+- الفريق العربي للهندسة العكسية (https://www.at4re.net/f)
+-- قسم : منتديات الهندسة العكسية - Reverse Engineering Forums (https://www.at4re.net/f/forum-4.html)
+--- قسم : البرامج و أدوات الهندسة العكسية - RCE Tools (https://www.at4re.net/f/forum-29.html)
+---- قسم : برامج فحص الملفات - PE Scanning Tools (https://www.at4re.net/f/forum-38.html)
+---- الموضوع : ExeInfo PE للكشف عن الضغط او التشفير او الحماية (/thread-35.html)
Exeinfo Pe v. 0.0.7.6 ViP - Dr.FarFar - 03-01-2023
New Update ( Test version )
إقتباس :Exeinfo Pe v. 0.0.7.6 ViP
1150 + 151 Signatures x64
Ext_detector - v6.7.5 ( 675 Non eXe Signatures )
userdb.txt : 4451
إقتباس :Signatures Update
- Strong update .NET obfuscator x86 / x64 , fixed fake detection !
- DLL Characteristics GUI updated
- .NET GUI added Hex view
- Added .jp2 jpeg2000 Ripper ( for .pdf files )
- fixed : x64 GO Programming Language
- 5045.x64 - AutoIt [ v3.3.14.5 ]
- 5045.x64 - AutoIt [ v3.3.16 2022.09 ]
- 5012.x64 Embarcadero Delphi NSTD
- 5035.x64 Paquet Builder v21.0.0
- 016.PEcompact ver.3.02.2
update : 5076.[ x64 Enigma ver.5.x - 7.0 ]
update ver.VMProtect v.3.5.1 - 3.7.3 2022
fixed & upd.723.Ahk2Exe for AutoHotkey [ v1.1.36.02 ]
added v10 : 588.Enigma Virtual Box - v10.00 (2022.12.14)
fix detector :
5135.x64 VMProtect v.3.6.0 - 3.7.3 2022
added new version :
1021.InstallAware Virtualization v6 ( BoxedApp packer v2.x - 14.0 )
1021.BoxedApp Packer 2018 / 2019 14.0
added x64 : [ ESET module MZ-Header ]
added v5 generic :
760.Generic Crypto Obfuscator For .Net v5 - LogicNP Software
added tampared exe :
Windows PE exe for .NET / GNU compiler but no "PE" tampared/compr.
Windows PE exe compressed LZ77
fix : NOT EXE - .dex - Dalvik Executable v5.0 - 9.0
- This Version Not Support : Windows 10 ( Arabic version )
A.S.L ( c ) 2022.12.29
إقتباس :hxxps://www22.zippyshare.com/v/RoJZCnQ8/file.html
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - Dr.FarFar - 31-01-2023
New Update ( Test version )
إقتباس :Exeinfo Pe v. 0.0.7.7 ViP
1156 / 157 Signatures x64
Ext_detector - v6.8.4 ( 675 Non eXe Signatures )
userdb.txt : 4453
إقتباس :Signatures Update
- Strong update .NET obfuscator x86 / x64 ,
fixed fake detection !
- added for test : x64 ArmDot 2023 v3.0.0 - www.armdot.com
( I have trial version only )
IF result is : Sign. for DLL : RustemSoft Skater .NET Obfusc.
on EXE file , you can change this result :
Click on Main form [ < ] Button
Exeinfo ignore this detection.
many NON EXE detection added
- This Version Not Support : Windows 10 ( Arabic version )
Last signatures :
x86
1138.EasyCode v2.0 x86 + MASM ( std sign no Deb ) - www.easycode.cat
1139.EasyCode v2.0 x86 + MASM ( Dbg sign ) - www.easycode.cat
1140.[ WARNING : Tampared - Nullsoft Install System v3.0x ] - not packed stub / v.3.05
1141.EuroAssembler ver.20190402 - http://euroassembler.eu *ACM
1142.Standalone EXE Document Locker v1.1 - 2022.11.29 www.4dots-software.com
1143.ZIP SelfExtractor Maker Setup v1.11 2022.11 - www.4dots-software.com
1144.BoxedApp packer v4 2021 © Softanics - BozedAppSDK.dll incl. - stub : Delphi/C++/FPC detect only !
1145.[ BoxedApp SDK32 - 2018-2021 ] DLL library - www.boxedapp.com - stub : C++ 12 NSTD EP
1146.DeepSea Obfuscator v.x.x - 4.4.4 ┬ر 2001-2013 TallApplications - obsolete tool ! - 90% detector
1147.Generic for DLL : RustemSoft Skater .NET Obfuscator v.4.8 - 9.9 - 2022 - www.rustemsoft.com ( only if config fast : OFF)
1148..NET - DNGuard HVM v.2 - 4.20 by ZiYuXuan Studio - 2022.11 - www.dnguard.net - stub : MS Visual C#
1149.[ DNGuard HVM Runtime - v3.x - 4.x 2022 ] DLL library - www.dnguard.net - stub : MS C++
1150.DNGuard v4.x 2022 ( static stub x86/x64 .NET inside ) - www.dnguard.net - stub : Microsoft Visual C++ v.8.0
1151.Baymax Patch Tools v3.1.0 - 3.x 2023.01 by Nisy/PYG www.chinapyg.com - stub : Microsoft Visual C++ v.9.00 & UPX Stub
1152.Metrowerks CodeWarrior C/C++ x86 V2.4 ( MAC OS ) CW Tools 6.0 - obsolete compiler - www.freescale.com *ACM
1153.Struct 3 : VMProtect v.3.6.0 - 3.7.3 2022 [ Exe , Option : packed ] - www.vmpsoft.com
1154.Yano v1.0.15.0 ntoolbox.bom/yano 2012 obsolete! - stub : MS Visual C# / Basic.NET
1155.ArmDot 2023 v3.0.0 - www.armdot.com ( protector/license creator ) - stub : MS Visual C# / Basic.NET
x64
5141. x64 MASM , Linker 14.xx - [ DBG_13 sign ] - no www.microsoft link to masm64 sdk
5142. x64 MASM , Linker 2.50 POLINK v8 2015 - smorgasbordet.com , no www.microsoft link to masm64 sdk
5143. x64 - EuroAssembler ver.20190402 - http://euroassembler.eu *ACM
5144. x64 Microsoft VC++ 14.29 exe [ CPU : AA64 ARMv8 ]
5145. x64 - SecureUPDATE_Installer ( Wizard or Patch - Delta instaler for patch/update ) - stub : [ Tampared file ] x64 UPX v.3.9-4.0
5146. x64 BoxedApp packer v4 2021 www.boxedapp.com - Softanics - BoxedAppSDK.dll incl. - stub : xxxx
5147. x64 [ BoxedAppSDK64 - 2018-2021 ] DLL library - www.boxedapp.com - stub : C++ 12 NSTD EP
5148. x64 - DeepSea Obfuscator v.x - v4.4.4 ┬ر 2001-2013 TallApplications - 96% detector , NO *ACM can detect Fake results !
5149. x64 [ DNGuard HVM Runtime - v4.x 2022 ] DLL library - www.dnguard.net - stub : x64 Microsoft Visual C++ v8.x
5150. x64 .NET - DNGuard HVM v4.20 by ZiYuXuan Studio - 2022.11 - www.dnguard.net - stub : EP=0000
5151. x64 DLL from : Microsoft AppStore ( Export : RHBinder__ShimExeMain ) - stub : NSTD MSV C++ built by: PROJECTNREL
5152. x64 EXE from : Microsoft AppStore ( exe run dll -> RHBinder__ShimExeMain ) - stub : NSTD MSV C++ built by: PROJECTNREL
5153. x64 Baymax Patch Tools v3.1.0 - 3.x 2023.01 by Nisy/PYG www.chinapyg.com - stub : Microsoft Visual C++ v.9.00 & UPX Stub
5154. x64 Microsoft Visual C++ v14.16 - 2017 - DLL ( push rbx , DisableThreadLib.Cs. )
5155. x64 Yano v1.0.15.0 ntoolbox.bom/yano 2012 obsolete! - stub : x64 .NET exe file : 00 Entry Point
5156. x64 ArmDot 2023 v3.0.0 - www.armdot.com ( protector/license creator ) - stub : x64 .NET DLL with : 00 Entry Point - CPU : AMD64
A.S.L ( c ) 2023.01
إقتباس :hxxps://www79.zippyshare.com/v/VzUzsPAk/file.html
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - mounirsoltan - 07-06-2023
New Update
Exeinfo Pe v. 0.0.7.8
download
Exeinfo Pe v. 0.0.7.8
download
Program name : Exeinfo Pe
Version : 0.0.7.8 - 2023 ( 1167 + 161 signatures x64 )
: Ext_detector - v6.8.4 ( 696 non exe signatures )
: external signatures : userdb.txt : 4453
Author : A.S.L Soft
E-Mail : [email protected]
WWW : http://www.exeinfo.xn.pl / www.exeinfo.o7.pl
Category : Exe detector / Data detector / Exe Tools
Description : Detect packer / protector / compiler / .NET obfuscator
Register : Freeware
OS : Windows 7/8/10 x86/x64
Requirements : min. 486, 666MHz
min. 1 GB RAM,
min. 50MB hard drive space
SVGA Graphic Card, 256 colors
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - vosiyons - 19-08-2023
[font][font]Exeinfo Pe v0.8.0 (VIP) [/font][/font][font][font][/font][/font]
![[صورة مرفقة: r4csng6.PNG]](https://i.hizliresim.com/r4csng6.PNG)
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - H@wk0 - 20-08-2023
(19-08-2023, 06:41 PM)vosiyons كتب : Exeinfo Pe v0.8.0 (VIP)
https://www.virustotal.com/gui/file/f22e1742b8b777cc3fb97d1b59513c70f80912babcc2928b025b81f0462c75de
W32.AIDetectMalware
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - vosiyons - 20-08-2023
Shared on Telegram channel
https://t.me/zer0daylab/4373
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - rce3033 - 21-08-2023
(20-08-2023, 01:41 PM)vosiyons كتب : Shared on Telegram channelPosting links here are better and useful for the forum
Download link:
https://workupload.com/file/MhGq7h5kCAW
Download password:
exeinfope
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - vosiyons - 24-09-2023
Exeinfo Pe v. 0.0.8.1
1173 / 164 Signatures x64
Ext_detector - v0.7.1.4
userdb.txt : 4455
update to ver.45.5 : 1156.PUP/PUA - Softonic Downloader
fixed :
589.Generic - Free Pascal compiler (MinGW/FPC) familly
NOT EXE - .vcproj Visual Studio C++ Project v8.0-9.0
NOT EXE - .PDF format ( ver.1.6 ) - [ *ENCRYPTED ]
5138. x64 NET IntelliLock v.1.5 - 3.0 ( .NET Reactor 6.x ) - for DLL 00 EP
5088. x64 Java installer v.11-20.0 offline/online
673.Sun Java Installer v8.0.x
added NOT EXE - .cbproj Radstudio ( C++ Builder )
NOT EXE - .Zip Arch. - .msixbundle
NOT EXE - .Zip Arch. - .msix/appv
Detector for Dos , win 32 , win 64 - UniLink creator
added : over 100 mb info in zip and rar files
Download: https://mega.nz/file/brRGxYDa#UUdeswKXJOG67N6czAfh9ewr9As43YiwVrzWZpU3K8E
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - H@wk0 - 27-09-2023
(24-09-2023, 06:54 PM)vosiyons كتب : Exeinfo Pe v. 0.0.8.1
هل هذا الملف آمين
https://www.virustotal.com/gui/file/a607792e40135c81fba59b463017811a617954f5e7c1a3e2788f10db8d3bcaf3
2 security vendors and no sandboxes flagged this file as malicious
2 security vendors and no sandboxes flagged this file as malicious
RE: ExeInfo PE للكشف عن الضغط او التشفير او الحماية - adhem - 30-05-2024
سلام عليكم
Exeinfo 0.0.8.4 VIP
https://mega.nz/file/784GxIwL#GmbPDHzIqnc3O3GY0P4n5m2geqZG-S99i_hCtPmjIc0