This should be easy to do.

Object create keygen.

here is the crackme

i keygened it. post questions here if you need help.

figugegl

Hi Javelin,

Let me Give it a Try... But If I can't proced I'll ask a lot of questions... =)

agh! console! what do I set a breakpoint for in a console program?!

Is there a good site for learning how to code a keygen in c?



nazx

there are no useful breakpoints in the crackme, you have to unpack and look at the listing, or to trace it until you come to the right spot (hint: addr 4011C0).

figugegl

hi all

I`m working on it but figugegl i think you are wrong about no breakpoints you can use.
i had such a crackme before and you can set a breakpoint on the input of your name and such, don`t ask me witch ones i don`t remember the exact ones sorry i`ll post it if i have them

Sphinx

there are ReadConsole and WriteConsole but they're not used in this crackme. i haven't found a useful breakpoint.

but the program is relatively small and it wasn't a big deal for me to trace to the important code.

sphinx: plz tell me if you find a useful breakpoint.

figugegl

Just a tip for you guys. This prog is packed so you wont see the breakpoints used by it. Dont bother downloading the normal unpacker for this packer type though, as it cannot unpack this version. It can be done with the right tools though.

figugegl - I have the name and e-mail XOR :-) routine sorted but the final serial calculation has got me a little stumped. Is your keygen ripped or did you re-write it in something else?

Hoof

Hoof Arted: I've written my keygen in C (lcc win32). Mail me if you want the source code.

The final serial calculation is a little confusing...

figugegl

Im not giving up on this one..you said the right tools.. and you said a normal unpacker would not work (which I realized after trying) Are you talking w32dasm?

nazx

Open the exe with a HEX editor or use a tool like GETYPE. Once you have identified the packer, you can find an unpacker or read some tutes on how to unpack it yourself. You will find though that the packer, in some cases, can unpack for you but in this case, will not.

Hope it helps

Hoof

hi all,
i cant start it all. i am crying give me some hint.

Ok, so I figured out what was used to pack it, only problem is when I try to unpack it, it says the program version that was used to pack is obselete, and wont unpack it..

any help?

has anyone succesfully unpacked it?

There are two possible things that you can do.

1) You can find a tutorial on unpacking UPX manually

2) You can use ProcDump


Hoof

PS. Obviously, option 1 will teach you the most.

could someone post on how to do it with procdump? I have read some tutorials, but i seem to be stuck, everytime i try to dump the file from memory, it keeps telling me i cant do it... any help?

-rage

Hiya,
I'm still having login problems with this board, I sent you an email,
let me know if you did/not get it.
regards

Thanks so much JS, makes so much sence now, working on keygen...

-rage

Hi,

last night I coded this half solution; half because I think I've reached the username, email & serial algo but the output serial seems not to be good by the program. (Invalid Serial)


I guess the solution to the problem should reside in the way the program gets the input from the user calling proc 00401000 (RVA)...
but I'm a bit (confused)
any suggestion?

thnx.

Well needless to say guys, i solved it, wooo!!! Challenging, i dont usualy do keygens.... but its late so im not going to program the keygen tonight, ill start it tommorow, im not sure if ill get it done though, probobly need to spend time debuging it like every other program i write, over and out...

-rage

Well im so damn tired and im finally done! woo! Anyways i tryed out quite a few combonations and they seemed to work, so give it a try, it should work, it does for me. Well i have to get up and go to school tomorrow, so leavea messge or somthing....

-Rage

To theCaller:

i cant asmble? the asm code so i cant check what is happing

but if StdIn is keeping the '\n' then that is the problem

code used to read user input

void readln(char *s)
{
int i=0;
char ch;
cin >> resetiosflags(ios::skipws);
while (cin >> ch, ch!='\n') s[i++] = ch;
s[I]='\0';
}

----------------------------------

To Rage9:

Keygen works fine for me also

Nice Job

------------------------------------

To All:

please post or email me
suggestions, comments, Improvement ideas


Regards

Javelin

nice hint javelin!!!! thnx!!!

it was the damned '\n' !!!!!!

in order to assemble the file just use the BUILDC.BAT in the bin directory of the hutch's masm32 distro.

i've attached the code & console executable.

is anybody else haveing a prob dl ing the file?