Jump to content
View in the app

A better way to browse. Learn more.
Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

CPU "Features"

ixiodor
ixiodor
in Programming and Coding

Featured Replies

Posted

Hi guys,
I heared about DENUVO that uses a CPU bound code to make it harder to crack, some code that run only on your CPU. So i was looking for some nice trick and testings tring to emulate that.
I started using CPUD changing values in EAX, my curiosity was on:
  

MOV EAX, 0Bh
CPUID

This give me some values, including in EDX wich core is executing that CPUID. (core1 - core2 etc)

BUT
i found this "feature" , if you do:
  

MOV ECX, 100h
MOV EAX, 0Bh
CPUID

You reset all your registers and you get only a value in EDX, where is showed your current core...
Is that normal??
I have a i7-2600, can someone with different CPU try if have same results?

The Denuvo thing is probably utter horseshit (especially if you read this on reddit).

Anyways, you can find the documentation of the CPUID here: http://x86.renejeschke.de/html/file_module_x86_id_45.html

On my PC, it clears EAX, EBX, ECX, EDX (which are registers that CPUID puts results in according to the documentation). It doesn't clear any other registers:

3tfvpj4.png

Greetings

    • Like 2
    • Author

    Thanks for your time ^_^

    Someone in CPY might know much more about your target.

     

    Oh, sounds pretty interesting http://denuvo.com/#page-5:)

    Edited by arlequim
    added link

    CPY didn't unpack denuvo, they hooked some stuff to bypass license and integrity protections :D

    •
    • Like 1

    Wow, they did even better. Thanks for info Mr.eXoDia ;)  Although i dont know at all this protector, i think they chose the most intelligent tactic and cracking approach, i mean no unpack and secured result :)

    uses a fair bit more than just cpuid information like hdd info (boot drive serial number, and videocard data enum) to name a few

    • 2 weeks later...
    On 3/19/2016 at 8:48 AM, evlncrn8 said:

    uses a fair bit more than just cpuid information like hdd info (boot drive serial number, and videocard data enum) to name a few

    Anyone confirmed what info is actually used in denuvo(VMProtect) ?

    • 2 months later...

    well for the ea stuff, its the same thing in denuvo - hdd serial, video card enum, computer name etc, all built up into a hash.. for the steam stuff, steam user id etc along with he usual cpuid stuff securom used..

    Create an account or sign in to comment

    Go to topic listing

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.