toones
January 1st, 2005, 15:25
I am working with TARGET NAME DELETED. I have been reading numerous tutorials and have gotten stuck. The program will take any key entered, thank you for registering, write the value to the registry, then ask you to restart. On open (restarting), using regmon I find that it reads the input key from the registry. I suspect that the compare is done then, but have no idea where/how to set the breakpoint in SoftIce since it is done before any dialogs.
In addition to all of that, I find that using W32DASM only shows a details page when opening the exe. If I dissassemble the exe I get all of the code, but can edit/patch the code. I think the program is VB from the DLLs it installs, so it may be a p-code/native issue. Unfortuantely with the tutorials I have read, I can't find anything that identifies how to tell which is used.
If anyone can help, or point me to a tutorial that will "clear things up" for me I would appreciate it.
In addition to all of that, I find that using W32DASM only shows a details page when opening the exe. If I dissassemble the exe I get all of the code, but can edit/patch the code. I think the program is VB from the DLLs it installs, so it may be a p-code/native issue. Unfortuantely with the tutorials I have read, I can't find anything that identifies how to tell which is used.
If anyone can help, or point me to a tutorial that will "clear things up" for me I would appreciate it.