Jump to content
Tuts 4 You

[CrackMe] s!mple CrackMe v0.3

simple

By simple
in CrackMe

 Share

Recommended Posts

simple

simple

Posted
Posted

Hey guys, welcome to my third crack me!


 


Compiler: mingw


  Packer:  Hopefully the next one will have this


Difficulty: ~3/10


    Rules: Anything goes. Wrote this w/patchers in mind, but serial phishing/keygenning would be great too


 


 


Enjoy, feedback is welcome and thanks for reversing!


CMv0.3.rar

  • 2 weeks later...
wxfengyun

wxfengyun

Posted
Posted

i found that this crackme uses CreateWindowExA to show "incorrect!" text.


At the same time, the "incorrect!" text is on the heap, and decrypt at runtime.


but i didn't find where is the judge jz or jnz, it is hide so deep, and i counldn't crack it now.


Can someone give me some clues?

kao

kao

Posted
Posted

Name: kao!

Serial: 6.20383688w

Obviously, it's only valid for my machine.. ;)

Hint that will save you lots of time and effort:

nm.exe -n --demangle CMv0.3.exe
wxfengyun

wxfengyun

Posted
Posted

Name: kao!

Serial: 6.20383688w

Obviously, it's only valid for my machine.. ;)

Hint that will save you lots of time and effort:

nm.exe -n --demangle CMv0.3.exe

Can you tell me some more details about finding serial?  I'm a newbie and i did not have nm.exe, i am in windowsXP +OllyDbg, it's so confused for me to understand its' verification algorithm.

 

Thank you very very much!

redblkjck

redblkjck

Posted
Posted

Install MinGW and you will have nm.exe     You will want to pipe the output to a text file.


There are 4 parts to create the serial and each is checked individually before going to the next part.    It is machine specific.


simple

simple

Posted
  • Author
Posted

I just had someone else serial fish it yesterday too : )


 


Each cmp is obfuscated wxfengyun, try to use nm.exe. There are 4 important parts to the constuction of the serial, where it's compared against 3 different variables that (should be) unique to each machine (can anyone ID what exactly these parts are?) The final check (the 4th) should be a little more "normal" than the previous 3.


 


Currently writing the next keygen, hopefully it will keep everyone busy for another 10 days!  Thanks for reversing!

wxfengyun

wxfengyun

Posted
Posted

Install MinGW and you will have nm.exe     You will want to pipe the output to a text file.

There are 4 parts to create the serial and each is checked individually before going to the next part.    It is machine specific.

thank you very much, and i find the serial of my machine now. the algorithm is so complicated, i spend so much time to debug it.

kao

kao

Posted
Posted

Small keygen+source attached. Didn't test it much but it should work just fine..

Have fun,

kao!

P.S. It kept me busy for just a few hours, but it's still a nice challenge! :)

keygen.rar

redblkjck

redblkjck

Posted
Posted

@kao!   worked fine on my machine.   
The 4 specific parts are noted in the kg source if anyone else stuck.

 

It can be patched to accept any serial at the REPE CMPS location.  Also the serial can be sniffed out in ascii at the same location, if user aware of the fake checks. ;)

simple

simple

Posted
  • Author
Posted

kao - keygen works perfectly. Written in asm too... impressive!


 


wxfengyun - Look at the keygen, the core algorithym itself is very simple : )


 


Thanks for the feedback everyone, was a pleasure watching y'all crack.


Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...