Hi,

I have searched and found nothing about this topic in particular. I have a prog that seems to be an exe created by installshield. The extractor is InstallShield Self-Extractor. Normaly, you would just run it and then take the ins/inx and that was extracted to a temp dir. But this installshield, does not extrac its stuff, it asks for a pw before extracting. I tried dissambling it with w32dasm and ida and found myself completly lost in the code. I looked at a few jumps before the call to MessageBoxA (the pw is invalid...) but cant figure it out. Could somebody explain to how I could possibly reverse this without softice. There was one topic that kind of was about this stuff but they used softice. Appreciate your help.

J

If it can help, I could post the code. I cannot seem to find a section wich looks like something I have seen before, like a test, cmp and jne.

J

Hmmm... based on the information given, we can't even pretty much lift our little finger

Moral: Post the Target URL and I'll take a look...

Signed,
-- FoxThree

Ok, I will post the "link" where you can get the package and the decompiled code.

You can get Train Dispatcher 3 and Track Builder 3 Installs.
http://www.signalcc.com/train3/downloads.html

If you like the games you sould buy them, very interesting games.
J

*I only posted the W32DASM Code cause with IDA the file is too big.

take a peek at 004014c1... or possibly even more interesting the call at 004023FD... not sure about that one though

This is some dumb password protection, no doubt. Took less than 2 secs. under SICE. Look at 0040C7B0 to get the actual "unencrypted" password. [4xx5x2]

Signed,
-- FoxThree

I know this is so simple in sice but I am on XP here and I cant run softice so I can only do it by dead listing. Thanks for the hint anyway.

there are other debuggers than SoftIce... check out WinDbg, it works fine on XP

I have windbg I find it hard to work with but you say that you can actually break on APIs in windbg? I had no idea of that. Cool, will look into that, thanks man.