Aspack OEP (simple)

		Exetools > General > Community Tools
Aspack OEP (simple)

Thread Tools

Display Modes

12-25-2020, 17:41

CodeCracker CodeCracker is offline

VIP

Join Date: Jun 2011

Posts: 466

Rept. Given: 27

Rept. Rcvd 406 Times in 134 Posts

Thanks Given: 21

Thanks Rcvd at 1,880 Times in 359 Posts

Aspack OEP (simple)

Aspack OEP (simple)
an simple Olly script I've created:
// NtdllDefWindowProc_W is actually user32.DefWindowProcW

CMP [eip], 60 , 1
jne Finish_Nopushad
// pushad instruction at eip is there,
// so execute that instruction by sti
sti
mov temp,esp
bphws esp,"r"
run

Break:
bphwc temp
rtr
// Executes "Run to return" in OllyDbg, [Ctrl+F9] operation.
sto
// Execute F8 in OllyDbg. STep Over.
cmt eip, "This is the OEP! Found by script"
ret

Finish_Nopushad:
log "Error: NO pushad instruction"

Attached Files

AspackOEP.txt (459 Bytes, 12 views)

The Following User Gave Reputation+1 to CodeCracker For This Useful Post:
user1 (12-25-2020)

The Following 5 Users Say Thank You to CodeCracker For This Useful Post:
niculaita (12-25-2020), p4r4d0x (12-26-2020), sh3dow (05-15-2021), user1 (12-25-2020), Youtoo (02-01-2021)

« Previous Thread | Next Thread »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is Off HTML code is Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Simple RSA Explanation	psgama	General Discussion	7	07-20-2020 17:52

All times are GMT +8. The time now is 01:37.