Thread: Exeinfo PE
View Single Post
  #162  
Old 01-30-2023, 21:09
Dr.FarFar's Avatar
Dr.FarFar Dr.FarFar is offline
Family
 
Join Date: Oct 2021
Location: Egypt ( ❤️ Palestine ❤️ )
Posts: 161
Rept. Given: 6
Rept. Rcvd 39 Times in 29 Posts
Thanks Given: 194
Thanks Rcvd at 534 Times in 144 Posts
Dr.FarFar Reputation: 39
Lightbulb Exeinfo Pe v. 0.0.7.7

New Update ( Test version )

Quote:
Exeinfo Pe v. 0.0.7.7

1156 / 157 Signatures x64
Ext_detector - v6.8.4 ( 675 Non eXe Signatures )
userdb.txt : 4453
Quote:

Signatures Update

- Strong update .NET obfuscator x86 / x64 ,

fixed fake detection !


- added for test : x64 ArmDot 2023 v3.0.0 - www.armdot.com

( I have trial version only )


IF result is : Sign. for DLL : RustemSoft Skater .NET Obfusc.

on EXE file , you can change this result :

Click on Main form [ < ] Button

Exeinfo ignore this detection.


many NON EXE detection added

- This Version Not Support : Windows 10 ( Arabic version )

Last signatures :

x86

1138.EasyCode v2.0 x86 + MASM ( std sign no Deb ) - www.easycode.cat
1139.EasyCode v2.0 x86 + MASM ( Dbg sign ) - www.easycode.cat
1140.[ WARNING : Tampared - Nullsoft Install System v3.0x ] - not packed stub / v.3.05
1141.EuroAssembler ver.20190402 - http://euroassembler.eu *ACM
1142.Standalone EXE Document Locker v1.1 - 2022.11.29 www.4dots-software.com
1143.ZIP SelfExtractor Maker Setup v1.11 2022.11 - www.4dots-software.com
1144.BoxedApp packer v4 2021 (c) Softanics - BozedAppSDK.dll incl. - stub : Delphi/C++/FPC detect only !
1145.[ BoxedApp SDK32 - 2018-2021 ] DLL library - www.boxedapp.com - stub : C++ 12 NSTD EP
1146.DeepSea Obfuscator v.x.x - 4.4.4 ┬ر 2001-2013 TallApplications - obsolete tool ! - 90% detector
1147.Generic for DLL : RustemSoft Skater .NET Obfuscator v.4.8 - 9.9 - 2022 - www.rustemsoft.com ( only if config fast : OFF)
1148..NET - DNGuard HVM v.2 - 4.20 by ZiYuXuan Studio - 2022.11 - www.dnguard.net - stub : MS Visual C#
1149.[ DNGuard HVM Runtime - v3.x - 4.x 2022 ] DLL library - www.dnguard.net - stub : MS C++
1150.DNGuard v4.x 2022 ( static stub x86/x64 .NET inside ) - www.dnguard.net - stub : Microsoft Visual C++ v.8.0
1151.Baymax Patch Tools v3.1.0 - 3.x 2023.01 by Nisy/PYG www.chinapyg.com - stub : Microsoft Visual C++ v.9.00 & UPX Stub
1152.Metrowerks CodeWarrior C/C++ x86 V2.4 ( MAC OS ) CW Tools 6.0 - obsolete compiler - www.freescale.com *ACM
1153.Struct 3 : VMProtect v.3.6.0 - 3.7.3 2022 [ Exe , Option : packed ] - www.vmpsoft.com
1154.Yano v1.0.15.0 ntoolbox.bom/yano 2012 obsolete! - stub : MS Visual C# / Basic.NET
1155.ArmDot 2023 v3.0.0 - www.armdot.com ( protector/license creator ) - stub : MS Visual C# / Basic.NET


x64

5141. x64 MASM , Linker 14.xx - [ DBG_13 sign ] - no www.microsoft link to masm64 sdk
5142. x64 MASM , Linker 2.50 POLINK v8 2015 - smorgasbordet.com , no www.microsoft link to masm64 sdk
5143. x64 - EuroAssembler ver.20190402 - http://euroassembler.eu *ACM
5144. x64 Microsoft VC++ 14.29 exe [ CPU : AA64 ARMv8 ]
5145. x64 - SecureUPDATE_Installer ( Wizard or Patch - Delta instaler for patch/update ) - stub : [ Tampared file ] x64 UPX v.3.9-4.0
5146. x64 BoxedApp packer v4 2021 www.boxedapp.com - Softanics - BoxedAppSDK.dll incl. - stub : xxxx
5147. x64 [ BoxedAppSDK64 - 2018-2021 ] DLL library - www.boxedapp.com - stub : C++ 12 NSTD EP
5148. x64 - DeepSea Obfuscator v.x - v4.4.4 ┬ر 2001-2013 TallApplications - 96% detector , NO *ACM can detect Fake results !
5149. x64 [ DNGuard HVM Runtime - v4.x 2022 ] DLL library - www.dnguard.net - stub : x64 Microsoft Visual C++ v8.x
5150. x64 .NET - DNGuard HVM v4.20 by ZiYuXuan Studio - 2022.11 - www.dnguard.net - stub : EP=0000
5151. x64 DLL from : Microsoft AppStore ( Export : RHBinder__ShimExeMain ) - stub : NSTD MSV C++ built by: PROJECTNREL
5152. x64 EXE from : Microsoft AppStore ( exe run dll -> RHBinder__ShimExeMain ) - stub : NSTD MSV C++ built by: PROJECTNREL
5153. x64 Baymax Patch Tools v3.1.0 - 3.x 2023.01 by Nisy/PYG www.chinapyg.com - stub : Microsoft Visual C++ v.9.00 & UPX Stub
5154. x64 Microsoft Visual C++ v14.16 - 2017 - DLL ( push rbx , DisableThreadLib.Cs. )
5155. x64 Yano v1.0.15.0 ntoolbox.bom/yano 2012 obsolete! - stub : x64 .NET exe file : 00 Entry Point
5156. x64 ArmDot 2023 v3.0.0 - www.armdot.com ( protector/license creator ) - stub : x64 .NET DLL with : 00 Entry Point - CPU : AMD64


A.S.L ( c ) 2023.01



Quote:
hxxps://www79.zippyshare.com/v/VzUzsPAk/file.html
Attached Files
File Type: zip ExeinfoPE_0077.zip (1.77 MB, 159 views)
Reply With Quote
The Following 6 Users Say Thank You to Dr.FarFar For This Useful Post:
alekine322 (01-31-2023), darkBLACK (02-10-2023), Doit (02-04-2023), niculaita (01-31-2023), TQN (01-31-2023), wilson bibe (01-31-2023)