dEEpEst Posted January 6, 2015 Share Posted January 6, 2015 [HIDE-THANKS] This is the hidden content, please Sign In or Sign Up [/HIDE-THANKS] Link to comment Share on other sites More sharing options...
katos6 Posted February 23, 2015 Share Posted February 23, 2015 (edited) Re: Crackme#1 by S!x0r Espero que esto valga, beno este crack me recordo la viejita escuela de cracking , los harcode .. empece con abrir el OllyDB click derecho -> Search All Referenced text string , veo el cartel del chico bueno Text strings referenced in Crackme#:.text, item 2 Address=00401076 Disassembly=PUSH Crackme#.00405034 Text string=ASCII "Valid Serial" damos doble click sobre esa referencia y bueno con es de suponer el salto estaba arribita de ese mensaje 0040106D 75 3C JNZ SHORT Crackme#.004010AB <- Compara si es verdadero o falso y brinca a la referencia 004010AB 0040106F |. 6A 40 PUSH 40 ; /Style = MB_OK|MB_ICONASTERISK|MB_APPLMODAL 00401071 |. 68 41504000 PUSH Crackme#.00405041 ; |Title = "Nice :)" 00401076 |. 68 34504000 PUSH Crackme#.00405034 ; |Text = "Valid Serial" | Cartel del chico bueno 0040107B |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hOwner 0040107E |. E8 11020000 CALL ; \MessageBoxA 00401083 |. EB 26 JMP SHORT Crackme#.004010AB 00401085 |> 837D 10 68 CMP DWORD PTR SS:[EBP+10],68 00401089 |. 75 20 JNZ SHORT Crackme#.004010AB 0040108B |. 6A 00 PUSH 0 ; /lParam = 0 0040108D |. 6A 00 PUSH 0 ; |wParam = 0 0040108F |. 6A 10 PUSH 10 ; |Message = WM_CLOSE 00401091 |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hWnd 00401094 |. E8 01020000 CALL ; \SendMessageA 00401099 |. EB 10 JMP SHORT Crackme#.004010AB 0040109B |> 837D 0C 10 CMP DWORD PTR SS:[EBP+C],10 0040109F |. 75 0A JNZ SHORT Crackme#.004010AB 004010A1 |. 6A 00 PUSH 0 ; /Result = 0 004010A3 |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hWnd 004010A6 |. E8 DD010000 CALL ; \EndDialog 004010AB |> 33C0 XOR EAX,EAX lo que tenemos que cabiar aqui es este salto 0040106D 75 3C JNZ SHORT Crackme#.004010AB el JNZ por un JZ o sea 75 por un 74 0040106D 74 3C JE SHORT Crackme#.004010AB Dejo screenshot del crakme solucionado This is the hidden content, please Sign In or Sign Up By Kratos Edited February 23, 2015 by katos6 Link to comment Share on other sites More sharing options...
Recommended Posts