Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > .NET Reverse Engineering
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Thread Tools Display Modes
Old 10-29-2010, 11:56 AM
nifty nifty is offline
Junior Member
Join Date: Oct 2010
Posts: 1
Default help me unpack the exe

can anybody unpack/deobfuscate the attached exe. also it would be great if you can describe the procedure on how to do it. i am a neophyte in this field

thanks in advance,
Reply With Quote
Old 10-29-2010, 07:58 PM
ac!d ac!d is offline
Join Date: Sep 2010
Posts: 25

next time post some scan logs so people know what protection is used on the file they are downloading.

here is the Protection ID output:

Scanning ->.\ODIN-AB.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 762368 (0BA200h) Byte(s)
[File Heuristics] -> Flag : 00000000000001001100000000000000 (0x0004C000)
[!] dotNet Reactor v4.0 (or newer) protected !
[i] Setting: Native File Mode

[CompilerDetect] -> Visual C++ 9.0 (Visual Studio 2008)
- Scan Took : 0.187 Second(s) [0000000BBh tick(s)]
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.