|
Any programming expert in here?
Anybody knows about keyloggers, trojans etc.? Is it possible to see the source of an .exe file when it has been exe compiled?
|
You can break it back to pseudocode and subroutines, but no, unless the source is explicitly included, you can't get 'the source' back.
|
decompile....................................
|
Hi, Sorry friend but no it's not possible to see the source from an exe file (compiled). :)
It would be like trying to get an mp3 of cd quality out of an mp3 recorded at very low quality. |
Quote:
You're talking nonsense Eriic, nothing personal. :thumbsup |
don't beat around the bush
what is your question? |
Quote:
You decompile using a C++ program Dumbass:winkwink: |
Quote:
But I can assure you this reverse engineering process is far from being perfectioned. Probably the C++ decompiler will only work in exe files compiled from C++ source. So here you have a new problem and that is, how do you know the language in which the exe file was initially written? The link you provide says the following. Quote:
|
That's how I used to crack games back when I was a kid. Ahh, the good old days.
Decompile is the wrong word. It does exist but not for .EXE files. It's extremely rare to be able to decompile a program. Only certain environments/languages let you do it. You're thinking of disassemble. It will give you the assembly language listing. Sometimes symbolic data is embedded but usually not once a program is distributed. There are programs which will construct C code as well from an exe but I don't think they are very good. Explain in more detail what you are trying to do. |
Basically, if you're trying to understand what a certain infector did to your system, you're better off matching subroutines.
There's only a finite number of ways trojans log your clicks, for instance, and this is how anti-virus software "heuristics" work. It is however pretty deep arcana, and probably not worth your time, or the money to pay a couple 250$ an hour engineer wiz ppl. |
Back in my day I used to use a program called Win32dasm or something, it disassembles anything down to its machine assembly code.
It was when I was like 13 though so I don't know if its still around/if it works, back in those days I used it to find the parts of programs that tested for a registration key then I opened up the program in a HEX editor and I would change it and bypass the registration. I've only gotten dumber since then :( |
Quote:
Now exactly 1 month later, my account was hacked. I did some research and found out that the program was written by a Russian and they sell short icq uins on their Russian site. They claim to have over 200,000 uins. Now I am trying to find out if that particular .exe file did only send out my icq password OR if other passwords were shared too. When I try to download / save that file again on my hdd or try to unpack it I get an error message telling me that I have no admin rights for that. I then renamed the .exe into abc without no extension and was able to unpack it but 1 second later the file disappeared. I was not able to find it on D: again. I then went to folder options and enabled hidden files but I only see the abc file now and not the .exe on D: |
I would say odds are 7 to 1 that it was that russian program that stole your icq pass... :2 cents:
|
Yeah it was a Russian program. Is there no way of finding out if that program only sends out the icq password or if it also logs keys?
|
| All times are GMT -7. The time now is 07:16 PM. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123