Levis Posted March 4, 2015 Share Posted March 4, 2015 Original Post:http://joineset.com/jobs-analyst.html Uncover a hidden puzzleAnalyze the crackme.exe program and look for 3 passwords hidden in its programming code.The program can contain hidden files, texts, conditional tasks, protection against debuggers and other pitfalls, which could complicate your arriving at the solution.Don’t worry too much if you can’t make it past all the hurdles and uncover the hidden passwords. Even if you did not find the solution, we still want to see your analysis, most importantly the progression of steps you took. We are interested in your way of thinking, which can often reveal more about you and your skills than the correct result itself ever could.Send your analysis to: crackme2015@eset.comThe program was designed to test your skillset in reverse engineering, which might come in handy when you work at ESET in one of the positions described below.... crackme2015.zip 1 Link to comment Share on other sites More sharing options...
david5220 Posted March 4, 2015 Share Posted March 4, 2015 My KIS has already found the password Link to comment Share on other sites More sharing options...
Levis Posted March 4, 2015 Author Share Posted March 4, 2015 My Eset Smart Security doesn't give a warn. And the attachment is the original one which is downloaded from joineset page . Seem that they used some malicious techniques in this crackme. Strongly recommend to do reversing in a VM. Link to comment Share on other sites More sharing options...
david5220 Posted March 4, 2015 Share Posted March 4, 2015 Yes exactly , they are using back door technics , they inject some code into the main Svchost.exe process of windows , that's why my AV went crazy. Link to comment Share on other sites More sharing options...
Nemo Posted March 5, 2015 Share Posted March 5, 2015 hashing good time.. Link to comment Share on other sites More sharing options...
Base64 Posted March 5, 2015 Share Posted March 5, 2015 Huhh! Yah Hash# Humm .. Link to comment Share on other sites More sharing options...
fvrmatteo Posted March 6, 2015 Share Posted March 6, 2015 (edited) I gave a rapid look and this is the results for now, need to concentrate on the passwords now Link: http://www.mediafire.com/download/rigr82vqteo390h/ESET2015.rar pass: eset P.s. yes they inject the main crackme executable into svchost.exe, nothing malicious. Edited March 6, 2015 by fvrmatteo Link to comment Share on other sites More sharing options...
Amer Posted March 6, 2015 Share Posted March 6, 2015 Avira 16 ms Mar 04 2015 (2 days ago) TR/Crypt.XPACK.GenIkarus 1 ms Mar 05 2015 (1 day ago) Trojan.CryptByteHero 374 ms Mar 05 2015 (1 day ago) Virus.Win32.Heur.d Link to comment Share on other sites More sharing options...
NeWOT Posted March 7, 2015 Share Posted March 7, 2015 My MB didn't alert and also windows defender... Link to comment Share on other sites More sharing options...
lokikross Posted March 28, 2015 Share Posted March 28, 2015 Can you please show us the steps ? Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now