(First load victim on Olly and execute the ObsidiumOEP.txt script; this will lead to near OEP;Stolen bytes analyses are inside Obsidium Unpacking (Stolen Code).txt tutorial;after you get the stolen bytes which have to placed before near entry point.Finally load ObsidiumIAT.txt script to resolve import table.
Attached a fixed version of IAT fixer (now also backup/restore ESP register).)
收藏
