1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to extract data from EXE File

Discussion in 'General Programming Chat' started by youtalk, Jan 3, 2013.

  1. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    How can I extract data from an EXE File?

    Everyone tells me if can't happen, but there has to be a way. The data is there, just have to crack it.
    Right?!?!
     
  2. jameshilton105

    jameshilton105 BANNED BANNED

    Joined:
    Feb 17, 2012
    Messages:
    215
    Likes Received:
    83
    You got to be a software engineer to do that. It's hard to decode it without the right tools... Search google my friend, there are 2 or 3 that stand out the rest out there. Good luck!
     
  3. ultra.marine

    ultra.marine Registered Member

    Joined:
    Oct 5, 2012
    Messages:
    80
    Likes Received:
    101
    Location:
    Macedonia
    Of course it's possible, but not all people can do it. I am programmer myself and have no idea how that goes :D I tried it once and failed, since then i lost interest....
     
  4. sathyavcs

    sathyavcs Regular Member

    Joined:
    Oct 7, 2012
    Messages:
    268
    Likes Received:
    565
    Location:
    India
    It is definitely hard, I am not sure. The crack is happening based .dll file where credentials get stored. You made me to think and search for decoding .exe now. Let me see if I can get any good result and will update the thread if I get any
     
  5. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    Were you able to locate anything?
     
  6. Arodax

    Arodax Newbie

    Joined:
    Jan 6, 2013
    Messages:
    11
    Likes Received:
    7
    It depends on what data you would like to extract - as your question isn't specific, I'll give you a general purpose answer: use OllyDBG or any similar debugger. Using a debugger will allow you to open the executable file and view its assembly, and OllyDBG in particular also allows you to search for data within the assembly.

    If you decide to get OllyDBG I'd recommend searching YouTube for "crack trial application with OllyDBG" and watching one of the resulting videos to get some basic experience searching for data in applications; an easy way to find strings once you've loaded an application into OllyDBG is to use the Right Click -> Search for -> All referenced strings menu option which will bring up a list of all of the plain text strings stored within the application.

    I apologize if this is not the type of answer you were looking for, but I did my best. Good luck.
     
    • Thanks Thanks x 3
  7. DarkPixel

    DarkPixel Jr. VIP Jr. VIP Premium Member

    Joined:
    Oct 4, 2011
    Messages:
    1,328
    Likes Received:
    1,239
    Location:
    ↓↓↓↓
    Home Page:
    I extract files from within exe's using a HEX editor. I prefer HEX Workshop. I find the headers of the file I want , and find the end of the file, and just copy paste that part into a new file from within HEX Workshop. Then I just change the extension to that file's and it works perfectly. :)
     
  8. Gogol

    Gogol Elite Member

    Joined:
    Sep 10, 2010
    Messages:
    3,062
    Likes Received:
    2,872
    Gender:
    Male
    Use ollydbg / WinIce ( it might not make any sense to you though :D ). It becomes even tougher if your application is packed
     
  9. vishalgmistry

    vishalgmistry Regular Member

    Joined:
    Sep 25, 2008
    Messages:
    321
    Likes Received:
    520
    ResourceHacker, HexEditor, OllyDebug can help you.
    depends on data type.

    like TheBestSpinner i wanted only their synonym database so above tools didn't worked for me but due intelligence helped me and found it in Application Data folder.
     
  10. saturnx08

    saturnx08 Jr. VIP Jr. VIP

    Joined:
    Nov 18, 2012
    Messages:
    332
    Likes Received:
    34
    Gender:
    Male
    If you could share more details here, i could definitely make a tool for you.
     
  11. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    I have a exe file that I would like all the data extracted from it, and put into either a csv or excel format.
     
  12. seeplusplus

    seeplusplus Power Member

    Joined:
    Aug 18, 2008
    Messages:
    511
    Likes Received:
    163
    Another vote for OllyDBG here. You won't get clear source code mind. Variable and function names wont be the same as they are in the source.
     
  13. davids355

    davids355 Jr. VIP Jr. VIP Premium Member

    Joined:
    Apr 25, 2011
    Messages:
    8,777
    Likes Received:
    6,308
    Home Page:
    You might be better posting it in hire freelancer sections, sounds like some of the guys here could do it for you...
     
  14. Arodax

    Arodax Newbie

    Joined:
    Jan 6, 2013
    Messages:
    11
    Likes Received:
    7
    When you say "data", do you mean strings like "dog" and "cat"? For instance, if one were to be looking for a password that might be embedded in an application, a "string" is what they would want extracted from it.

    Also, I read your PM but I am unable to respond as I do not yet have 15 posts. I may make a post in the Introduction section soon to answer your question(s).
     
  15. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    What I'm looking to extract, is data under certain information. For an example: if the description is TV, I want to extract all the information under that title. So size, technical data, part numbers, etc.
     
  16. Arodax

    Arodax Newbie

    Joined:
    Jan 6, 2013
    Messages:
    11
    Likes Received:
    7
    Ah, I see. Unfortunately, I do not know of a general-purpose quick solution to your problem, and as such you will most likely have to find someone (maybe someone in this thread) that can consult with you and perhaps develop custom software to do what you're asking, if no already existing software is available and able to do the job.

    Alternatively, if the information you want to extract might be found elsewhere on the internet, you may have better luck going that route and scraping the informational pages using regular expressions (RegEx) - something any intermediate programmer can accomplish with ease and will likely not charge you much if anything at all to do.

    Again, best of luck to you in your endeavor.
     
  17. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    So that software you were referring to wont work?
     
  18. Asif WILSON Khan

    Asif WILSON Khan Executive VIP Premium Member

    Joined:
    Nov 10, 2012
    Messages:
    10,112
    Likes Received:
    28,546
    Gender:
    Male
    Occupation:
    Fun Lovin' Criminal
    Location:
    London
    Home Page:
    With a debugger you can step through the program assembly interactively.
    With a disassembler, you can view the program assembly in more detail.
    With a decompiler, you can turn a program back into partial source code, assuming you know what it was written in (which you can find out with free tools such as PEiD - if the program is packed, you'll have to unpack it first).

    • Debuggers:
      • OllyDbg, free, a fine debugger, for which you can find numerous user-made plugins and scripts to make it all the more useful.
      • WinDbg, free, a quite capable debugger by Microsoft. WinDbg is especially useful for looking at the Windows internals, since it knows more about the data structures than other debuggers.
      • SoftICE, SICE to friends. Commercial and development stopped in 2006. SoftICE is kind of a hardcore tool that runs beneath the operating system (and halts the whole system when invoked). SoftICE is still used by many professionals, although might be hard to obtain and might not work on some hardware (or software - namely, it will not work on Vista or NVIDIA gfx cards).
    • Disassemblers:
      • IDA Pro, commercial, top of the line disassembler/debugger. Used by most professionals, like malware analysts etc. Costs quite a few bucks though.
      • W32Dasm, free, a bit dated but gets the job done. I believe W32Dasm is abandonware these days, and there are numerous user-created hacks to add some very useful functionality. You'll have to look around to find the best version.
    • Decompilers:
      • Visual Basic: VB Decompiler, commercial, produces somewhat identifiable bytecode.
      • Delphi: DeDe, free, produces good quality source code.
      • C: HexRays, commercial, a plugin for IDA Pro by the same company. Produces great results but costs a big buck, and won't be sold to just anyone (or so I hear).
    Some related tools that might come handy in whatever it is you're doing are resource editors such as ResourceHacker (free) and a good hex editor such as Hex Workshop (commercial).
    Additionally, if you are doing malware analysis (or use SICE), I wholeheartedly suggest running everything inside a virtual machine, namely VMware Workstation. In the case of SICE, it will protect your actual system from BSODs, and in the case of malware, it will protect your actual system from the target program. You can read about malware analysis with VMware here.
    Personally, I roll with Olly, WinDbg & W32Dasm, and some smaller utility tools.
    Also, remember that disassembling or even debugging other people's software is usually against the EULA in the very least :)

    Copied from http://stackoverflow.com/questions/...e-a-windows-exe-or-at-least-view-the-assembly
    http://superuser.com/questions/282580/is-it-possible-to-retrieve-source-file-from-an-exe

    I used to have a list of forums that would help you. I will see if I can find them.
    If you go to the following forums then you should find the information you need.
    http://www.woodmann.com/forum/content.php (look at the bottom of the page for useful sites)
    http://tuts4you.com/
    http://www.woodmann.com/forum/forum.php
     
    • Thanks Thanks x 5
    Last edited: Jan 6, 2013
  19. youtalk

    youtalk Regular Member

    Joined:
    Jul 5, 2012
    Messages:
    337
    Likes Received:
    6
    Occupation:
    Owner
    Location:
    I don't even know anymore
    Wow. Great information.
     
  20. sirgold

    sirgold Supreme Member

    Joined:
    Jun 25, 2010
    Messages:
    1,260
    Likes Received:
    645
    Occupation:
    Busy proving the Pareto principle right
    Location:
    A hot one
    Olly and IDA are you BEST bets for heavy duty work, as in reversing shit on windows. If you just want to get familiar ANY hexeditor will help you have a little fun. ResourceHacker (look it up, it's small and free) will help you change the resources (icons, bitmaps, etc) on a native pe32 exe. If you're on unix you can always use "strings myfile.exe" to extract the text strings compiled into an exe and there's ports for windows as well via cygwin and others. HTH!