Results 1 to 10 of 10

Thread: Revirgin 1.2 beta just released

  1. #1
    tsehp
    Guest

    Talking Revirgin 1.2 beta just released

    1.2 beta
    The tracer is entirely redesigned, and a device driver has been added to support win2k + future xp.
    A function Ďapi emulatorí is added, it resolve asprotectís small api emulation, like getcommandlineA or getProcessId for example, use them after a resolve again or unsuccessfull tracing.

    A tracer is added, itís provided to help you find the targetís oep and dump the app (using procdump actually)

    see the readme.doc for details

    The install is now on a msi, done on a cracked wise installer but uncomplete, so you'll have to bear the evaluation messages when you install it for a little time.

    beta available at tsehp.cjb.net

    regards,

    tsehp
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2
    Hiya tsehp,
    Sounds good. Do I need a tracer to find where to get it from?
    regards

  3. #3
    tsehp
    Guest
    Originally posted by Js
    Hiya tsehp,
    Sounds good. Do I need a tracer to find where to get it from?
    regards
    he he ! at usual place : tsehp.cjb.net on the main page !
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  4. #4
    oLD SpeKKeLed HeN SpeKKeL's Avatar
    Join Date
    Aug 2001
    Location
    earth....
    Posts
    153

    crashing.....

    Don't know if i'am the only one but
    using the api/emulator revirgin crashes..
    Tried several times on aiswpp.exe as you explained
    but it keeps going wrong when i use this option.
    Have reinstalled and throwed away urlier versions of
    thread and tracer.dll.
    Using w98 (first ed.)With or without icedump running.
    I didn't got any error messages, revirgin freezes......brrrr.

    Just to inform you and to get some response from other
    users...

    Spekkel



  5. #5
    tsehp
    Guest

    Re: crashing.....

    Originally posted by SpeKKeL
    Don't know if i'am the only one but
    using the api/emulator revirgin crashes..
    Tried several times on aiswpp.exe as you explained
    but it keeps going wrong when i use this option.
    Have reinstalled and throwed away urlier versions of
    thread and tracer.dll.
    Using w98 (first ed.)With or without icedump running.
    I didn't got any error messages, revirgin freezes......brrrr.

    Just to inform you and to get some response from other
    users...

    Spekkel


    ok, give me more details :
    aiswpp : what iat did you tried with the api emulator

    w98 : don't have it but only win_me, it freezes when ? when loading when resolving ?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  6. #6
    oLD SpeKKeLed HeN SpeKKeL's Avatar
    Join Date
    Aug 2001
    Location
    earth....
    Posts
    153
    Ok,

    tried with : oep 51a59c
    start 124190
    length 7b8

    After iat-resolver and resolve again there are 7 entries open:

    170c548 red/emul.
    170c90c red/emul.
    170c960 (no comment)
    170c968 (no comment)
    170c928 (no comment)
    170c958 (no comment)
    170c974 (no comment)

    Now when i choose one of them (doesn't matter which one)
    right-click and try api-emul revirgin freezes..

    Spekkel

  7. #7
    oLD SpeKKeLed HeN SpeKKeL's Avatar
    Join Date
    Aug 2001
    Location
    earth....
    Posts
    153
    BTw when i use the option trace, only the redirected (get command linea, getcurrentprocessid, etc) 5 entries are still left.

    Spek

  8. #8
    tsehp
    Guest
    thanks spekkel,

    download the new msi now, it's fixed. It was only a problem when the tracer was unloading itself from main target.

    The 5 entries left are emulated api's.

    try them, you can all select them and do at once.

    regards
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  9. #9
    oLD SpeKKeLed HeN SpeKKeL's Avatar
    Join Date
    Aug 2001
    Location
    earth....
    Posts
    153

    Thumbs up

    Okeeee

    All goes well, no more freezing allllll resolved !

    Thanks ....Spekkel

  10. #10
    tsehp
    Guest

    beta until what ?

    keep looking for the build versions now...

    the goal is to add now some dumping features on the tracer, and also to prevent some alexey tricks, I'll give more details if you email me

    actually no known targets resisted to this new beta, the goal is to find one... (what a self sufficient lamer I am... )
    I promise that I have read the FAQ and tried to use the Search to answer my question.

Similar Threads

  1. [new] Plugin Development Kit 1.08 beta released
    By Gigapede in forum OllyDbg Support Forums
    Replies: 2
    Last Post: January 1st, 2003, 13:15
  2. revirgin 1.2 beta 9 released
    By tsehp in forum Advanced Reversing and Programming
    Replies: 1
    Last Post: November 17th, 2001, 21:16
  3. Revirgin 1.2 beta 7 released.
    By tsehp in forum Advanced Reversing and Programming
    Replies: 0
    Last Post: November 3rd, 2001, 04:09
  4. Revirgin 1.2 beta just released
    By tsehp in forum Malware Analysis and Unpacking Forum
    Replies: 0
    Last Post: September 14th, 2001, 18:59
  5. Midtown madness 2 (safedisc) defeated by Revirgin, need beta testers
    By tsehp in forum Advanced Reversing and Programming
    Replies: 2
    Last Post: March 29th, 2001, 17:27

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •