[Installer] Add PopCap Installer detection #51

New Issue

Open

opened 2026-01-29 21:05:24 +00:00 by claunia · 1 comment

claunia commented 2026-01-29 21:05:24 +00:00

Owner

Copy Link

Originally created by @TheRogueArchivist on GitHub (Jan 12, 2022).

Installer used by PopCap shareware games for a period of at least around 2004-2010. Files can be easily extracted using 7-zip, with two root folders ("cfg" and "files") being present. The "files" folder seems to contain the exact files as dropped into the installation directory. I haven't been able to find identifying strings in every sample I have, but some have "popcap" very early in the header, and others having "!popcapinstallersig!" somewhat later in the header. It tentatively seems that older games use "popcap" and newer ones use "!popcapinstallersig!", but this isn't for sure yet. According to 7-zip, these installers use at least 2 different compression methods, MSZip and LZX:21. I'm hoping that these should be able to be extracted by BOS, which would greatly aid in detection of PopCap DRM Protect (When added) and ActiveMARK.

Originally created by @TheRogueArchivist on GitHub (Jan 12, 2022). Installer used by PopCap shareware games for a period of at least around 2004-2010. Files can be easily extracted using 7-zip, with two root folders ("cfg" and "files") being present. The "files" folder seems to contain the exact files as dropped into the installation directory. I haven't been able to find identifying strings in every sample I have, but some have "popcap" very early in the header, and others having "!popcapinstallersig!" somewhat later in the header. It tentatively seems that older games use "popcap" and newer ones use "!popcapinstallersig!", but this isn't for sure yet. According to 7-zip, these installers use at least 2 different compression methods, MSZip and LZX:21. I'm hoping that these should be able to be extracted by BOS, which would greatly aid in detection of PopCap DRM Protect (When added) and ActiveMARK.  

claunia commented 2026-01-29 21:05:24 +00:00

Author

Owner

Copy Link

@mnadareski commented on GitHub (Sep 7, 2025):

If there are any links or references for what items may contain this, please provide them.

@mnadareski commented on GitHub (Sep 7, 2025): If there are any links or references for what items may contain this, please provide them.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

rolling

3.5.0

3.4.6

3.4.5

3.4.4

3.4.3

3.4.2

3.4.1

3.4.0

3.3.4

3.3.3

3.3.2

3.3.1

3.3.0

3.2.3

3.2.2

3.2.1

3.2.0

3.1.16

3.1.15

3.1.14

3.1.13

3.1.12

3.1.11

3.1.10

3.1.9

3.1.8

3.1.7

3.1.6

3.1.5

3.1.4

3.1.3

3.1.2

3.1.1

3.1.0

3.0.2

3.0.1

3.0.0

2.9.0

2.8.0

2.7.0

2.6.0

2.5.0

2.3.4

2.3.3

2.3.2

2.3.1

2.3.0

2.1.0

2.0.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.1

1.5.0

1.4.1

1.4.0

1.03.9.1

1.03.9

1.03.8.2

1.03.8.1

1.03.8.0

1.03.7.1

1.03.5

1.03.7

1.03.6

Labels

Clear labels

bug

enhancement

help wanted

pull-request

Mirrored from GitHub Pull Request

question

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

claunia

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: SabreTools/BinaryObjectScanner#51