Exetools

Exetools (https://forum.exetools.com/index.php)
-   General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)
-   -   How to debug CHPE binaries? (https://forum.exetools.com/showthread.php?t=20112)

DavidXanatos 03-15-2022 03:25
How to debug CHPE binaries?
 
Hi All,

I'm trying to take a look into the inner workings of the dll's in SyChpe32 folder on a arm64 windows.
These files are somehow like ARM64EC just for 32 bit and without a publicly available tool chain.
But this seams to be quite a difficult endeavor, for once IDA can't seemingly properly handle them, also windbg seam to have issues debugging the non x86 part of the process.

I wonder if anyone here has any experience with these and would give me some tips.

What I ultimately want to achieve is to find a way to inject a dll (x86 would be fine) before any non system library gets loaded, also before the crt dll's get loaded.
A x86 hook in LdrLoadDll is just a bit to late. So what I need is some injected arm32 code that will be triggered early enough and load a x86 dll the same way the other dll's are loaded later on.

Cheers
David X.


All times are GMT +8. The time now is 10:39.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX