Hello all.
I build a soft in vb.net. I use xenocode for protect. My soft conecte the server in my server for login.

Now, I  try to pentest my program.

The xenocode was easy to breack. I dump with PETools.
But the .exe created, no function, show an error 0xc000007b.

But in IDA my code is very clean to read, that is a first problem.

I can to continue to investigate my code. Do I need dump dlls? This error can to refer my dlls?

I dont know what my step.  In ollydbg my dumpedfile not open.

In IDA, when dumped file open, debugging option not appear, not enable.

Thanks for your attentin.

You can change the PE headers with LordPE. (Or OllyDbg ver. 2.X)

No idea, depends on what your program is and what dump.exe contains. It sounds quite extreme it's as large as 20mb, did you write it all in Visual Basic .Net? 

Anyway, I can't tell if it's normal or not, as dump.exe could contain only a part of the entire program. The PE header if I'm not mistaken, is only 1KB. So I wonder what dump.exe contains. But you should investigate that yourself on your own 

Tests:
-Ildasm, not possible because error CLR.
-Reflector give error "is not a .NET module"
-Xenocode Solution function only postbuild 2006, and my .exe use postbuild 2009.
-I dump with the LordPE, any error, but the dumped.exe not run.
When I open the Dumped.exe I can see that the code is C#.net.

Sugestions?

I didn't manage to create an runnig .exe. The error 0x00007b always happens. But in other foruns I see that other people have the same problem. Exctly problem.
-I dont see any dll in folders, but qhen I use petools I can see many dlls that my exe is using in this time. I try dump this dlls. In Reflector I can Reader this dll, but when I try to import in Visual Studio, I receive an error that say not valid assembly or com...

My doubt is:
In this time, I can to read the code, undertanding all steps, I can to read the dll...so I can undertanding how my program function. Only I cant generate an exe correct, functioning...

But I need? If I can debug the original exe and change directly in assembly...
Is possible? In olly no...When debbugging, read many dlls, and terminate the debug, so run the exe...This happens because the xenocode run my exe in Virtual Mode...

Any sugestion?

I instal my program in VM. Use InstallWatch for look all files installed in my pc. In Added Files, I can see that the specific folder was instaled many files, but in explorer this same folder is empty.

I configure my explore to show all hided files and system hided files, but continue empty...

How I can access this hided files?