Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

[unpackme] unpackme

mm10121991
mm10121991
in UnPackMe

Featured Replies

Posted

this is a small easy unpackme

good luck on unpacking it and tell me your opinion on it

:)

unpackme.rar

Edited by mm10121991

Hi

Here is unpacked file.

ASPack + Self Modify.

Kind Regards.

Unpacked.rar

  • Author

good work

well done raham.

just give atry .. its semi unpacked xD

semiunpack.rar

Here ya go:

Clean dump everything returned to the original code and encryption removed as well as the macro.

http://www.2shared.c...TA7j2/dump.html

No keygen I'm not that kind of guy. Though one could easily rip the algo.

Was quite fun, not hard but it has everything for someone that wants to get introduced into unpacking. Simple redirected API's, a macro, obfuscated oep.

Not so much for the hardcore unpacker though.

Found it over @ arteam.. but seems raham beat me to it doing a clean unpack. ;)

regards,

q

dump.rar

Edited by Teddy Rogers
Attached file...

hey Raham\quosego i just unpack but how you fully remove the crypt by hand or there away to auto do it?:o

Well the oep obfuscation is only like 10 instructions interlaced with jumps. So that shouldn't be hard, simple manual copy paste. The other macro is a question of filtering out the useless functions and only retaining the original code which are only two/three instructions. It's obvious the PE header checking can be removed and then just dump the decrypted code to the exe.

    •
    • Like 1

    thank you for tip Mr.quosego

    • Author

    nice work quosego :)

    • 4 months later...

    does any one have a tutorial on this unpackme?


    1. For me the serial was: 484830


    2. About the stolen OEP instructions was about 10 as mr. Q say :


     


     

    PUSH EBP

    MOV EBP,ESP

    PUSH -0x1

    PUSH 0x4050C0

    PUSH 0x402678

    MOV EAX,DWORD PTR FS:[0]

    PUSH EAX

    MOV DWORD PTR FS:[0],ESP

    SUB ESP,0x58

    PUSH 0x401242

     

    Then i have 2 invalid imports:


    GetDlgItemTextA

    MessageBoxA

     

    Short video attached.

    The story.....rar

    Edited by GIV

    Thanks GIV but i still could not unpack the exe. How to do that?


    What you done so far and what is not working?


    At last i could unpacked. Tutorial added.


    Many thanks to GIV  for his help. 


    Tutorial.rar

    Yep...


    You got-it...


    Bravo!


    • 2 weeks later...

    Dumped, Size Reduced and Keygenned (well, really, I've ripped the algo :P). This was funny to solve :victory:


     


    Solved.7z

    Create an account or sign in to comment

    Go to topic listing

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.