If anyone has info on how they did it, please post a comment. I’ll examine the AutoIt3-Decompiler from CW2K to see if I can learn anything from them. At some point, it will open the EXE and do…something.When you run the exe2aut to “decrypt” the file, it will take the passphrase you enter and convert it to MD5.The MD5 hash of the passphrase is found at offset 0x0005d618 in the decompressed file (you can use hiew or any binary file viewer – even OllyDbg!).This will decompress “mytestfile.exe” – it almost doubles in size.Open a command prompt and use upx.exe with the “-d” switch:.To find the MD5, first use the upx.exe provided by autoit (\autoit-v3.2.0.1\Aut2Exe\upx.exe) to decompress the.The passphrase used for “encrypting” is stored in the file as an MD5 hash.I managed to get to the point in OllyDbg (great tool, BTW, I’ll post some OllyDbg things I recently learned soon) where I found out that: Here’s link to one of their mirrors (I couldn’t get to the original site):īasically, they bypass the passphrase altogether. I downloaded the “improved” decompiler and it worked great. One of our readers Daniel kindly posted a link to ANITWPA ( ), where they already did this. _FileGetProperty - Retrieve the properties of a file - SciTE Toolbar - A toolbar demo for use with the SciTE editor - GUIRegisterMsg demo - Demo script to show how to use the Windows messages to interact with controls and your GUI.I’ve been hopelessly trying to figure out how to bypass the pass-phrase for AutoIT v. Customizable Splashscreen GUI w/Progress Bar - Create a custom "splash screen" GUI with a progress bar and custom label. ColorChooser - An add-on for SciTE that pops up a color dialog so you can select and paste a color code into a script. If you do use my code all I ask, as a courtesy, is to make note of where you got it from.īack up and restore Windows user files _3 - Modified array functions that include support for 2D arrays. I hereby grant any person the right to use any code I post, that I am the original author of, on the forums, unless I've specifically stated otherwise in the code or the thread post. Teach a programmer to debug and he can do his work for a lifetime - by Chirag Gude Give a programmer the correct code and he can do his work for a day. Also, if it doesn't work on XP I can't help with that because I don't have access to XP, and I'm not going to. If I posted any code, assume that code was written using the latest release version unless stated otherwise.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |