Posted January 21, 20169 yr Difficulty : (6 1/2)Language : (C++Builder XE8)Platform : (Windows x86)OS Version : (Windows XP & Above)Packer / Protector : (Custom VM) Description : This is my second CrackMe, the first one being developed in PureBasic, which it has many cool shenanigans but moved onto C++ now to deliver a different taste Hopefully this will leave a mark when analyzing this CrackMe The idea of this crackme is to analyze the VM and understand how it works, it will ultimately take you to where you want to go. Objective : Patch to Good Boy or Fish the Serial. Wish you the best of luck Screenshot : League of the Extraordinary Protected App.7z Edited January 21, 20169 yr by 0xNOP Approved - thanks for following the template :)
January 21, 20169 yr Hmm, I think I saw this vm before. Looks like a modded version of x86obf. The virtualized code and its way of operation are uncannily similar.
January 27, 20169 yr Plenty of anti-debug, 3 VMs each having different opcodes, 7+7+6 = 20 virtualized methods - it's a lot of code to be analyzed. Before I waste any more time on them - are you sure your crackme is working properly on all systems? Like on 64bit Win7.. And if it's not a spoiler, what are the criteria for success? Showing the "Well... I guess you finally did it..." message?
January 30, 20169 yr 6 hours ago, Pancake said: Maybe offtopic, but how did you make such cool GUI in c++? Embarcadero.
January 30, 20169 yr Author On 1/26/2016 at 0:06 PM, kao said: Plenty of anti-debug, 3 VMs each having different opcodes, 7+7+6 = 20 virtualized methods - it's a lot of code to be analyzed. Before I waste any more time on them - are you sure your crackme is working properly on all systems? Like on 64bit Win7.. And if it's not a spoiler, what are the criteria for success? Showing the "Well... I guess you finally did it..." message? It's supposed to be working on all of them, Are you running into problems? Yeah, that would ultimately be, as the message suggests... Thank you for participating It supposed to be running also, are you having problems? Edited April 15, 20169 yr by 0xNOP
February 3, 20169 yr Solution OK, so here are my findings: 1) Patch - it's quite easy, just replace reference to one piece of virtualized code with another. Patched EXE attached, 2 bytes modified: 0042C9F8: 77 85 0042C9F9: 4C 42 2) Serial - here is serial that's probably correct for my nick: Spoiler kao : 0x90-2172038173 However, it will not show the success message because x86 conditional jump is incorrectly virtualized. Instead, it will show empty messagebox due to exception thrown. 3) Keygen - since it looks like serial check is borked, there is no keygen yet. If either of those solutions are acceptable, I will make a detailed tutorial on how it was done. If none of those solutions are acceptable, please double check that your virtualized EXE works correctly. Sample username/password would be nice. PATCHED League of the Extraordinary Protected App.zip
Create an account or sign in to comment