Contribute  :  Web Resources  :  Past Polls  :  Site Statistics  :  Downloads  :  Forum  
    BiW ReversingThe challenge is yours    
advanced search  
Topics
News (14)
Tutorials (115)
Crackmes (70)
Coding (23)
Challenges
Download
Hall Of Fame
User Functions
Username:

Password:

Don't have an account yet? Sign up as a New User
Banners
 Welcome to BiW Reversing
 Sunday, April 02 2023 @ 09:56 AM CEST
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

PowerArchiver 2006

 
Post new topic   Reply to topic    www.reversing.be Forum Index -> Unpacking
View previous topic :: View next topic  
Author Message
Khaosgott96
Frequent poster
Frequent poster


Joined: 15 Aug 2005
Posts: 74
PostPosted: Thu Jun 29, 2006 5:08 am    Post subject: PowerArchiver 2006 Reply with quote
hey guys some of you may remember me. ive been real busy just graduating high school and all and moving on to college. ive finally finished settling with the move and ready to start cracking again. ive forgotten alot. i have even had to refer back to my own tutorials for reference. anyway if any of you remember about a year back i wrote a tutorial on Serial Fishing - PowerArchiver 2004.

it can be found on my forum at http://khaosreversing.r8.org in the tutorials section.

anyways. i moved on to trying to serial fish PowerArchiver 2006. looks ALOT different than 2004 when i pop it open in Olly. first thing i noticed is that it looks like its packed. i scanned it with PEiD, nothing found. so i tried to manually unpack it and in a failed attempt, locked up my computer.

so if any of you guys could get me a start on this i can probably do the rest my-self and ill write another tutorial on it. yes i will include pics and give credit to those who helped me figure this one out.

Greatly appreciated,

~Khaosgott96~
Back to top
View user's profile Send private message
SKiLLa
Frequent poster
Frequent poster


Joined: 29 Mar 2005
Posts: 79
PostPosted: Thu Jun 29, 2006 7:50 am    Post subject: Reply with quote
PEiD detects it as Delphi, but using haggar's PEiD signatures I get: Gleam v1.00 * (never heard of it though) ...

You can find Gleam v1.01 at: hxxp://sac.itb.it/security/gleam101.zip

EDIT: check the topic on ARTeam, seems it's ExeCryptor ...

Good luck !
Back to top
View user's profile Send private message
bengunn
Regular
Regular


Joined: 15 Apr 2005
Posts: 118
PostPosted: Thu Jun 29, 2006 1:38 pm    Post subject: target Reply with quote
Side note: this target its one of those fairly rare times you can get a working dump of execryptor protected exe with little effort (or reversing skill), well I should say semi working, I packed and unpacked a test folder with the dumped exe and no problems but dumped power archiver is only working on the os I dumped it on. I don't spend much time with execryptor, usually there would be far too much work involved in getting a working dump to make it worthwhile.
Back to top
View user's profile Send private message
Khaosgott96
Frequent poster
Frequent poster


Joined: 15 Aug 2005
Posts: 74
PostPosted: Fri Jun 30, 2006 6:00 am    Post subject: Reply with quote
thanks for the heads up on that. looks like they REALLY changed there protection scheme as phishing a serial from 2004 was like taking candy from a baby.

i need to start re-learning all what i knew and much more before i start screwing with Execryptor.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    www.reversing.be Forum Index -> Unpacking All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
 Copyright © 2023 BiW Reversing
 All trademarks and copyrights on this page are owned by their respective owners.		 Powered By Geeklog 
Created this page in 0.82 seconds