Cracking Tutorial
Serial Find Using Numega SmartCheck
Author: webmasta
| Target Program: | Bjanes VB crackme v1.0a |
| Location: | CrackMe |
| Tools: | Numega SmartCheck v6.03 |
| Level: | (X) Beginner ( ) Intermediate ( ) Advanced ( ) Expert |
| Protection: | Serial |
| What I will be talking about in this essay is for Newbies in the area of Numega Smartcheck, if you already know how to find a serial in SmartCheck then you might not find this educational! |
To The Cracking!
| Ok, first open up your readme.txt sometimes authors like to give us hints about the target. We find: "Sorry, but I can't give you any hints, because I'm not experienced with cracking VB programs, actually I hate them :)" hehe, so all we know is that its a serial only crackme. Which is good, might be a little easier. OK, now open BJCM10A.EXE, we see a box to enter our serial and 2 buttons, "Check it" and "Exit". Close the program, now open up Numega SmartCheck , i hope you have it already configured. Now, open the program through SmartCheck, and press F5 or the green arrow. Once the program is ran type a Serial in the box, i typed "6767676767" and click "Check it", a message box will appear, saying "Sorry Try Again!", before clicking on "OK" click on the stop button (red square) or menu Program - then to End. What you should see is "_Click" and a "+" next to that, click on the "+" and you should see "String ("FALSE") - > Boolean (FALSE)" and then the call for the MsgBox, now we know ithe msgbox is being called by a Boolean varible. So Click on "String ("FALSE") - > Boolean (FALSE)" and while its highlighted click on the "Show All Events" button near the green arrow. you should land near a "__vbaStrCmp", which stands for String Compare. We're now in the main reg routine, so that SHOULD be the main compare of the right and wrong serial, when I clicked on it, it showed my serial "6767676767" and "Serial must be at least one characters long!"... hmmmm, why would Bjanes compare my serial with a string like that? I KNOW! Shes trying to trick us! type Serial must be at least one characters long! in the serial box! .....YES! we get the message: "Good job! Tell me how you do that!" ... You might be thinking: "well how did you know that was the right serial?", easy, when we clicked on the "+" we went into the sub routine which is executed when we clicked "Check it" in the target. I knew this because of the "_Click", we only "clicked" on one button while the target was running, and that was the "Check it". So when we clicked "Show All Events" this out us in the middle of the reg routine, and in my experience with SmartCheck, the __vbaStrCmp in the middle of a reg routine is usually a compare of the correct serial and the wrong serial! EASY!!! =D |
GreetZ: dlw, ACiD BuRN, Toth, hell, Dow, dennison, prs, TK4, glen, jess0r, metaray, nail, Black Acid, TCA wh0res, #cracking4newbies, FireWorx, Dormouse, nchanta, Da_DiABLO, ORiON, HERiTAGE, DC (R.I.P), RiSE and DVN, risc, Penisfire!
Thanks to Eternal Bliss, Tornado, Acid Burn, and others for thier great Tutorials!