Encrypted Usage? #6
Comments
|
I didn't have any exhibits for testing and it wasn't relevant for my use cases, so I never implemented support for it. It probably won't be too hard to do so. Do you know Perl? 😉 |
|
I'll look into it. |
|
I added experimental support for password hash checking, but no decryption yet. |
|
@onitake No luck, sorry. PS C:\Users\dave> docker run -it --rm thawsystems/uninno
uninno@7008761e171a:~$ git clone -b tweaks-v3 https://github.com/kholia/inno2john
Cloning into 'inno2john'...
remote: Counting objects: 602, done.
remote: Total 602 (delta 0), reused 0 (delta 0), pack-reused 602
Receiving objects: 100% (602/602), 494.00 KiB | 584.00 KiB/s, done.
Resolving deltas: 100% (417/417), done.
Checking connectivity... done.
uninno@7008761e171a:~$ uninno.pl -e inno2john/samples/Output/setup.exe
Installer version: 5500
Number of files: 2
1: test.txt App 0 2015-02-04 14:18:20 CE...ERROR: File is encrypted, but no password was given at /home/uninno/uninno/Setup/Inno.pm line 220.
uninno@7008761e171a:~$ uninno.pl -p openwall -e inno2john/samples/Output/setup.exe
Installer version: 5500
Number of files: 2
Invalid password specified. |
|
Thanks for referencing the file, I'll have a look. |
|
Ok, I fixed a couple of bugs, password verification should work now. Decryption isn't implemented yet. |
|
So, I implemented a bit of decryption support and tried to test it using your example installer. uninno can decrypt the data just fine - but it seems the installer is broken: It specifies the chunk containing the text file as LZMA compressed - but the chunk is only 2 bytes long, and that's way too small for a compressed blob. Do you know how this installer was created? It could also be a bug in the decompression code, but I probably need more samples to investigate further. |
Is extracting password protected installers supported in uninno? Not sure how I'm supposed to input the password (i.e.
uninno.pl -p alic.e13E7 installer.exe).The text was updated successfully, but these errors were encountered: