Masuki dunia Hacker dan Cracker cr@ck i3exec with odbg

[ridhotherock]

Cr@ck I3exec with ollydbg
________________________________

alat-alat


- PBI3exec unpacker ( bisa pake [You must be registered and logged in to see this link.]
- [You must be registered and logged in to see this link.]
- [You must be registered and logged in to see this link.]
- Pointblank.I3exec dalam folder pointblank
- Ch*at Engine ( jika perlu )

Step by step

1. download i3exec unpacker atau I3execonthefly
2. taruh I3execonthefly ke folder pointblank

Spoiler 2
[You must be registered and logged in to see this image.]




3. Jalankan unpacker yang anda pakai ( I3execonthefly )

Spoiler 3
[You must be registered and logged in to see this image.]




4. buka PEtools (download diatas) ----> lalu cari I3execunpack atau
I3execonthefly di process --> setelah diklik lihat dibawah
pointblank.I3exec
---> Klik kanan ---> dump full --> lalu simpan di directory
yang anda sukai ---> simpan file dalam tipe apa saja ( rekomendasi :
.dll .exe .I3exec )

Spoiler 4
[You must be registered and logged in to see this image.]




5. stelah disimpan ---> open file dumped/apasaja lalu open dengan ollydbg ---> Disinilah bisanya orang terhenti dan bertanya-tanya gimana caranya

Spoiler 5
[You must be registered and logged in to see this image.]




6. setelah open file ---> klik tanda |> ( untuk keterangan lihat gambar ) ----> lalu tinggal cari-cari

Spoiler contoh :
[You must be registered and logged in to see this image.]




7. Bisa juga menggunakan Ch*at ENGINE
tapi jangan dulu close ollydbgnya ----> loe open process loaddll.exe

Spoiler 7
[You must be registered and logged in to see this image.]




8. jangan lupa setting Also scan read-only memory

Spoiler 8
[You must be registered and logged in to see this image.]





Spoiler contoh
[You must be registered and logged in to see this image.]





Spoiler Virustotal Odbg

AhnLab-V3 2011.06.04.00 2011.06.03 -
AntiVir 7.11.9.27 2011.06.04 -
Antiy-AVL 2.0.3.7 2011.06.05 -
Avast 4.8.1351.0 2011.06.04 -
Avast5 5.0.677.0 2011.06.04 -
AVG 10.0.0.1190 2011.06.04 -
BitDefender 7.2 2011.06.05 -
CAT-QuickHeal 11.00 2011.06.04 -
ClamAV 0.97.0.0 2011.06.05 -
Commtouch 5.3.2.6 2011.06.04 -
Comodo 8949 2011.06.04 -
DrWeb 5.0.2.03300 2011.06.05 -
Emsisoft 5.1.0.5 2011.06.04 -
eSafe 7.0.17.0 2011.06.02 -
eTrust-Vet 36.1.8366 2011.06.03 -
F-Prot 4.6.2.117 2011.06.04 -
F-Secure 9.0.16440.0 2011.06.04 -
Fortinet 4.2.257.0 2011.06.04 -
GData 22 2011.06.05 -
Ikarus T3.1.1.104.0 2011.06.04 -
Jiangmin 13.0.900 2011.06.01 -
K7AntiVirus 9.104.4769 2011.06.04 -
Kaspersky 9.0.0.837 2011.06.05 -
McAfee 5.400.0.1158 2011.06.05 -
McAfee-GW-Edition 2010.1D 2011.06.05 -
Microsoft 1.6903 2011.06.05 -
NOD32 6180 2011.06.05 -
Norman 6.07.07 2011.06.04 -
nProtect 2011-06-04.01 2011.06.04 -
Panda 10.0.3.5 2011.06.04 -
PCTools 7.0.3.5 2011.06.03 -
Prevx 3.0 2011.06.05 -
Rising 23.60.03.09 2011.06.03 -
Sophos 4.66.0 2011.06.04 -
SUPERAntiSpyware 4.40.0.1006 2011.06.05 -
TheHacker 6.7.0.1.220 2011.06.04 -
TrendMicro 9.200.0.1012 2011.06.04 -
TrendMicro-HouseCall 9.200.0.1012 2011.06.05 -
VBA32 3.12.16.0 2011.06.03 -
VIPRE 9488 2011.06.05 -
ViRobot 2011.6.4.4496 2011.06.04 -
VirusBuster 14.0.67.1 2011.06.04 -

[You must be registered and logged in to see this link.]






Spoiler Vitot PEtools




credit by : stealero

thx to :
- RCD
- masmedhacker

[anjnkgila]

Owh Iya Ini Gunanya Untuk Apa Om Ridho Jelaskan Dunk

[ridhotherock]

untuk mencari OFFSET PB skarang OM

[firhan]

[You must be registered and logged in to see this link.] Ga bisa di download bang ridho ...?

[ziterz14]

thank om ridho tpi we cma btuh pnjelasan manfaat dari
yg laen nya misal gini :
CPU Disasm
Address Hex dump Command Comments
1000C41F 68 A4D14910 PUSH OFFSET 1049D1A4 ; ASCII "STR_HEADER_ACTIVE_BOMB"
tuh dah ktemu

[maxtrevorz]

atas@ itu mungkin utk defuse bom sama pasang bom !!!

untuk TS setelah kita mnemukan offset yg di Ollydbg tadi sdg Ch*at engine trus diapain mas ???
masih buta ni mau ngapain lagi !
bantuannya

[Sponsored content]