Unknown Packer, need assistance

Amorphor · #1 07-23-2011, 10:09 PM

Hello,

I have this file here:

http://www.mediafire.com/?49kis3qg2g2u33w

Informations are posted in post #4.

Thanks,

Amorphor

ac!d · #2 07-24-2011, 07:17 AM

ermmm this isn't even a exe file... its some config file etc. of some mech warrior game ;P

SunBeam · #3 07-25-2011, 03:02 AM

Yeaps. Must be he's uploaded the wrong file? :-)

Amorphor · #4 07-25-2011, 03:17 AM

Oh lol I had the wrong file.

http://www.mediafire.com/?49kis3qg2g2u33w

That's the exe file, I was in a rush to leave my house at that time so I wasn't paying much attention =P

Originally this was packed with UPX (2.0 I believe). I think I broke the UPX part (I don't see any UPX headers) but I may be wrong.

Can anyone reverse engineer that exe though? I'm asking because the team that brought that program for flash kits is now disbanded so the users wanted a way to make their own bootstrap tools.

Thanks,

Amorphor

SunBeam · #5 07-25-2011, 04:25 AM

It's clean. Pure C++.. You can use IDA 6.1 (it's been leaked already) to map out the file and try and re-write it..

Amorphor · #6 07-25-2011, 02:33 PM

Thank you SunBeam. That's looks perfect. So it seems I did break the UPX encryption after all ^^ (since its pure C++)
I'm new at reverse engineering, but I'm a fast learner when it comes to computers. Can anyone enlighten me on how I might go about reverse engineering with IDA 6.1?

Thanks,

Amorphor

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode