I am dealing with certain software package, which distributes a time limited demo and a very complex encryption/packing scheme.
It does not have the clasical SentinelLM 7.1 features including its license file.
The license appears to be a long binary key in the registry, whose name ends in LM (License manager??)

Questions:

1)Are there any clues that would indicate this is a Rainbow Sentinel 7.2 protected package?

2)Are the SLM 7.1 generated licenses useless in 7.2 prgrams? Of course I would think yes, but I would like to hear if anybody has actually tried it.

Please. I do not think my post can be THAT lame.

I will ask again:
I have a program X, which I can post the name if anybody requests.
Previous versions have been protected with SentinelLM 7.1.

It is a time limited demo, with a loader, and it is packed and heavily protected to my time traking attacks. The overall scheme of protection is quite similar to SlLM.

I worked on the hypothesis that the program was protected with some version of SlLM:

I did not find a license file being read at the start of the program, only a registry entry which has a name ending on LM

I dissasembled the loader program with IDA, and applied all the available Sentinel 7.1 flirt:
I did not found any call to a known 7.1 function, but I do not have a 7.2 flirt, so it still may be using 7.2 API.

Ergo: At this point I am unsure if I am dealing with a new variant of SentinelLM (7.2???) or with a completely new protection scheme.
I was wandering if anybody has been in my situation before, and know of some typical file names, file extensions, code patterns that are typical of SlLM 7.2, and may help me solve this issue.

Thanks in advance