Anyone using PeStudio by Winitor?

PeStudio updated:
. Added more Indicators specific to the location of the Entry Point
. Added more details (offset and size) for each file Cave detected

 

Thanks for another heads up.

 

@ Marc Ochsenmeier

Where do you want me to send malware that crashes your project?

 

@nosirrah: always glad to improve the stability of PeStudio! You can send me samples to the following email address: info@winitor.com

Please zip the file with "infected" as psw. Thanks.

 

Sent with subject "samples that crash PeStudio".

 

Thank your very much for the samples. PeStudio has been fixed (enhanced) to support these malformations and will be released soon. Please continue to send me samples that crashes PeStudio!

 

@0strodamus: Thank you very much for accepting to correct my text into real English!

 

Your English is better than 98% of those born into it. Tschüß!

 

You're very welcome and FOXP2 is right - you didn't need much help at all. I just hope I didn't make any mistakes!

 

I am looking for samples already packed with nspack. Can anyone give me a hint where I can find such samples? Thanks.

 

Marc no problem for me with samples packed nspack.

I will be you send little samples with nspack in a few hours.

 

Is there a way to launch PeStudio and have it open to a specific tab? For example, "PeStudio.exe /VTtab" or "PeStudio.exe /Librariestab".

 

@0strodamus: good Idea! What about setting this starting Tab option in the XML file e.g. <starting_tab>2</starting_tab>?

 

@ELWIS1: Thanks for the files!

 

@nosirrah: thanks again for the samples that crashed PeStudio! The new version of PeStudio now handles this malformed samples correctly.


. Added an Indicator when the Offset of a Directory is outside any Section
. Added an Indicator for duplicate Sections Offset
. Corrected mapping of Sections
. Handle non-printable characters in XML report

 

PeStudio updated:

. Handle Resources distributed among several Sections (à la Themida)
. Added <default_tab> TAG in the PeStudioSettings.xml file to determine in which TAB the GUI must start

 

I would stilll welcome images that crash PeStudio or that are malformed....Thanks!

 

My poor SSD is being overwritten like crazy!

I remember it crashing when I accidentally checked a large media or text file, doubt that counts.

 

PeStudio update:

- . Fixed an issue with 64bit Images

 

Thanks Marc!

 

@0strodamus: You're welcome! Hope this feature saves the click.

 

Hello Marc,

When I try to launch PeStudio on french version of Windows XP Pro SP3, I get the following error messages :

http://img138.imageshack.us/img138/6079/y1pf.jpg

http://img266.imageshack.us/img266/941/6lyq.jpg

http://img42.imageshack.us/img42/1466/d6zd.jpg

http://img7.imageshack.us/img7/3764/ms5k.jpg

What's the problem ?

Thank you very much for the software!

 

@genieautravail: thanks for using PeStudio! Really sorry about this failure. Actually, I don't know why that happens. I'll reinstall my XP SP3 VM and test it.

 

PeStudio has been updated:

. Support usage of PeStudio from the Command Prompt
. Started a "PeStudio Handbook.pdf"

 

Hi ...
would it be hard to intergrate right click explorer scan on a file.?I like the virustotal intergration but it would be great to perform this action from right click explorer.Same goes for analyse a file..I know this doesn't install anywhere but it would be nice for that option.
thanks