Exetools  

Go Back   Exetools > General > General Discussion
Reload this Page Dumping Armadillo 3.0-3.6 without CopyMem II
Register Forum Rules FAQ Calendar Mark Forums Read

Notices

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 07-23-2004, 13:37
chaboyd
 
Posts: n/a
Dumping Armadillo 3.0-3.6 without CopyMem II
Hi,

I'm fairly new to reverse engineering more complex apps and need some
guidance. PEID says the app is Armadillo 3.0-3.6, also there is alot of
other data I see in the file like armaccess.dll and other strings that point
to Armadillo. I've noticed that it only has one process so it is not copymem
II. I have yet to determine if there are nanomites. I've found lots of Tutorials (including Ricardo's which are really great by the way) that refer to defeating Copymem II, but only one that references w/o it and that Tutorial is in Spanish and is almost impossible to follow (even with a decent translator.

Any ideas on how to locate the OEP and dump the process. It seems from what I read it should be easy, but I don't really know where to start.
Thanks!!
dc
Reply With Quote
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Armadillo 2.85 Custom + CopyMem & Nanomites TmC General Discussion 16 01-08-2005 10:46


All times are GMT +8. The time now is 07:33.

Aaron's homepage - Top

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( Since 1998 )