1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is there anyway to detect what compiler was used to create an exe?

Discussion in 'General Programming Chat' started by simpleonlinetest, Apr 6, 2010.

  1. simpleonlinetest

    simpleonlinetest Regular Member

    Joined:
    Feb 18, 2010
    Messages:
    208
    Likes Received:
    25
    I have the exe file in hand and want to know what compiler would be needed to decompile the exe to view the source code.
    Thanks
     
  2. kenblack

    kenblack Regular Member

    Joined:
    Feb 10, 2010
    Messages:
    365
    Likes Received:
    193
    Location:
    Tropical Paradise
    Home Page:
    If it's a .net application, yoiu can use any of the public disassemblers to produce complete source code (yes, you can change it, then recompile later).. one of the pitfalls of .net if an obfuscater is not used.

    If it's a exe file that predates .net, then you cannot disassemble it to get the 'C' source code, but you can disassemble it into assembler for reviewing, but not likely able to change and compile it again unless you are very skilled.
     
  3. simpleonlinetest

    simpleonlinetest Regular Member

    Joined:
    Feb 18, 2010
    Messages:
    208
    Likes Received:
    25
    From what I can read it was written in a visual programming language. Do those use .net in their apps?
     
  4. kenblack

    kenblack Regular Member

    Joined:
    Feb 10, 2010
    Messages:
    365
    Likes Received:
    193
    Location:
    Tropical Paradise
    Home Page:
    You should look at the system requirements for the app. If it runs on Windows 95 / 98, then it is NOT .net. If it says it needs .net framework 1.0 - 3.5, then it is indeed a .net app. Most applications written in the past two years are probably .net.
     
  5. kenblack

    kenblack Regular Member

    Joined:
    Feb 10, 2010
    Messages:
    365
    Likes Received:
    193
    Location:
    Tropical Paradise
    Home Page:
  6. simpleonlinetest

    simpleonlinetest Regular Member

    Joined:
    Feb 18, 2010
    Messages:
    208
    Likes Received:
    25
    It's a portable type program. I don't need to install anything all to run the program. It's actually a ubot bot that compiled into an exe. It's basically a script compiled into an exe....
     
  7. kenblack

    kenblack Regular Member

    Joined:
    Feb 10, 2010
    Messages:
    365
    Likes Received:
    193
    Location:
    Tropical Paradise
    Home Page:
    Ok, then that is a little different. Not a .net app. You may be able to extract the script however.
     
  8. radi2k

    radi2k Junior Member

    Joined:
    Nov 29, 2009
    Messages:
    117
    Likes Received:
    34
    Location:
    Germany
    i dont know much about ubot but what i have seen from tutorials and videos i think that this software is written in C# or C++.NET. if you use windows vista or windows 7 some microsoft specific frameworks are already installed but maybe with older versions. thats why it worked without anythin else i guess.

    due to the fact that the software was written in C# i dont think that the author was a big genius nad hasnt included a good algorithmn to encode the source of the script that has be compiled into the exe. i'm sure the exe is just some sort of player program that runs the commands from the script. writing an own compiler for that wouldnt be a bit too much. and of course ubot would be a way much expensive!

    in your case i would look out on the internet for deeper information on other people that have already tried to decode ubot standalone exe files. of course you could also write the author of the software if he could tell you if your scripts are secure against copying when you compile and give it out to the public. some authors are even too stupid and tell you something about the internals like encoding algorithms or something. that could help you to do reverse engineering.

    so to sum up everything: you will need deeper knowledge in assembly and/or how exe files are encoded. with that info you can decode everything by hand. but remember that this is very time consuming. you could also try to find something in the resource section of the exe file. but i dont think that the author was too stupid to put the script into that section since its very easy to dump that.
     
  9. int80

    int80 Newbie

    Joined:
    Jan 13, 2010
    Messages:
    8
    Likes Received:
    9
    Enumerating packers and Compiler types of exes - use PEiD. For unpacking exe's, MSIs etc use uniExtract. Good luck.