[lordnasty]

Hi to all,
i have some problem to unpack an exe file that PEid tell me that is packed with:

Morphine 1.4 - 2.7 -> Holy_Father & Ratter/29A

So i follow the GOOD tutorial made by KaGra.
So after i find the "magic" jump "JMP EAX" to the OEP, i stop and dump using Ollydump putting the new OEP and uncheck "Rebuild Import".
After i use the PE Editor of LordPe and look to Sections.
I have 4 sections the bit .text section and 3 sections (with size 1000 each).
Automatically Ollydump put me the total size of the sections so i delete the 3 sections and utomatically i have the size - 3000 big (the 3 sections * 1000).
After i check the size of the .text section and VirtualSize = Rawsize = and is .text section size - 1000 (the PE header size).
I save all but the app not start (error: ReadProcessMemory or WriteProcessMemory partially complete).

Please can help to understand what i mistake?
Ah .. the ImageBase is a strange 19F0000 (not the usually 01000000 or 00400000).
THX
NaSTy