Running tiny_tracer from the menu prompts: "You'll need a new app to open this .exe file"

Question

Running tiny_tracer from the menu prompts: "You'll need a new app to open this .exe file"

lfontesm opened this issue 3 years ago · comments

I've followed the instructions, but whenever I try run an exe file with tiny_tracer i get prompted that i need a new app to open the result. I've tried selecting notepad.exe and instead of tracing the API calls it's dumping the exe
I've made sure my pin install dir is C:\pin, put the compiled dlls in the install32_64 dir, and all
Maybe I'm missing something, but i'm pretty sure i've followed all the steps carefuly.

Cheers!

lfontesm · Answer 1 · Thu Oct 28 2021 20:23:04 GMT+0800 (China Standard Time)

Btw, I think it's important to note that i was using flare-vm

hasherezade · Answer 2 · Fri Oct 29 2021 22:43:33 GMT+0800 (China Standard Time)

hi! I suspect it happens because one of the components: kdb_check.exe got flagged by your AV (as the readme says here)
in order to confirm if this is indeed the problem, can you run kdb_check.exe as standalone, and tell me what do you see?

hasherezade · Answer 3 · Fri Oct 29 2021 22:45:29 GMT+0800 (China Standard Time)

A similar problem was reported in this thread: #12

hasherezade · Answer 4 · Fri Oct 29 2021 22:48:10 GMT+0800 (China Standard Time)

You can also try replacing the run_me.bat by this one:

https://gist.github.com/hasherezade/93e1a3d65a8b53aef38907be54c118b9#file-run_me-bat

and let me know if it fixed the issue.

lfontesm · Answer 5 · Wed Jun 28 2023 23:25:59 GMT+0800 (China Standard Time)

I was so sure I had disclosed the solution to the issue back then! I'm so sorry to leave you hanging.
Actually came back to this issue because I wanted to read what I had written.
But in short: The issue was all me being very stupid.
It was a typing error by typing "tiny-tracer" with a dash ('-') instead of "tiny_tracer" with an underscore ("_").

Again, so sorry to leave you hanging :(