DDoSer Posted January 20, 2015 Share Posted January 20, 2015 This is the hidden content, please Sign In or Sign Up Virus total This is the hidden content, please Sign In or Sign Up Download: This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Ketto Posted January 25, 2015 Share Posted January 25, 2015 (edited) Re: Simple Autoit CrackMe [HIDE]#Region #AutoIt3Wrapper_UseUpx=n #AutoIt3Wrapper_Res_LegalCopyright=DDoSer #AutoIt3Wrapper_Run_AU3Check=n #EndRegion $answer = InputBox("", BinaryToString(_xxtea_decrypt("0x3544B93A503BE0BFFD652A190B0A1D85", "l33t")), "", "", -1, -1, 0, 0) If ($answer == BinaryToString(_xxtea_decrypt("0x4E5D315F0F94A4D52A4E9B27AC248A9A8E870AF803293218", "l33t"))) Then MsgBox(0, "", BinaryToString(_xxtea_decrypt("0x9B761C8C06F2E5E391E1E7315", "l33t"))) MsgBox(0, "", BinaryToString(_xxtea_decrypt("0x6C3ACD48E790513C13B52005", "l33t"))) Func _xxtea_decrypt($data, $key) $data = Binary($data) Local $datalen = BinaryLen($data) If $datalen = 0 Then Return "" Local $opcode = "0x83EC10B83400000099538B5C241C55568B742420578B3EF7FB69D0B979379E81C256DA4CB5895424180F84DD000000897424248D4BFF8D149E894C2410895424148B4C2418C1E90281E103000000894C241C8B742410837C2410007E528B5424248B6CB2FC8BCD8BD7C1E905C1E20233CA8BD78BC5C1EA03C1E00433D003CA8B5424188BDE81E3030000008B44242C33D7335C241C8B1C9833DD03D333CA8B542424290CB28B0CB24E89CF85F67FAE8B5424148B6AFC8BCD8BD7C1E905C1E20233CA8BD78BC5C1EA03C1E00433D003CA8B5424188BDE81E3030000008B44242C33D7335C241C8B1C9833DD03D333CA8B542424290A8B0A89CF814424184786C861837C2418000F8535FFFFFF5F31C05E5D5B83C410C21000" Local $codebuffer = DllStructCreate("byte[" & BinaryLen($opcode) & "]") DllStructSetData($codebuffer, 1, $opcode) Local $v = DllStructCreate("byte[" & Ceiling($datalen / 4) * 4 & "]") DllStructSetData($v, 1, $data) Local $k = DllStructCreate("byte[16]") DllStructSetData($k, 1, $key) DllCall("user32.dll", "none", "CallWindowProc", "ptr", DllStructGetPtr($codebuffer), "ptr", DllStructGetPtr($v), "int", Ceiling($datalen / 4), "ptr", DllStructGetPtr($k), "int", 0) Local $ret = DllStructGetData($v, 1) $codebuffer = 0 $v = 0 $k = 0 Return $ret EndFunc[ /HIDE] Edited January 25, 2015 by Ketto Link to comment Share on other sites More sharing options...
FQV Posted January 26, 2015 Share Posted January 26, 2015 Re: Simple Autoit CrackMe Hola a todos :D Pues me di un tiempo para ver este crackme y concluyo en que no entiendo ni papas jajaja en primera utilizamos este de compilador This is the hidden content, please Sign In or Sign Up después de ver correr el code procure recrear nuevamente el algoritmo que desencripta las cadenas pensando que este podía ser el password 0x4E5D315F0F94A4D52 A4E9B27AC248A9A8E870AF803293218 el resultado es este: OMG Just Simple CrackMe y la siguiente cadena no se que onda pero no me la desencripta correctamente en fin hasta donde vi creo que esto "OMG Just Simple CrackMe" debería dar el resultado de exito no? o me equivoco igual gracias por el crackme un saludo y suerte. Link to comment Share on other sites More sharing options...
Recommended Posts