mupack

giv · #5 11-11-2015, 04:43

Cool utility.
I guess the unpacking will not be difficult as i see into the stub:

Code:

0049A000 m>  BB 00000000           MOV EBX,0x0
0049A005     E9 03000000           JMP mupack_p.0049A00D
0049A00A     C2 0C00               RETN 0xC
0049A00D     8D83 00A04900         LEA EAX,DWORD PTR DS:[EBX+<ModuleEntr>
0049A013     53                    PUSH EBX
0049A014     50                    PUSH EAX                              ; mupack_p.0041F394
0049A015     8D83 7EA04900         LEA EAX,DWORD PTR DS:[EBX+0x49A07E]
0049A01B     FFD0                  CALL EAX                              ; mupack_p.0041F394
0049A01D     8D83 94F34100         LEA EAX,DWORD PTR DS:[EBX+0x41F394]
0049A023   - FFE0                  JMP EAX                               ; mupack_p.0041F394

The Following User Gave Reputation+1 to giv For This Useful Post:
mudlord (11-11-2015)

The Following User Says Thank You to giv For This Useful Post:
mudlord (11-11-2015)