Manual Unpacking Tutorial... | Manual UnPacking (MUP) of PE Nightmare v1.3 |
Source Code... | None. |
Some Info about the Packer/Encrypter and Author... | Author: Freddy K Homepage: freddyk.cjb.net Email: crackz@freddyk.cjb.net Size of Packer/Encrypter: 28.8 KB The Packer/Encrypter itself is Packed/Encrypted 2 times with PE Nightmare v1.3 . |
Author Words about the Packer/Encrypter... | This program is a simple Win32 .exe only PE encryption program, designed to make your Win32 .exe files a little bit harder to crack - ie protect the code from standard decompiling methods. It certainly is NOT the answer to all programmers needs, just something I decided to play with after learning about PE files and encryption / compression tricks. No doubt someone will write a decoder for this - so DO NOT think that it is uncrackable (unlike some commercial idiots who like to say their software can't be reversed...) |
Features... | Encrypts up to 65 KB of your code (first section). Anti-Dumping tricks. Anti-Decompiling tricks. Resource Realigning. Compressions (later). Works with most smaller Programs that run standard PE Sections and Headers. Is very fast (Fully written from scratch in Win32Asm). Allows backups of originals. Can Encrypt files multiple times (limit is 4 or 5 times). Has variable Encryption (later). |
Special stuff the Decryption Routine uses... | Some Self-Decryption of the Decryption Code. |
The best API to Break on... | None. This Encrypter isn't using any API's in the Decryption Routine. |
Recognization of this Packer/Encrypter... | Check if the name of the last Section is "freddyk". |
Recognization Bytes... | 60 E8 00 00 00 00 5D B9 18 |
OEP Jump... | mov eax, OEP push eax ret |