Jump to content
Tuts 4 You

[Keygenme] Keygenme 15

ChOoKi

By ChOoKi
in KeygenMe

 Share
Go to solution Solved by DimitarSerg,

Recommended Posts

tester

tester

Posted
Posted

@ChOoKi

nice keygenme

I can not identify the second hashing algorithm this is something standard or custom modified? some tools detect GOST encryption but it does not seem.

Link to comment
Share on other sites
ChOoKi

ChOoKi

Posted
  • Author
Posted

@tester: You are on the right track there. Using kanal is always a good idea but you still have to uncover the rest and only by tracing you will get the correct answers.


Link to comment
Share on other sites
pnta

pnta

Posted
Posted (edited)

@ChOoKi, I can just patch it :lol:

 

tpxj.jpg

 

----------

I found some information,

 

length name > 0

length serial = 32 chars

SHA256(name + ComputerName)

----------

name: pnta
ComputerName: PNTA2K10SHA256(pntaPNTA2K10) = 56C686FC8FCDAF957584324CCFF196D79A86C4B4D5E821947BD5AEDF20D49DFA
----------
56C686FC8FCDAF957584324CCFF196D79A86C4B4D5E821947BD5AEDF20D49DFA
                                                                                                       FA9DD420DFAED57B
56C686FC8FCDAF957584324CCFF196D79A86C4B4D5E821947BD5AEDF20D49DFA
95AFCD8FFC86C656                                             
56C686FC8FCDAF957584324CCFF196D79A86C4B4D5E821947BD5AEDF20D49DFA
                                  D796F1CF4C328475
56C686FC8FCDAF957584324CCFF196D79A86C4B4D5E821947BD5AEDF20D49DFA
                                                                     9421E8D5B4C4869A
-----------
ST(0)=-7.7726754773063089660e+18
ST(0)=-2.9118742364095435630e+18
ST(0)=-7.6606784228332159140e+18
ST(0)=-3.8792075522717557760e+17
-----------
fserial: 123456789012345678901234567890121290785634129078
5634129078563412ST(0)=6.2116101977542625460e+18
ST(0)=1.3377014009651897520e+18--------------------

 

it's hard for me :(

Edited by pnta
Link to comment
Share on other sites
ChOoKi

ChOoKi

Posted
  • Author
Posted (edited)

@ pnta : Nice work except for the "patching" bit :yuk: Don't give up just yet my friend, try again and this time take it slow through the calls, write down some notes and then take a step back and look at the big picture, you will start to see things clearer.


Edited by ChOoKi
Link to comment
Share on other sites
ChOoKi

ChOoKi

Posted
  • Author
Posted

@ SReg & DimitarSerg: Awesome work guys :thumbsup:, thank you both very much for taking the time to solve this challenge, I can only hope that it was fun and you have enjoyed it. :peace:


 


Cheers


Link to comment
Share on other sites
Brainrain

Brainrain

Posted
Posted (edited)

2ldunw2.jpg


 


jslopz.jpg


 


Yes, this is most likely an accidental coincidence. Same colors, same font type and surprisingly everything is the same.


I shared the code of my old template with an SSG member, seems it was a mistake and it got leaked, which basically wouldn't be a big problem as long as people use it for learning/getting ideas instead of "modding" it...


It must have been very hard and timeconsuming job to modify the picture and color of the main form and replace the strings in the about section. I'm really amazed of such talents...


Edited by Brainrain
Link to comment
Share on other sites
SReg

SReg

Posted
Posted

@Brainrain,


 


There was no leakage. I & DimitarSerg completely rewrote code from this keygen, using IdaPro + HexPays. Not using asm, 100% Delphi code. Done much work...


In any case, I can send to you source code.


 


I not understand you - is greed or what? something wrong that I used your beautiful template?


p.s. sorry for my bad english


Link to comment
Share on other sites
DimitarSerg

DimitarSerg

Posted
Posted (edited)

Yes, this is most likely an accidental coincidence. Same colors, same font type and surprisingly everything is the same.

I shared the code of my old template with an SSG member, seems it was a mistake and it got leaked, which basically wouldn't be a big problem as long as people use it for learning/getting ideas instead of "modding" it...

It must have been very hard and timeconsuming job to modify the picture and color of the main form and replace the strings in the about section. I'm really amazed of such talents...

SReg is rigth. There is no leak !

I saw this template in your release from ~2000year and I liked it. Then we decided to reverse it and get sourcecode of it.

>It must have been very hard and timeconsuming job

Yes, it was a lot of hard job (~48hours) with delphi7, ollydbg, also using IDR, IDA+HR to get full sources of this nice template.

p.s. Code for buttons was rewritten from Dr.Carbon asm sources

p.p.s. If you are against using this template - you can say it ;)

Edited by DimitarSerg
  • Like 1
Link to comment
Share on other sites
  • 3 weeks later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...