Fr4x Posted October 27, 2019 Share Posted October 27, 2019 Language : C# .Net Platform : Windows x32/x64 OS Version : All Packer / Protector : Agile.Net v6.6 Description : Hi everyone, hope one of you friends can unpack the target and teach us how to unpack it Screenshot : Secured.rar 1 Link to comment Share on other sites More sharing options...
Teddy Rogers Posted October 28, 2019 Share Posted October 28, 2019 Your topic has not been approved. You did not follow the correct posting format and/or provided enough information regarding the challenge. Quote Language : (Assembler, C++, Java, .NET, Python, Borland, PureBasic, etc.) Platform : (Windows, Linux, Android, MacOS, DOS, etc. + architecture eg. x32/x64) OS Version : (All, Windows 7, Ubuntu 15.10, OS X v10.11, etc.) Packer / Protector : (None, ASProtect 1.73, Confuser 1.9, Enigma 4.40, UPX 3.91, etc.) Description : Description of the challenge and any other related information, this must be presented clearly and legibly. Your challenge will not be approved if this is presented poorly. Screenshot : All challenges must include a screenshot. The challenge must be attached directly to the topic and not linked to an external host. You have 48 hours to correct your topic before it will be moved to the Trashcan. For further details regarding the formatting of the topic please refer to the topic in the below link... [This is an automated reply] 2 Link to comment Share on other sites More sharing options...
Fr4x Posted October 30, 2019 Author Share Posted October 30, 2019 On 10/28/2019 at 5:34 PM, Teddy Rogers said: Your topic has not been approved. You did not follow the correct posting format and/or provided enough information regarding the challenge. You have 48 hours to correct your topic before it will be moved to the Trashcan. For further details regarding the formatting of the topic please refer to the topic in the below link... [This is an automated reply] Edited 2 Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted November 10, 2019 Share Posted November 10, 2019 (edited) https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator USE MY TOOL LAST AFTER YOU HAVE DONE THE FOLLOWING STEPS Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar Edited August 15, 2020 by N0P/ribthegreat99 UPDATE 3 2 Link to comment Share on other sites More sharing options...
ElektroKill Posted November 10, 2019 Share Posted November 10, 2019 7 hours ago, N0P/ribthegreat99 said: I have unpacked most of the protections just need someone to complete the last part of it, the calls/delegates!! Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar 37.3 kB · 2 downloads Could you provide a download for JitDumper ? I can’t find it any where Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted November 12, 2019 Share Posted November 12, 2019 On 11/11/2019 at 2:22 AM, ElektroKill said: Could you provide a download for JitDumper ? I can’t find it any where JitDumperv4.rar 5 2 Link to comment Share on other sites More sharing options...
Prab Posted April 21, 2020 Share Posted April 21, 2020 On 11/12/2019 at 2:45 PM, N0P/ribthegreat99 said: JitDumperv4.rar 159.86 kB · 236 downloads This is not working Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted April 24, 2020 Share Posted April 24, 2020 On 4/21/2020 at 11:50 AM, Prab said: This is not working you need to run it in NetBox 1 Link to comment Share on other sites More sharing options...
khodam Posted April 25, 2020 Share Posted April 25, 2020 please link for NetBox thanks Link to comment Share on other sites More sharing options...
CodeExplorer Posted April 25, 2020 Share Posted April 25, 2020 13 minutes ago, khodam said: please link for NetBox thank https://forum.tuts4you.com/topic/39321-netbox Link to comment Share on other sites More sharing options...
BlackHat Posted May 2, 2020 Share Posted May 2, 2020 On 11/10/2019 at 1:24 PM, N0P/ribthegreat99 said: I have unpacked most of the protections just need someone to complete the last part of it, the calls/delegates!! Instructions: 1. Jit-dump the executable with JitDumper3/4 enable the checkbox (Dump MD). 2. Clean the (String And Flow) with SimpleAssemblyExplorer(SAE) checking the checkbox (Delegates} as well. 3. De4dot. Files.rar 37.3 kB · 54 downloads the calls/delegates is the problem. I also stuck at this place Link to comment Share on other sites More sharing options...
GameHackerPM Posted July 4, 2020 Share Posted July 4, 2020 On 5/2/2020 at 9:47 PM, BlackHat said: the calls/delegates is the problem. I also stuck at this place The same for me! Need help with that.. All Methods are shown like that, but can't really see what does the method do?! @CodeExplorer Can you help with a tip? @N0P/ribthegreat99 Did you get it yet? or still?? Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted July 4, 2020 Share Posted July 4, 2020 8 hours ago, GameHackerPM said: The same for me! Need help with that.. All Methods are shown like that, but can't really see what does the method do?! @CodeExplorer Can you help with a tip? @N0P/ribthegreat99 Did you get it yet? or still?? Hello can you pm me this file i want to check it out. By the way, i have made a tool to deob cflow, strings, and delegates of agile Link to comment Share on other sites More sharing options...
AzoresRCE Posted July 4, 2020 Share Posted July 4, 2020 tool to decrypt strings & delegates will make public switch (num) { case 0: { bool flag = !(this.\u00A0.Text == " ! C@tch Y0u ,B@bY"); num = Math.Abs(-8); continue; } UnpackMe-noag.exe Link to comment Share on other sites More sharing options...
BlackHat Posted July 4, 2020 Share Posted July 4, 2020 7 hours ago, N0P/ribthegreat99 said: Hello can you pm me this file i want to check it out. By the way, i have made a tool to deob cflow, strings, and delegates of agile can You share? Link to comment Share on other sites More sharing options...
GameHackerPM Posted July 4, 2020 Share Posted July 4, 2020 8 hours ago, AzoresRCE said: tool to decrypt strings & delegates will make public switch (num) { case 0: { bool flag = !(this.\u00A0.Text == " ! C@tch Y0u ,B@bY"); num = Math.Abs(-8); continue; } UnpackMe-noag.exe Any ETA? Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted July 8, 2020 Share Posted July 8, 2020 (edited) https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! Edited July 8, 2020 by N0P/ribthegreat99 4 2 Link to comment Share on other sites More sharing options...
GameHackerPM Posted July 8, 2020 Share Posted July 8, 2020 12 hours ago, N0P/ribthegreat99 said: https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! I still couldn't fix the delegates (Methods VM) , I sent you a message via Email, please check it. Link to comment Share on other sites More sharing options...
BlackHat Posted July 9, 2020 Share Posted July 9, 2020 16 hours ago, N0P/ribthegreat99 said: https://github.com/ribthegreat99OrN0P/Agile.NET-Deobfuscator @GameHackerPM @BlackHat To fix delegates, controlflow, and strings here yous go ive made a tool with many comments to help you understand! Lots of Love for Your Work. ❤️ Link to comment Share on other sites More sharing options...
MaslovKK Posted July 21, 2020 Share Posted July 21, 2020 On 4/26/2020 at 12:09 AM, CodeExplorer said: https://forum.tuts4you.com/topic/39321-netbox How to use it? Link to comment Share on other sites More sharing options...
notkult Posted October 4, 2020 Share Posted October 4, 2020 (edited) On 11/11/2019 at 11:45 PM, N0P/ribthegreat99 said: JitDumperv4.rar 159.86 kB · 626 downloads @N0P/ribthegreat99NetBox seems to just start the program then instantly stop it, any fix? Edited October 4, 2020 by notkult Link to comment Share on other sites More sharing options...
N0P/ribthegreat99 Posted October 7, 2020 Share Posted October 7, 2020 On 10/4/2020 at 2:27 PM, notkult said: @N0P/ribthegreat99NetBox seems to just start the program then instantly stop it, any fix? Try use it on a windows 7 vm/machine Link to comment Share on other sites More sharing options...
notkult Posted October 9, 2020 Share Posted October 9, 2020 On 10/6/2020 at 7:04 PM, N0P/ribthegreat99 said: Try use it on a windows 7 vm/machine Used it on a laptop with Windows 8, worked just fine. Link to comment Share on other sites More sharing options...
Kurapica Posted October 9, 2020 Share Posted October 9, 2020 Just a little tip, JitDumper is good as long as you are running it against an executable which needs .NET 4.0 or earlier but once you start unpacking DLLs which require .NET 4.5 or higher, it will probably crash, so it's going to be obsolete sooner or later and a new approach will have to be created. 1 Link to comment Share on other sites More sharing options...
notkult Posted October 9, 2020 Share Posted October 9, 2020 13 hours ago, Kurapica said: Just a little tip, JitDumper is good as long as you are running it against an executable which needs .NET 4.0 or earlier but once you start unpacking DLLs which require .NET 4.5 or higher, it will probably crash, so it's going to be obsolete sooner or later and a new approach will have to be created. Thanks for the tip! I ran it for a standard .NET Framework 4.0 exe and worked fine. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now