WinLicense v3.1.3.0 x86 (All Protection Options)

[Sean Park - Lovejoy]

3 hours ago, TRISTAN Pro said:

So may be someone send it to me and I will attach it or check my tutorial in text Here just ask to someone upload asm.txt and yuo will get it.

anyone has asm.txt ? 

sean.

[Sean Park - Lovejoy]

add ecx,ebp
mov ecx,dword ptr ds:[ecx]
cmp dword ptr ds:[ecx],edi
pushfd 
mov edx,ebp
mov ebx,0

how should I inline codes in here ?

[Sean Park - Lovejoy]

On 4/3/2023 at 9:50 PM, TRISTAN Pro said:

Tutorial for winlicence(This target):

make inline to make the same process to automate the target.

@TRISTAN Prohow to inline ?

Edited June 18, 2023 by windowbase

[X0rby]

Chill out bro

[NEW-RE]

On 6/16/2023 at 11:10 AM, boot said:

The tutorial link has been removed, you need to re-contact the uploader to get the backup of the tutorial...

 Deleted Tutorial

Edited June 23, 2023 by NEW-RE

[Sean Park - Lovejoy]

On 6/19/2023 at 5:42 AM, NEW-RE said:

 PM Me , I need your help regarding Engima HWID 

@NEW-RE I finally saw boot's main form. exactly same way in the tutorial video, it'd be shown.

many thanks for the video tutorial upload. @NEW-RE

sean.

Edited June 24, 2023 by windowbase

[Sean Park - Lovejoy]

Try this UnpackMe. this is protected of 3 virtualized code blocks.  my intention is whether you can devirtualize them and unpack it.

Protection info.

Themida v3.1.4.18

1. 3 virtual machines used.

2. no api wrapping.

3. no anti-debug.

4. no compression.

5. no entry point virtualized.

ThemidaUnpackMe_protected.exe

sean.

Edited June 20, 2023 by windowbase
Editting words.

[xxx22xxx]

hello, can someone share with me the asm.txt for bypass HWID ?

Thanks & Regards

[net21u]

On 7/22/2023 at 7:47 AM, xxx22xxx said:

hello, can someone share with me the asm.txt for bypass HWID ?

Thanks & Regards

Your telegram ID?

[Dino]

On 4/3/2023 at 8:01 PM, TRISTAN Pro said:

Thank yuo bro 

I need time to create a video then I already share some video to another personne but I will do it with this full unpackme about hwid bypassing I want everybody know about it and let the Orean technology see how does it work(SHARING KNOWLEDGE) and change a bit  them protection.😁

Here the video bypassing hwid winlicence for latest version of themida only include masm for inline patching the unpackme.

hope it help someone and make understand Orean technology team change them protection and make newer challenge don't forget like it and share.

Good luck.

 

Hi TP,

Please upload again the video,

Thank's in advance

Dino

[Sean Park - Lovejoy]

On 4/26/2023 at 12:48 AM, X0rby said:

Boot challenge unpacked by X0rby.7z 3.99 MB · 90 downloads

Unpacked

Edition    Windows 10 Enterprise
Version    22H2
Installed on    ‎31/‎05/‎2023
OS build    19045.3693
Experience    Windows Feature Experience Pack 1000.19053.1000.0
X64 OS

What's wrong? @X0rby

Regards.

sean.

[X0rby]

Dunno, check your system - works well here in a freshly installed Windows 10.

[Sean Park - Lovejoy]

On 7/25/2023 at 6:49 AM, Dino said:

Hi TP,

Please upload again the video,

Thank's in advance

Dino

Refer to this thread.

Regards.

sean.

Edited February 4 by windowbase
editing some words.

[replican]

On 4/3/2023 at 7:50 PM, TRISTAN Pro said:

Tutorial for winlicence(This target):

This tutorial work only for themida latest version,learn from @quosego and @LCF-AT .

Load the target in ollydbg(I have made tutorial Here  for configuration),now let the run app and when it appear pause and make search all séquences with those command "mov r32,[r32];cmp [r32],r32;pushfd" ,make all breakpoint on all Result and let it run again and click ok so the first compare is on 00556b26  cmp ecx and edi and make it the same after that the second compare is on 005B3719 cmp esi,edx and make it the same too and make inline to make the same process to automate the target.

Now click all nag and let it run till all nag pass and decrypt section code to break on oep.

Hope it will works for yuo Good luck.

For those want video,I have old tutorial video unpackme by @converse for bypassing HWID contact me via Telegram +012345678912 or Name:Tristan Prosper MIARANA  I will share via Telegram  and hope someone have the tutorial video share to another.I don't have enough data internet to share it here cause I using phone.

 

How i can get  the tutorial vidio?