ProjectHax

ProjectHax ŧ General ŧ Programming

Reply
 
Thread Tools Display Modes
  #1  
Old 07-15-2018
LegendaryNacar's Avatar
LegendaryNacar LegendaryNacar is offline
Senior Member
 
Join Date: Oct 2014
Location: Earth
Posts: 540
Exclamation Reversing Pergian's Botmanager

Hey, I have to recovery my silkroac accounts which are stored on .xml of this Botmanager, made by pergian. If I remember correctly he was the one who tried to replicate phbot.


Anyways, his bot manager is quite suspicious (Hybrid-Analysis with VirusTotal), I do not know why we still did use it back than, but nvm. It stores like this :

Code:
<Username>ndBbcwaBTCFTQhHB/c1KNg==</Username>

      <Charname>+VQUcXq4ajY=</Charname>
      <Server>eP+CXNmrsT0=</Server>

I will attache the raw `BotManager v2.5.rar` only if WeeMan approves. If you want to help me to reverse this .exe or the hashes, I can send it through PM.

Strongly looking for a help
__________________
"Itīs not a shame not to know; what is bad is not asking."
-Turkish Proverb-
The Three Musketeers Python-Java-C++

Last edited by LegendaryNacar; 07-15-2018 at 07:44 PM.
Reply With Quote
  #2  
Old 07-15-2018
WeeMan WeeMan is offline
Administrator
 
Join Date: Apr 2011
Location: United States
Posts: 12,346
Default

PM me with it. I'm guessing it's written in C# so hopefully I can just open it up with .NET reflector and see how it encrypts the info.

Edit: Actually, download process explorer and get the command line args.

https://docs.microsoft.com/en-us/sys...ocess-explorer
Reply With Quote
  #3  
Old 07-15-2018
Tete1990's Avatar
Tete1990 Tete1990 is offline
Senior Member
 
Join Date: Jul 2011
Location: Germany
Posts: 799
Default

username: eupt0017
charname: Diley
server: Merv
Reply With Quote
  #4  
Old 07-15-2018
LegendaryNacar's Avatar
LegendaryNacar LegendaryNacar is offline
Senior Member
 
Join Date: Oct 2014
Location: Earth
Posts: 540
Default

Quote:
Originally Posted by WeeMan View Post
PM me with it. I'm guessing it's written in C# so hopefully I can just open it up with .NET reflector and see how it encrypts the info.

Edit: Actually, download process explorer and get the command line args.

https://docs.microsoft.com/en-us/sys...ocess-explorer
ok I will try it. Will also sending it.

Quote:
Originally Posted by Tete1990 View Post
username: eupt0017
charname: Diley
server: Merv
Finally. Can you teach me sensei?
__________________
"Itīs not a shame not to know; what is bad is not asking."
-Turkish Proverb-
The Three Musketeers Python-Java-C++
Reply With Quote
  #5  
Old 07-15-2018
LegendaryNacar's Avatar
LegendaryNacar LegendaryNacar is offline
Senior Member
 
Join Date: Oct 2014
Location: Earth
Posts: 540
Default

I could extract all the information with process explorer. But I am curious how you found it, can you teach me please @Tete1990
__________________
"Itīs not a shame not to know; what is bad is not asking."
-Turkish Proverb-
The Three Musketeers Python-Java-C++
Reply With Quote
  #6  
Old 07-15-2018
WeeMan WeeMan is offline
Administrator
 
Join Date: Apr 2011
Location: United States
Posts: 12,346
Default

FYI you probably shouldn't post the info directly here since obviously people can get the password.
Reply With Quote
  #7  
Old 07-15-2018
LegendaryNacar's Avatar
LegendaryNacar LegendaryNacar is offline
Senior Member
 
Join Date: Oct 2014
Location: Earth
Posts: 540
Default

Quote:
Originally Posted by WeeMan View Post
FYI you probably shouldn't post the info directly here since obviously people can get the password.
This was a dummy account, not important that much but I would prefer him to change just the ID since I use it time to time

And shared the info without that password intentionally.


If you mean the decoding method, maybe you are right. Still, I would love to learn it. At leastI would appreciate if can you share it via PM.


EDIT: OHhhhh, I thought I did not sent all of em, phh. I hope only Tete1990 got it :P You want hack me, right
__________________
"Itīs not a shame not to know; what is bad is not asking."
-Turkish Proverb-
The Three Musketeers Python-Java-C++

Last edited by LegendaryNacar; 07-15-2018 at 07:45 PM.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 03:41 AM.
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2018, vBulletin Solutions Inc.

Google+ Facebook Twitter