Originally Posted by
Esoserv2
I wish, i could have helped more, but with win 8.1 it's not possible for me to debug the compressed/encrypted exe or i'm to stupid. At olly dumping there is a can't read memory exception, without dumping eso's error form comes up, the same probs under ida. A look at the uncompressed exe with ida is fine, but not the same as debugging at runtime and look what values are written into the registers. I turned aslr off through a prg called emet(from ms). The only thing i can do, is to port the python part into C# ;-)