-
April 1st, 2014, 05:40 PM
#1
looking for source crypter
Hello
i saw some people sale crypter for file's (protect from AV's)
anyone can give me source? means ready source,
Thanks.
-
April 2nd, 2014, 03:46 AM
#2
Re: looking for source crypter
Your question is not very clear. I assume AV refers to antivirus, and your exe is performing some activities that can be recognized as suspicious by antivirus heuristic analysis? Patching of binaries or such...
The question is if that really is a problem, and if you should try to circumvent the detection. Maybe better inform your users that the program may falsely be recognized as a virus.
Nobody cares how it works as long as it works
-
April 3rd, 2014, 08:03 AM
#3
Re: looking for source crypter
forgive me for bad question,
Yes, AV is same AntiVirus
and files is exe format,
and i want undetect files from AV's, like below soft's:
http://cypherx.org/
Thanks.
-
April 6th, 2014, 01:36 PM
#4
Re: looking for source crypter
-
April 6th, 2014, 02:22 PM
#5
Re: looking for source crypter
Well, connect with the people of http://cypherx.org/
Perhaps, they will offer you something for a cheap price.
Victor Nijegorodov
-
April 6th, 2014, 02:24 PM
#6
Re: looking for source crypter
they sell soft, but i want wirte source.
-
April 6th, 2014, 02:35 PM
#7
Re: looking for source crypter
Originally Posted by 3245
they sell soft, but i want wirte source.
The do it!
But I doubt you would achieve it for some lower cost...
If you however do want to "wirte source" yourself - be ready to learn a lot of the things as to encrypt/decrypt, and what the protection "from analysis, reverse engineering, and even antivirus software" is.
Victor Nijegorodov
-
April 7th, 2014, 01:03 AM
#8
Re: looking for source crypter
Originally Posted by 3245
anyone can give me source? means ready source,
This book,
http://www.amazon.com/Reversing-Secr.../dp/0764574817
is available as pdf file on the net.
http://www.federaljack.com/ebooks/Co...ngineering.pdf
-
April 7th, 2014, 09:11 AM
#9
Re: looking for source crypter
Originally Posted by 3245
... i want write source.
Not meaning to discourage you in any way, in fact the opposite, but you should be prepared for a hefty task.
Reverse-engineering, self-encrypting/decrypting executables and such are not exactly beginner topics.
Nobody cares how it works as long as it works
-
April 7th, 2014, 04:47 PM
#10
Re: looking for source crypter
Originally Posted by zerver
Reverse-engineering, self-encrypting/decrypting executables and such are not exactly beginner topics.
Why do you assume the OP is a beginner?
-
April 8th, 2014, 03:11 AM
#11
Re: looking for source crypter
Originally Posted by razzle
Why do you assume the OP is a beginner?
I don't assume anything, but the way the question was asked makes me think there is not a senior software dev at the other end.
However, I did have some early suspicions that he was a spammer, only trying to advertise cypherx, but it seems that is not the case.
Nobody cares how it works as long as it works
-
April 8th, 2014, 06:50 AM
#12
Re: looking for source crypter
He asked for ready made source, which indicates he's not looking into making something himself.
Exe "crypters/packers" are fairly easy to make for common case executables (dll's are harder, drivers are harder still).
Everything you need to know to make one is well documented and fairly straightforward (once you figure out the static import issue).
However, none of these are "safe" or "secure" by any means. Since the stub needs to decrypt/unpack in-memory, it's "fairly easy" to intercept when this bit is done and then simply write the image to disk and rebuild the import table and relocations. It's how most of the unpackers/decrupters work.
CypherX isn't any different, there's unpackers/crackers out there for it.
Personally I recommend against them because they remove one of the most interesting features of the executable loader system and that's reuse of shared readonly pages across multiple instances of the image.
Besides, if you want to beat AV heuristics, there's better ways to do this. There's enough AV's that have built in unpackers/decrypters for various schemes, so it may not even help you at all, even worse, some AV's have heuristics to detect packers/crypters and will mark a file as suspicious based on that alone.
Best recommendation: digitally sign your executables so users know your exe's haven't been tampered with.
-
April 21st, 2014, 11:40 PM
#13
Re: looking for source crypter
Wow, I haven't been on this site for a while. Does anyone moderate it? Did anyone check this cypherx.org site and the demo video they have there? The OP is asking for a way to hide malware/trojan from being detected by the AVPs. It's plainly shown in the cypherx.org video. So, OReubens, he clearly is not interested in code-signing it
-
April 22nd, 2014, 06:36 AM
#14
Re: looking for source crypter
Many legit programs can be detected by AV heuristics, so I don't think any moderation is necessary in this case.
Nobody cares how it works as long as it works
-
April 22nd, 2014, 07:11 AM
#15
Re: looking for source crypter
Originally Posted by dc_2000
Wow, I haven't been on this site for a while. Does anyone moderate it? Did anyone check this cypherx.org site and the demo video they have there? The OP is asking for a way to hide malware/trojan from being detected by the AVPs. It's plainly shown in the cypherx.org video. So, OReubens, he clearly is not interested in code-signing it
That's the way I see it too.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|