The Nullsoft Installer System was originally developed by (duh) Nullsoft, the folks that brought you Winamp, the most llama-ass-whipping MP3 player ever to grace the early 2000s. In general, our users aren’t malicious, but why make it easy? A third-party vendor’s version of “volume licensing” is “here’s our installer, here’s a license file, put them both in the same directory and run the installer.” This makes it easy to mess up with non-technical users (what’s a zip file?) and hazardous for smarter users (I’ll just put this license file on TPB). The summary above really sums it all up nicely. Find out how I did this in about an hour with NSIS below… Or leave the directory unpacked and run the TeamViewer.exe directly.I had a software installer that needs to be distributed with its license key, but in a way that keeps the users safe from themselves, and us safe from auditors. You can test your changes by running the TeamViewer.exe from the folder.Īfter you made all your changes you can then create a SXF or installer that extracts it to temp and run TeamViewer.exe. This folder is the one you really need to do the resource editing, you can repack it to a sfx archive if you want or create an installer.Īll the resources can be found in the dll files (text in the language resource and images can be found in TeamViewer_StaticRes.dll)Īs an example i changed the image in the quick support module (TeamViewer_StaticRes.dll) : Let’s examine the content of tvqsfiles.7z : There is a plugin dir in this folder also (used to unpack the 7z files) we don't care… Plugins can easily be investigated by consulting the following website: In our case, we have System.dll and TvGetVersion.dll PLUGINSDIR as the name suggests, is the Container Directory of these DLLs. NSIS also has a wide range of plugins to accomplish various installation tasks. Let’s examine the content by opening the executable with 7Zip application:Īs you can see, we have 2 Directory Entries: All that is needed is an archive manager like 7Zip. It’s pretty easy to unpack an NSIS Application. Now we need to study the structure of this package and carve out all its files. NSIS Files Extraction and Further File AnalysisĪs stated previously, the executable is delivered as Windows Installer, packaged and compressed with NSIS Technology. You can already see that it is a SFX archive. Additionally, you can see also the presence of a Resources Section and reloc section. Here is the Section Headers entry:Įntry Point belongs to. This mean that the application is compressed (Packaged) with NSIS (Nullsoft Scriptable Install System) technology, a professional open source system to create Windows Installers.įrom basic information, let’s now view more specific information about its PE Geometry. File Information clearly indicates the Nullsoft PiMP stub.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |