MeaCulpa
January 27th, 2003, 05:43
Hi All,
I am trying to rebuild the IT, of a dumped (asprotect 1.08.x) target.
I have done the following:
-dumped a OEP with /dump
-dumpfixed the header sections
-realigned and rebased
The problem is:
In RV, when fixing the imports, there are 2 that does not want to resolve. [BTW, what would cause the right-click / tracer command to be disabled?? ]
So i use the addresses, break into the programs main module, and use eg. 'u 401234' - at that address however i cant find any API calls. There is only a direct call, which i cant seem to get a bpx on....
I also noticed that RV gives an error when trying to save the reconstructed IT to a binary file??
Any help/comments please.
thanks
.mea
I am trying to rebuild the IT, of a dumped (asprotect 1.08.x) target.
I have done the following:
-dumped a OEP with /dump
-dumpfixed the header sections
-realigned and rebased
The problem is:
In RV, when fixing the imports, there are 2 that does not want to resolve. [BTW, what would cause the right-click / tracer command to be disabled?? ]
So i use the addresses, break into the programs main module, and use eg. 'u 401234' - at that address however i cant find any API calls. There is only a direct call, which i cant seem to get a bpx on....
I also noticed that RV gives an error when trying to save the reconstructed IT to a binary file??
Any help/comments please.
thanks
.mea
... long time havent played with it, what is the lastest version of aspr now 
