XeNTaX

Nice game and BAD game archives you will look that it is possible to make in order to take out from there the resources

Mr.Mouse , Watto what say guys ?

The archive itself contains raw pictures,
(only pictures from what ive seen)

here is an example after some hexxing

Analyzed the archive a bit further.
unfortunately, im kind of bad in explaining things, so
i took a screenshot and tried my best to make an explanation
from what i THINK is a correct interpretation of the format.

Nice work - at least we know the type of files in there, as I could not find any filenames.

This is the specifications I have thus far - but I havn't coded or tested them yet.
WATTO
watto@watto.org
http://www.watto.org

It's easy. The filenames are right under your nose.

The "unknown" chunk is actually the filenames. They are XOR-encrypted and the XOR key is saved right there in the archive, right after the Number of Files.

After the pointer to the resource info offset, comes
The XOR key is 4 bytes in length. To calculate the number of times you should apply the key to the filename in a row.
The remainder of the resourcename is not encrypted (max 3 bytes).

I've coded a MultiEx Commander plugin for these files, to extract the files with the correct filename.

Get the plugin, and create an ARF archive in the data/plugins directory, then store there the Snowy.dll. Start MexCom and enjoy!

Wow ......... Mr.Mouse , Watto , Strobe thanks guys

Ah I didn't even notice that junk section, I was supposed to come back to it after I worked out the rest of the format, but obviously I didn't . Good work mate, glad someone was able to correct me.

I will look towards putting this in the next GE update.

WATTO
watto@watto.org
http://www.watto.org

Okey Watto .... Am extracted files has been crypted..... all textures and sounds files.. Simple so not to open them

The textures I've seen are not encrypted, they are more like raw pixeldata. The filenames suggest they came from DDS files though, so it could be that the authors have stripped the DDS file headers from these.

Something similar could then be the case with the sound files you mention.

Actually, the headers of the file data are encrypted - you can see the entry I just placed on the wiki. There is a 1-byte value that, if used on the file data, will give back the normal headers. Well, at least it gave me the DDS headers for the files I tried, so I would assume it would work for the other files too.

I think Mr Mouse is correct though, in that the texture data is not encrypted, so there must be some way to distinquish where to start/stop the decryption of the file data.

WATTO
watto@watto.org
http://www.watto.org

OK, it appears as though the first 20 bytes of the file data are XORed, and the remaining bytes are to be read as normal. I have tested it with all the DDS images in the sample archive and it worked fine.

WATTO
watto@watto.org
http://www.watto.org

Okay, good. I fixed the MexCom Snowy plugin to include such decryption. See screenshot.

Wow - finally I got one right - usually I post the specs for something and you correct me.

WATTO
watto@watto.org
http://www.watto.org

friendsofwatto wrote:Wow - finally I got one right - usually I post the specs for something and you correct me.

lol

Mr.Mouse , Watto BIG thanks I knew that you guys me you will help