Themida Free
Desiderato Merriwether
I still get the popup at startup. I've done a search for themida and for oreans. Nada. Any ideas on how to get rid of this. Lots of searching tells me its a virus of some sort. Although there also seem to be legit websites talking about it. hard to tell.
Not saying that a Themida detection is valid or not; just lending more context to the discussion. Could be valid, but after the CCleaner infection a few months ago, I suppose anything is possible - (CCleaner is a very popular junk file removal tool recommended by many big tech writers, including Ed Bott, the guy who writes the Windows Inside and Out Editions - an update of CCleaner was infected with the Floxif Trojan a few months ago, supposedly when it was transferred to the distribution servers. The problem was fixed, but it is a cautionary experience - any software update could conceivably be altered & infected if the system is infiltrated).
Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!
I would like to protect a small Win32 file and deciding which protection software to use. Would anyone here be able to provide insight on the difficulty of unpacking the current version of Themida (with multiple of the virtual machines) and VMProtect? In general, which of the two is more difficult to unpack?
Both are good protections if used properly. Both protections can be unpacked rather easily, the difficult part is the virtualized code. So virtualizing vital functions and sub functions is very important.
VMProtect is so good in virtualization system. Personally I will recommend you to use VMP, It is unpackable but It will take lot of time to Devirtualize encrypted codes, so only a pro reverser can crack your program.
First you say Themida is trashtier, then you pick a far inferior packer and state that it is better..? People need to start realizing, that if you have no clue what you're talking about, you should either start your sentence with "I assume" or you shouldn't say anything at all. Silence is bliss.
If you have to choose between Themida and VMProtect, you should always pick Themida. Why? Because Themidas virtual machines are much more advanced and much harder to crack than VMProtect. Themida was initially known for their CISC VM which was (at the time) very strong. It has since been defeated (by Deathway) and is now considered weak (since it's actually rather simple once you start to understand it). VMProtect's virtual machine is almost an exact replica of the Themida CISC VM featuring stronger obfuscation, and as such it works in the exact same way, which makes it (almost) equally weak.
Since then, Themida developed the RISC machine (RISC64 and RISC128), which was against defeated by Deathway. They then proceeded to develop the FISH and TIGER machines, which features very new tricks such as complex combined handlers (FISH) doing multiple operations each instead of a handler for each operation like CISC had, and also internal (yet simple) cryptography. The TIGER VM is very similar to the FISH VM (since it is built on the same engine), but doesn't utilize the cryptographic internal registers, etc.
The newest machine(s) from Themida is the DOLPHIN machine, which is yet another layer of complexity upon the newer FISH/TIGER engine, while also supplying a hybrid VM called EAGLE, which is FISH virtualized by DOLPHIN (if memory serves right).
Themida is far , FAR worse than VMProtect
You have to devirtualize everything with VMProtect , meanwhile you can dump themida / winlicense from memory (Their anti dump is a meme , actually does nothing) and all protection is gone.
I think you're either trolling or extremely retarded because you're clearly uninformed.
Also just to clarify , I didn't "pick" VMProtect , it's still shit as I stated , just less shit.
As a person who has already defeated the VMProtect virtual machine and the Themida CISC virtual machine, and whom is currently in the process of defeating the Themida FISH and TIGER machines, I can tell you that they are almost uncomparable in complexity, as Themidas never virtual machines makes VMProtect (and the old Themida CISC machine) seem like childsplay.
Yes , themida is far , FAR worse than VMProtect
You have to devirtualize everything with VMProtect , meanwhile you can dump themida / winlicense from memory (Their anti dump is a meme , actually does nothing) and all protection is gone.
I think you're either trolling or extremely retarded because you're clearly uninformed.
Also just to clarify , I didn't "pick" VMProtect , it's still shit as I stated , just less shit.
Well we are talking about protection , as OP requested "I would like to protect a small Win32 file and deciding which protection software to use" not virtualization.
Seems like my answer was pretty accurate as themida offers 0 protection in real situations / scenarios
First you claim virtualization is not "protection"..? If he OP wants protection, and asks which protection software to go with, it includes all features of the protection software, such as virtualization. Themida offers exceptional protection in real situations, when you don't want people to understand certain functions.
Next you pick a .NET virtualizer and tell us that, if we're to deduce the best virtualization protection software (while the choice stands between VMProtect and Themida) we should pick Agile.NET??? In case that point flew over your head, here's another stupid point to this:
1. Don't put words in my mouth. Never claimed virtualization isn't protection.
2. OP didn't ask for a native packer , stop assuming because it makes you look extremely uninformed and stupid.
3. Themida offers NO PROTECTION , it's literally useless in every situation , it's completely worthless , even the developer admits it.
Using themida is begging to have your shit cracked / leaked.
It ISN'T protection at all.
Anyone that claims themida is adequate protection either works for oreans or has no idea what the fck they're talking about.
Clearly you're the latter.
Do not listen to that idiot.
If you do , your program will be cracked 100%
Use VMProtect , even battleeye is protected with VMProtect lmao
Unlike themida , dumping a VMProtect executable won't make the protection obsolete.
Themida is NOT an obfuscator , here's literally the developer of themida saying it himself
I didn't invest time in reversing Themida protected targets yet, neither code virtualized targets (but soon). Just from reading how Themida is using virtual machines as protections, with hybrid virtualizations like SHARK or EAGLE I would say that it's a better choice to go for Themida than VMProtect.
93ddb68554