PDA

View Full Version : Yoda's Cryptor v 1.2 + UPX Packed Executable


DeXTeR.OrBiT
July 14th, 2012, 12:43
Greetings everyone,

I am having trouble unpacking a file that is protected by UPX and then by Yoda's Cryptor v1.2.

The Target: [Can't say really. I might face the wrath of the Mods! ]

Protection: y0da's Cryptor v1.2

[I found an old thread but the last post was in 2007 and I don't want to bring the dead back...]
[http://www.woodmann.com/forum/showthread.php?10354-Yoda-s-Crypter-1-2]

I unpacked the file using Olly and got the OEP at 0040A951. I dumped it using LordPE after correcting the ImageBase [Anti-Dump Defense]. Now the file won't run..........

*Actually ignore this post, GIYF actually worked and it just gave me what I wanted*

Darkelf
July 14th, 2012, 13:55
Hi and welcome.

I didn't know that diablo's crackmes are packed.
Do you have a link?

Thank you.

Regards
darkelf

DeXTeR.OrBiT
July 14th, 2012, 14:05
Quote:
[Originally Posted by Darkelf;92909]Hi and welcome.

I didn't know that diablo's crackmes are packed.
Do you have a link?

Thank you.

Regards
darkelf



Sure, just goto http://kickme.to/diablo2oo2. It is the second crackme. Packed with UPX then yoda's crypter. I thinks its the only one though.

*UPDATE: It looks like the crackme's are not there anymore. If you do want the yoda's cryptor v1.2 + UPX crackme, I will gladly upload it.

Do you know where I could get a tutorial on Import Table rebuilding. I tried Google but it is giving me some tutorials that I cannot understand (Hooked DLL Calls)...I am still a n00b just starting of....

Regards
DeX