Unknown Protection

resac · #1 09-15-2011, 02:19 PM

Hello to all..
i am not getting what type of protection is this file having. please seniors help me to find this protection. and mainly this application is developed in VB..

link --> http://www.mediafire.com/?92b5u3b2a17nfjo

Thank you in advance

ac!d · #2 09-16-2011, 10:18 AM

Scanning -> .\BM_FORAIR.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 7823360 (0776000h) Byte(s)
[File Heuristics] -> Flag : 00000000000000001100000000100010 (0x0000C022)
[!] Themida v2.0.1.0 - v2.1.8.0 (or newer) detected !
[i] Hide PE Scanner Option used
- Scan Took : 0.734 Second(s) [0000002DEh tick(s)]

resac · #3 09-16-2011, 12:42 PM

thanks brother. But which sacner you used?

ac!d · #4 09-16-2011, 09:49 PM

Protection ID

resac · #5 09-16-2011, 11:48 PM

even used Protection id but it said unknown protection. and how to unpack this brother?

ac!d · #6 09-18-2011, 11:05 AM

a new protection id will be out soon (atm we are still beta testing some things), so every one gets the latest detections

about the protection... read up some themida tutorials and also give the olly scripts on tuts4you a try. well documented stuff

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode