Help please to unpack this file

[doshka]

Please can any one give help to unpack this file, i try all the tools i know but i cant able to unpack this file
you will find the link to the file in attachment
thanks

[Nacho_dj]

Hello:

Could I know which tools have you used to try to unpack it?

Cheers

Nacho_dj

[doshka]

i try RL!dePacker and PEiD_v0.9
PEiD give me "Nothing found *" as a result, i try a hard core scan and the result was "UPX 0.89.6 - 1.02 / 1.05 - 1.24 -> Markus & Laszlo" but i still cant unpack the orginal file even if i use UPX
and the result was not good..
thanks

[Nacho_dj]

There are many packer detectors:
- RDG Packer Detector
- PE Detective (CFF Explorer Suite)
- ProtectionID
- A-Ray Scanner
...

If PE Id doesn't provide any clue, for sure any of these will do it...

Cheers

Nacho_dj

[doshka]

dear Nacho_dj thanks for your help
in fact i try many many tools and all the tools you list it i try it all but i cant even finde the OEP ..
cuz of that i attache the file to check it by your self or any one want to help

thanks again

[Nacho_dj]

Ok, when tools don't help, there is a way: doing by ourselves.

What have you tried about debugging it? Have you got a clean dump?

[doshka]

I try to dump the file and debug it but the problem that i cant found the OEP
thanks

[Nacho_dj]

Have you tried setting a breakpoint when accessing to code section? This could be performed with ALT+M and then selecting the first section in your executable and then pushing F2 key to activate the breakpoint.

Normally it should enter in that section through the OEP...