Evil2006's Evil 1.1 Unpackme
| Download UnpackMe.zip, 82 kb (password: crackmes.de) Browse contents of UnpackMe.zip Unpackme
Difficulty: 1 - Very easy, for newbies | RatingWaiting for at least 3 votes View profile of Evil2006 » |
Solutions
Solution by TiGa, published 09. apr, 2008; download (788 kb), password: crackmes.de or browse.
TiGa has not rated this crackme yet.
Solution by DigitalAcid, published 09. apr, 2008; download (70 kb), password: crackmes.de or browse.
DigitalAcid has not rated this crackme yet.
Solution by br0ken, published 09. apr, 2008; download (982 kb), password: crackmes.de or browse.
br0ken has not rated this crackme yet.
The submission of solutions is closed.
Discussion and comments
| Evil2006 Author 02. Apr 2008 | 1. Unpack it ... 2. Write tutorial about... |
|---|---|
| DigitalAcid 03. Apr 2008 | Uploaded a tutorial yesterday already ;). Allthough a video tutorial would be better for the unpacking. |
| br0ken 03. Apr 2008 | @DigitalAcid, I've uploaded a video tut :) |
| DigitalAcid 03. Apr 2008 | @br0ken: Can you tell me wich program you're using ? I tried CamStudio, but it's not that good. |
| br0ken 03. Apr 2008 | @DigitalAcid, check you pm :) |
| Evil2006 Author 03. Apr 2008 | where video ?! |
| TiGa 04. Apr 2008 | This really should not have been called an unpackme. It takes less than 30 seconds to unpack. |
| DigitalAcid 04. Apr 2008 | It's great practice for noobs to learn some better manually unpacking ;). I know it's hard at first. When i first read "manually unpacking" i was like "wtf" O.o, those crackers own, but it's actually easy when you get the hang of it. |
| apuromafo 14. Apr 2008 | this is a molebox, is easy, other form is enter in the second call, press enter and press enter again, the call eax is the jmp to oep but are nice in all i too can inline edit, but is a other solution for a concurso 3 /2008 from cracklatinos if like that some day you see this solution in that team..see ya.. |
| apuromafo 14. Apr 2008 | this is a comercial packer maybe..i was thinked that the packer not must be comerciales?..well if like thats unpackme, maybe armadillo not are an exeption.. see ya.. |
| apuromafo 15. Apr 2008 | Can I pack/protect my Crackme with a commercial protector? No. This website is not meant to be a place where commercial protectors are disabled for you by other reverse code engineers. the packeds with a molebox not is a comercial? www.molebox.com/ |
| DigitalAcid 15. Apr 2008 | Just my 2 cents: Sometimes those scanners aren't always right... But who am i =) ? |
| apuromafo 16. Apr 2008 | im have the molebox, is the same!.. but this not have import fake..well im not use scaners im haveexperience in packers as this.. |
| DigitalAcid 16. Apr 2008 | Well, if somebody made a pushad - popad packer, it will probably look like upx or so 8-). |
| TiGa 16. Apr 2008 | @apuromafo: If you want a crackme taken out, PM a moderator with your reasons instead. Maybe this is Molebox, maybe this isn't Molebox. I don't really care at that point, let it go. It takes 30 seconds to unpack anyway. If it was a "trick" by the author, he could have grabbed any tutorial about UPX without waiting 7 days to see some solutions approved. It is not like it was a crackme from another challenge site where people earn points. |
| TiGa 18. Apr 2008 | @apuromafo: If you want a crackme taken out, PM a moderator with your reasons instead. Don't post a page-long rant every 15 minutes, I'm not reading anymore. This is your last warning. |
| bendThis 22. Nov 2008 | Nice learning here. Another code. But strange is that PEiD does not show any packer. It says Microsoft Visual C++. But if its an UnpackMe than surely it is packed. So i tried. But when i press F8 @00426713 i dont jump @00401130 but insted in the middle of ntdll @7C91E460. So i dumped the file right at the call. Why land i in the middle of ntdll ? |
| MulleDK13 24. Nov 2008 | Isn't "pack" supposed to make it smaller? If I unpack it, and clean it, it's almost 50kB smaller. |
| MulleDK13 25. Nov 2008 | nvm my last comment... I were comparing the cleaned dump with the uncleaned dump -.- |
| jE! 26. Nov 2008 | guys! tuts are very low level of unpacking! 1. breack here 2. dump 3. run imprec at least descibe packer code-works; then there is original-IAT.. why using imprec at all?? |
| agenttex 29. Dec 2009 | AVG is reporting this download as containing a trojan. Is there a proper way to report this to a moderator? |
| agenttex 29. Dec 2009 | I apologize for announcing a false positive. I suppose AVG is making a sweeping generalization about custom packers. |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.