Hello Everyone,

I have a target with the subject line. I successfully found Master Key, UserKey from the targets loaded modules ".dlls"

SiteKey from <productname.key>
Restriction Key from <productname.rst>
Entry Key from <productname.ent>

Using thewd's tools was able to understand information from master, user, site, restriction, entry key etc... Till here everything is ok.

My target programs gives me SiteCode as below
54F5 F3FD F765 7746 3AD3 91
after 14 days limit is over it gives me
C20D FFFF 6FDA D009 97B4 3F

Now if we use thewd's tools with the below parameter

ckinfo /sitecode 54F5 F3FD F765 7746 3AD3 91
we get an error 03 check code length.

if we use it with userkey option like below
ckinfo /userkey 54F5 F3FD F765 7746 3AD3 91

It gives this below info.
So the target is generating the Bad Userkey & not SiteCode. Is this strange ? or its new things?

Now to clarify doubts my doubts i began read the sdk & found a small note on Dynamic Encryption

We have increased the bit size of our Site Code and Site Key encryption. Never satisfied with good enough, we have also created a dynamic multiple encryption key scheme, so that encryption keys are constantly changing on the fly. This is truly a code breaker's nightmare. This also halts any attempts to create a rogue key generator.

Now my question how to deal with this things ? Shall one concentrate to make a SiteKey or patch it. Anybody experience in generating SiteKey for 6.1 ver.

Doubt No. (2) that i would like to clarify if someone has experience with it.

The SiteKey gives us Key Level & Key Options can we use this information or we have manually find from
GetAuthorization, GetLevel, GetOption ?

Please enlighten me.

Regards, Sope

Have you tried to unpack and patch the siteKey generator SKW so that it generates a key for your program? I think this approach will be the best one for you...

Hello YesItsMe,

No i have not patch SKW, but i settled with patch in program itself to register demo for 1,000 days.

Btw, i'll unpack skw & try what u said sooner.

Regards, Sope.

Hello Everyone,

Time to share a brief notes on signature file for a target with CrypKey 6.1

Target module was found running Process Explorer & seeing the description column i got "Authorization Module" So i was sure where to look for more information

Next it was time to load that module in IDA. Manually found Master Key, User Key in short i found the InitCrypKey Functions. Next i thought if i could have the .sig files of CrypKey it would have been easier. So i started searching but i could not find it. Since i had the sdk i thought why not make it from the libs & .dlls provided but i failed to generate pattern files from ida utility (flair)

Tried some utility dumpbin on libs files to produce the symbols but failed no use.

Now turn to look at .dlls they are packed, either unpack them & try ida utility on it once again, but will consume some time, will try this when I find time & tell u all the result.

Now what ? ok let’s try a funny ideas that I had. Since I had the sdk I started searching for a program which had almost all functions implementations. We all know generally all this commercial programs comes with examples & sample codes. I decided to load “win32 example” in ida & produced a pattern files by the plugin “idb2pat”. Applied sigmake utility on it & produced a .sig file. Time to apply it on the target module & I am amazed to see that it recognised the functions See belowRegards, Sope