home *** CD-ROM | disk | FTP | other *** search
- *************************************************************************************************
- CrackME Cracked (his first C++ CrackMe)
- *************************************************************************************************
-
- Author: Fr1c
- Protection: Password
- URL: http://www.inet.hr/~kstipano/crackme.zip
- Tools used: SoftICE
-
-
- ---> Intro
-
- Hi, welcome to my very first tutorial.
- I suck at writing tutorials but i give it a try =)
- This is a very simple CrackMe only one Password to find so let's begin.
-
-
- ---> Let's Begin...
-
- Open up the CrackMe and it asks for one Password.
- Fill in some fake Password and get into SoftICE (CTRL + D) type "bpx hmemcpy" and press enter,
- then out of SoftICE (F5) and press the button "Check" and we are back in SoftICE =)
- Now disable the breakpoint "bc *" and press F12 (7 times) till you reach the CrackMe code
- (I think you allready know how this goes so I won't explain it too much =).
- Then press F10 a few times till you don't see any ret's and you will see this code:
-
-
- LEA EDX, [EBP-04] <--- points to the address of our fake serial.
- PUSH EDX
- MOV EDX, 00431445 <--- this is the address of the real password.
- LEA EAX, [EBP-08]
- CALL 0040EED0
-
-
- so get over MOV EDX, 00431445 but don't go into the call and then do a "d edx" and you'll see
- the right serial. ok, damn easy =)
- If you trace a little bit further into it you'll see that it compares the fake and the real
- serial but im not going deeper into that =)
- So finally i got this info:
-
- Password: F988f91
-
- If you have questions mail me at: code.inside@home.nl
-
-
- ---> Greetings...
-
- Everybody at TrickSoft,
- Everybody at FCC,
- Everybody in #Cracking4Newbies and offcourse:
-
- ---> Fr1c <---
-
- This is my first tutorial so i want to say thank you for this CrackMe.
-
-
- Don't trust the Outside, trust the InSiDe !!!!!
-
- Cya...
-
- CoDe_InSiDe
