Go Back   Exetools > General > Source Code


Thread Tools Display Modes
Old 02-21-2021, 22:22
Zeokat Zeokat is offline
Join Date: Dec 2017
Posts: 75
Rept. Given: 0
Rept. Rcvd 11 Times in 8 Posts
Thanks Given: 326
Thanks Rcvd at 198 Times in 51 Posts
Zeokat Reputation: 11

PE-Packer is a simple packer for Windows PE files. The new PE file after packing can obstruct the process of reverse engineering.

This project is just a demo for beginners to study Windows PE Format and Assembly Language. It still has some compatibility problems and bugs that cannot be used in practice.

How it works:
It will do the following things when packing a PE file:
  • Transforming the original import table.
  • Encrypting sections.
  • Clearing section names.
  • Installing the shell-entry.

When running a packed PE file, the shell-entry will decrypt and load the original program as follows:
  • Decrypting sections.
  • Initializing the original import table.
  • Relocation.

Credits to original author: Chenzs108
Reply With Quote
The Following User Gave Reputation+1 to Zeokat For This Useful Post:
Asus (02-23-2021)
The Following 2 Users Say Thank You to Zeokat For This Useful Post:
sh3dow (05-27-2021)

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On

Similar Threads
Thread Thread Starter Forum Replies Last Post
sys packer emptyHook General Discussion 6 07-24-2012 19:46
New Packer Kyrios General Discussion 3 11-11-2005 16:00
First .NET packer? SystemeD General Discussion 16 06-05-2005 15:15
What packer would you use Fade General Discussion 35 04-03-2004 12:01

All times are GMT +8. The time now is 05:54.

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2023 )