multi Branch Technology: DISABLED

Virtual Machine Processor: Mutable CISC processor

Number of CPUs: 1

Opcode Type: Metamorphic - Level 2

Dynamic Opcode: 20% Dynamic

Advanced Protection Options

---------------------------

Encrypt Application: ENABLED

DLL plugin: DISABLED

Hide from PE scanners: Type 3

.NET assemblies: ENABLED

Active Context: DISABLED

Add Manifest: XP Themes

XBundler files

--------------

No files to bundle

IF U UNPACK IT, PLEASE WRITE A TUT ;)

TMD_2.0.5.0_UnPack_ME.rar

Hello,

so you can also use my script to unpack your unpackMe.

PS: One question - so I see after unpacking I have again to change the target mode to win 98 to get a working file.Its the same like in your older 20.30 unpackMe.Can someone tell me whether is there a special reason for this or is there just something to change in the PE Header to get this dump working without to enable the win 98 mode?Thanks.

greetz

veary easy indeed, simple VM used, and also vb programs are easier to unpack.

  • Author
veary easy indeed, simple VM used, and also vb programs are easier to unpack.

SO! where is solved unpackme? :P

  • Author
SO! where is solved unpackme? :P

See attached.

OH ya AWESOME Work Cheers :thumbsup:

But see solving rulez... :rule1:

bah, i'll not write a tut on a so simple packed file. It was really too easy. Next time do not use vb and try to make an unpackme virtualizing some procedure and with a more complex VM.

Create an account or sign in to comment

Go to topic listing

Configure browser push notifications
Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.