Heya mates.
Just started gettting the 'bug' to learn reverse engineering. This was motivated by a particular target I have in mind I want to defeat.
I have just started grabbing tutorials, scripts, etc to this end.
The target contains ASProtect but, and as many other posters have complained about, I can't reliably identify the version.
Thus far my readings have shown that the following do a good job:
PEID Ver 0.95 - ASProtect 1.2x - 1.3x [Registered] -> Alexey Solodovnikov
PEID Ver 0.95 w/VerA plugin - Version: [ Unknown! ], Signature: [ A6C838AE ], E-Mail: [
[email protected] ]
Exeinfo Ver 0.0.26 - ASprotect ver 2.1 / 2.^ ( www.aspack.com/asprotect.htm )
Now I'm not really interested in taking the quick 'run this script in olly to unpack' approach as I really would like how to first do it manually.
My only concern is that if I don't know the exact version what would be the best approach from a tutoral standpoint? Do I just start at the ASPr 1.23 tutorial and work my way up to the current or does ASPr V2.x differ enough that it would be a waste of time to start at 1.23?
I appreciate your tolerance with this nub.
Best Regard, mates.