Unpackme challenge by Stingered

Stingered · Apr 3, 2026

Provide unpacked file as proof, as well as any details on how the unpack was accomplished.

View hidden content is available for registered users!

-thx

daddypenguin · Apr 3, 2026

Stingered said:
Please, Log in to view quote content!

Please, Log in to view URLs content!

Stingered · Apr 3, 2026

daddypenguin said:
Please, Log in to view quote content!

Based on the name in your unpacked PE file, I know where I need to make some changes - TY!

Stingered · Apr 3, 2026

Stingered said:
Please, Log in to view quote content!

Update: New packed PE @daddypenguin , if you could pls take the time.

View hidden content is available for registered users!

Thank you for all the assistance!!

Also, it's kind of strange how much BIGGER the dumped PE was using Scylla (75kb bigger than the ORIG - wow).

daddypenguin · Apr 4, 2026

Stingered said:
Please, Log in to view quote content!

The size difference is from the virtual address being a lot bigger than the disk addresses, as the section is currently empty the windows loader just puts null bytes in the region when in memory. When you fill it with data from the unpacking, when you dump it, it has to increase the disk addresses to fit on disk too

Please, Log in to view URLs content!

Basically the same

Stingered · Apr 4, 2026

daddypenguin said:
Please, Log in to view quote content!

Makes sense - thx again!

babaji · Apr 13, 2026

Stingered said:
Please, Log in to view quote content!

REUPLOAD FILE NOT FIND

Search

Search

Unpackme challenge by Stingered

Stingered

Well-known member

daddypenguin

Well-known member

Stingered

Well-known member

Stingered

Well-known member

daddypenguin

Well-known member

Stingered

Well-known member

babaji

Well-known member