Exetools - Where can i find paper about unpacking Obsidium?

Exetools (https://forum.exetools.com/index.php)

- General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)

- - Where can i find paper about unpacking Obsidium? (https://forum.exetools.com/showthread.php?t=4226)

softworm

05-09-2004 21:04

Where can i find paper about unpacking Obsidium?

I searched on google and found nothing detailed,
and i can understand only English.

Regards.

freddy2002

05-10-2004 03:31

This isn't an easy Target (well never seen tutors :( )
look at:
stolen bytes on OEP
int3 check's
redirect api
SEH
CC check on API address
check cc after the API call in code
steal bytes on API start & jump to next line in API
jump to API with a ret (funny tricks with stack)

and so on
Hope this help you :)

softworm

05-10-2004 19:57

I have one paper written in Chinese by my friend fly,
and wish to find something more detailed. It's said a cracker
named ZILOT wrote something interesting but i didn't find it. :(

Maybe I'll write one when i unpack the unpackMe. Somebody
said it's not difficult but it's hard to me. :o

Thank you!

Rheya

05-10-2004 20:14

hi softworm,
you may meet Zilot here :
w��w.woodmann.net/forum/showthread.php?t=4853
rheya

pps44

12-25-2018 16:07

any chance for new version of unpack obsidium? thanks

deepzero

12-25-2018 16:50

Did you just resurrect a 14 year old thread to spam it?

pps44

12-26-2018 00:50

Quote:

Originally Posted by deepzero (Post 115656)

Did you just resurrect a 14 year old thread to spam it?

i not spam it,I only asked a question because obsidium has changed since then "14" years
and i need some help for unpack the new version
It is not forbidden I believe?

chants

12-26-2018 01:38

I don't know why this thread resurrected, but as you might want to look into:

Quote:

Obsidium v1.6.1.9_x32 NONAG by yoza

Quote:

http://distro.crack.vc/index.php?dir=RceTools/Packers/&file=Obsidium.v1.6.1.9_x32.NONAG.by.yoza%5BUpK%5D.rar

All times are GMT +8. The time now is 05:15.