Jump to content
YOUR-AD-HERE
HOSTING
TOOLS
SERVICE

Locked Crackme#1 by S!x0r


dEEpEst

Recommended Posts

  • 1 month later...

Re: Crackme#1 by S!x0r

 

Espero que esto valga, beno este crack me recordo la viejita escuela de cracking , los harcode .. empece con abrir el OllyDB

click derecho -> Search All Referenced text string , veo el cartel del chico bueno

 

Text strings referenced in Crackme#:.text, item 2

Address=00401076

Disassembly=PUSH Crackme#.00405034

Text string=ASCII "Valid Serial"

 

damos doble click sobre esa referencia y bueno con es de suponer el salto estaba arribita de ese mensaje

 

0040106D 75 3C JNZ SHORT Crackme#.004010AB <- Compara si es verdadero o falso y brinca a la referencia 004010AB

0040106F |. 6A 40 PUSH 40 ; /Style = MB_OK|MB_ICONASTERISK|MB_APPLMODAL

00401071 |. 68 41504000 PUSH Crackme#.00405041 ; |Title = "Nice :)"

00401076 |. 68 34504000 PUSH Crackme#.00405034 ; |Text = "Valid Serial" | Cartel del chico bueno

0040107B |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hOwner

0040107E |. E8 11020000 CALL ; \MessageBoxA

00401083 |. EB 26 JMP SHORT Crackme#.004010AB

00401085 |> 837D 10 68 CMP DWORD PTR SS:[EBP+10],68

00401089 |. 75 20 JNZ SHORT Crackme#.004010AB

0040108B |. 6A 00 PUSH 0 ; /lParam = 0

0040108D |. 6A 00 PUSH 0 ; |wParam = 0

0040108F |. 6A 10 PUSH 10 ; |Message = WM_CLOSE

00401091 |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hWnd

00401094 |. E8 01020000 CALL ; \SendMessageA

00401099 |. EB 10 JMP SHORT Crackme#.004010AB

0040109B |> 837D 0C 10 CMP DWORD PTR SS:[EBP+C],10

0040109F |. 75 0A JNZ SHORT Crackme#.004010AB

004010A1 |. 6A 00 PUSH 0 ; /Result = 0

004010A3 |. FF75 08 PUSH DWORD PTR SS:[EBP+8] ; |hWnd

004010A6 |. E8 DD010000 CALL ; \EndDialog

004010AB |> 33C0 XOR EAX,EAX

 

 

lo que tenemos que cabiar aqui es este salto 0040106D 75 3C JNZ SHORT Crackme#.004010AB el JNZ por un JZ o sea 75 por un 74

 

0040106D 74 3C JE SHORT Crackme#.004010AB

 

Dejo screenshot del crakme solucionado

This is the hidden content, please

 

By Kratos

Edited by katos6
Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.