[Guide]How to unpack Sro_client.exe

Page 1 of 5 1 23 Last »
07/22/2009 12:40 Topmaster#1
After 4 hours of searching because nobody wanted to say me how i can unpack the Silkroad Client i found it out:D

First i must say in the future i use allways the tool "PEiD" :D
PEiD give you very fast an answer with which packer the programm is encrypted.

In our case the Sro_client.exe is packed with
AsProtect 2.1x SKE -> From Alexey Solodovnikov
[Only registered and activated users can see links. Click Here To Register...]
Ok now we must search an unpacker programm.

The Programm to Unpack AsProtect 2.1 is called
"stripper"

I found on google 3 version and only the version
stripper v2.13 Beta 9 has gone by me .

Because the most virusprogramms shown that the programm is a Virus i will not post a Link to this tool!

So search self for "stripper v2.13 beta 9"
________________________________________

If you have the programm press "Open" and search your "sro_client.exe"
in the console the the message appear "Time - open sro_client.exe.."
then press only unpack and wait 5- 10 seks if it's finished it save automaticly a new exe in the same folder of your sro_client.exe
[Only registered and activated users can see links. Click Here To Register...]
So hf & and a good day


regards
Topmaster
07/22/2009 15:51 najeeb_ayoub#2
WOW I This Thaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaank you Pro
07/22/2009 16:21 GreYFoXGTi#3
if u asked me i would have told you ;)
07/22/2009 17:07 S3RK#4
Wouldn't you use OllyDBG for most of this stuff?

Kind Regards
07/22/2009 18:59 pushedx#5
Thanks, I'll give that a try. I used some OllyDbg script, but it didn't work right. I ended up having to fix OEP myself and patch some code to get mine to work.

One thing to note is that PEiD incorrectly identifies the ASProtect version I think. I believe the correct version should be "Version: ASProtect 2.2 SKE build 04.25 Release [Extract]". You can download an ASProtect specific plugin for PEiD for this. To get it search for the text "ASProtect version detector V0.15.by PE_Kill" in Google and you should find it on a Reverse Engineering blog.

If you have Olly, you should get "ODbgScript" rather than the original OllyScript which provides more functionality and support for scripts. From there you should be able to find some ASProtect specific scripts to use. I've not found any that just work out of the box though, but I've not looked much since I can get the other method to work.
07/22/2009 20:23 paris7bboy#6
yo, the stripper won't open. it brings up the "WinRAR: Diagnostic message" box and it can't excute. You know whats up?
07/22/2009 20:38 Patta#7
what is that good for ???
07/22/2009 21:32 SROstuff#8
This is the only way to use Testosterone (Loader) atm :)
so thats at least 1 reason for this manual ;)
7.27 (supports unpacked client 1.203)

Greets SROstuff
07/22/2009 22:18 .1337#9
and why we unpack it
sry im newb in programming -.-
07/22/2009 22:40 r3vRb#10
Quote:
Originally Posted by yamy20102000 View Post
and why we unpack it
sry im newb in programming -.-
Quote:
Originally Posted by SROstuf View Post
This is the only way to use Testosterone (Loader) atm :)
so thats at least 1 reason for this manual ;)
7.27 (supports unpacked client 1.203)

Greets SROstuff


wow...
07/23/2009 07:16 Incepatorul#11
08:15:52 - open C:\Program Files\Silkroad\silkroad.exe...
08:15:54 - executing.. may take for a few minutes.. be patient..
08:15:54 - unhandled break at 7c864714..
08:15:54 - UnhandledExceptionFilter
08:15:56 - unhandled break at 7c901231..
08:15:56 - can not unpack this file..
08:15:56 - done..


...is that?
07/23/2009 07:53 JasonWalker#12
Quote:
Originally Posted by Incepatorul View Post
08:15:52 - open C:\Program Files\Silkroad\silkroad.exe...
08:15:54 - executing.. may take for a few minutes.. be patient..
08:15:54 - unhandled break at 7c864714..
08:15:54 - UnhandledExceptionFilter
08:15:56 - unhandled break at 7c901231..
08:15:56 - can not unpack this file..
08:15:56 - done..


...is that?
Don't unpack Silkroad.exe, unpack sro_client.exe. ;)
07/23/2009 12:12 bot90210#13
Quote:
Originally Posted by pushedx View Post
Thanks, I'll give that a try. I used some OllyDbg script, but it didn't work right. I ended up having to fix OEP myself and patch some code to get mine to work.

One thing to note is that PEiD incorrectly identifies the ASProtect version I think. I believe the correct version should be "Version: ASProtect 2.2 SKE build 04.25 Release [Extract]". You can download an ASProtect specific plugin for PEiD for this. To get it search for the text "ASProtect version detector V0.15.by PE_Kill" in Google and you should find it on a Reverse Engineering blog.

If you have Olly, you should get "ODbgScript" rather than the original OllyScript which provides more functionality and support for scripts. From there you should be able to find some ASProtect specific scripts to use. I've not found any that just work out of the box though, but I've not looked much since I can get the other method to work.
This script works nicely, [Only registered and activated users can see links. Click Here To Register...]. I'm gonna have a go at doing in manually over the weekend.
07/23/2009 23:31 kevin144446#14
it wont open for me can someone help it says "can not start service"
07/24/2009 11:08 jooni222#15
i have error:
[Only registered and activated users can see links. Click Here To Register...]
Pleas help me
Page 1 of 5 1 23 Last »