Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > File Unpacking
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
Thread Tools Display Modes
  #1  
Old 06-11-2013, 01:48 AM
bar891 bar891 is offline
Member
 
Join Date: Jun 2006
Posts: 14
Default unknown packer i think

i have a program i have put through many protection ids with no luck. they come back that the file is not protected or packed. But when i try and use ollydbg it crashes the program. If someone with great experiance could have a look at the file & point me in the right direction please.

http://www.pangolin.com/QS/downloadm...downloads.html
Reply With Quote
  #2  
Old 06-11-2013, 11:32 AM
BfoX BfoX is offline
Senior Member
 
Join Date: Aug 2007
Posts: 2,231
Send a message via ICQ to BfoX Send a message via MSN to BfoX Send a message via Yahoo to BfoX
Default

UPX + Themida
__________________
... Either you work well or you work much ....
Reply With Quote
  #3  
Old 06-12-2013, 07:56 AM
bar891 bar891 is offline
Member
 
Join Date: Jun 2006
Posts: 14
Default

Quote:
Originally Posted by BfoX View Post
UPX + Themida

Thanks very much

What is the best approach to this? I've tried to manually unpack upx in ollydbg with no success.

Last edited by Git : 06-12-2013 at 05:07 PM.
Reply With Quote
  #4  
Old 06-12-2013, 05:08 PM
Git Git is offline
Super Moderator
 
Join Date: Oct 2007
Location: Torino
Posts: 1,797
Default

If it's standard UPX and not one of the modified ones, you can unpack with the distributed UPX package. Thermida is a different matter entirely and is quite difficult I believe.

Git
Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump





Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.