#1
|
|||
|
|||
Identifying licenses / users from packed executables
Does maybe someone know if it is possible for protector vendors (like vmprotect) to identify the user that protected an executable? by watermarks or license hints that are implemented in the protected application?
|
#2
|
|||
|
|||
yes if they have designed such things in their products, its entirely possible
|
#3
|
||||
|
||||
Yes.
A simple hash in the protected executable code could identify the user who own the legitimate product that protected the file. Many vendors do that. That is why some antivirus software alarm when a file is suposed to be protected with a legitimate protector. The AV company have the watermarks for the real products and they don't recognise the cracked/patched etc. products. |
#4
|
|||
|
|||
Thats what I heard in the past.. Leaked versions get detected by AVs. So I guess they submitted a method to identify a packed/protected executable and even allow access to something like a hash or so to identify a leaked/cracked version to AV companies. So it wont be good to use a leggit purchased protector to protect something evil as it prolly can be tracked back and even released/leaked versions are more evil since the AVs are able to filter them out before execution.
|
#5
|
||||
|
||||
Is not good thing at all to do some evil stuff.
|
The Following User Gave Reputation+1 to giv For This Useful Post: | ||
Notmex (12-06-2013) |
#6
|
|||
|
|||
Quote:
More or less if you are thinking about doing something malicious , dont rely on protectors . those days are gone. rather learn something new by making ur own obfuscator. |
#7
|
|||
|
|||
Yes, it is possible to watermark an app or the result of using an app (packed exe, image file, audio/video) using a hash or a user-specific string. Watch out if you suspect something. I've seen this before, and fortunately I could compare my licensed copy with another one and found the culprit hash used.
|
The Following User Gave Reputation+1 to atomix For This Useful Post: | ||
p4r4d0x (12-07-2013) |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Need help identifying modified blowfish algo | dion | General Discussion | 4 | 10-10-2020 04:13 |
Identifying compiler version from .NET binary | jonwil | General Discussion | 2 | 06-25-2020 03:15 |