CodeOfDark Posted October 19, 2018 Share Posted October 19, 2018 Difficulty : 2-3 Language : .NET Platform : Windows OS Version : Windows7+ Packer / Protector : PandaObfuscator (Modded Confuser) with Custom VM Description : Just basic UnpackMe, want to see if my obfuscator good/bad Screenshot : GetMe.7z Link to comment Share on other sites More sharing options...
tathanhdinh Posted January 8, 2019 Share Posted January 8, 2019 (edited) I'm cannot resolve the challenge yet, it's indeed very hard (at least for me). I would like just to know whether I've got the correct partial result or not. I've managed to "dump" the key checking procedure, which locates on several non-contiguous pages (!?). The attached image is a part of it (I don't know how to capture all the function). I've found that there is a loop which reads each chararacter (input key is a wide string, each char is 2 bytes) by the instruction movz ecx, [eax + ebx * 2] the character is then checked with several values (e.g. "-", etc). But I still cannot go further. Edited January 8, 2019 by tathanhdinh code reformat Link to comment Share on other sites More sharing options...
SHADOW_UA Posted January 8, 2019 Share Posted January 8, 2019 Unpacked Use any long key to pass checks. GetMe_unp.zip 4 1 Link to comment Share on other sites More sharing options...
tathanhdinh Posted January 9, 2019 Share Posted January 9, 2019 (edited) WTF, I've gone seriously wrong with this challengeĀ š¤ . Excellent work, @SHADOW_UA Edited January 9, 2019 by tathanhdinh Link to comment Share on other sites More sharing options...
CodeOfDark Posted January 12, 2019 Author Share Posted January 12, 2019 Gj @SHADOW_UA Link to comment Share on other sites More sharing options...
Zyhes Posted January 31, 2019 Share Posted January 31, 2019 (edited) On 1/8/2019 at 9:47 PM, SHADOW_UA said: Unpacked Use any long key to pass checks. GetMe_unp.zip Ā Any info of how you did it? Edited January 31, 2019 by Zyhes Link to comment Share on other sites More sharing options...
BataBo Posted June 12, 2020 Share Posted June 12, 2020 I'm sure I'm late to the party,the password is:VGhpcyBTaW1wbGUgQ3JhY2tNZQ0kQnkgQ29kZU9mRGFyaw== 1 Link to comment Share on other sites More sharing options...
tungtruong20xx Posted September 5, 2020 Share Posted September 5, 2020 can u help me this method sorry my english is bad exe and runtime.dll Link to comment Share on other sites More sharing options...
0x29A Posted March 20, 2021 Share Posted March 20, 2021 (edited) On 9/5/2020 at 10:27 PM, tungtruong20xx said: can u help me this method sorry my english is bad exe and runtime.dll give me the file Edited March 20, 2021 by deluxe Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now