SecuPack v1.5

Manual Unpacking Tutorial... Manual UnPacking (MUP) of SecuPack v1.5
Source Code... None.
Some Info about the Packer/Encrypter and Author... Author: SC Soft
Homepage: http://www.scshare.de
Email: SC-SOFT@t-online.de
Size of Packer/Encrypter: 235 KB
The Packer/Encrypter itself is Packed/Encrypted with SecuPack v1.5 .
Author Words about the Packer/Encrypter... They don't say anything about it (There's not even an document included ;).
Features... Just Compression of the entire original file ;)
Special stuff the Decryption Routine uses... None.
The best API to Break on... The best API to break on for the beginning: GetModuleHandleA
The best API to break on for the end: CreateProcessA
Note: there's not really an end API because it executes the original file with CreateProcessA so that's the best/last API to break on ;)
Recognization of this Packer/Encrypter... Check if the name of the last Section is nothing. Ofcourse this doesn't have to mean that it's Protected with SecuPack v1.5 . Just search for this string in the file:

SCSO

Recognization Bytes... 55 8B EC 83 C4 F0 53 56 57 33 C0 89 45 F0 B8
OEP Jump... It uses "CreateProcessA" to execute the original Protected file.


If you can add any kind of information for this page (Like Homepage/Email of the Author) then send me a Email

Don't trust the Outside, trust the InSiDe !!!

CoDe_InSiDe