DISCLAIMER: This tool is only meant for security research purposes, not for application crackers.
[+] detected 32bit ARM binary in memory.
[+] offset to cryptid found: @0xe3b0c(from 0xe3000) = b0c
[+] Found encrypted data at address 00004000 of length 5505024 bytes - type 1.
[+] Opening /private/var/mobile/Containers/Bundle/Application/50F2EED2-60AB-4ED4-8E6F-834D2C177899/Facebook.app/Facebook for reading.
[+] Reading header
[+] Detecting header type
[+] Executable is a FAT image - searching for right architecture
[+] Correct arch is at offset 16384 in the file
[+] Opening Facebook.decrypted for writing.
[+] Copying the not encrypted start of the file
[+] Dumping the decrypted data into the file
[+] Copying the not encrypted remainder of the file
[+] Setting the LC_ENCRYPTION_INFO->cryptid to 0 at offset 4b0c
[+] Closing original file
[+] Closing dump file