Log in

View Full Version : Very Easy CrackMe


harmor
January 5th, 2007, 22:43
This is for the beginner just starting his venture into cracking.

\*===================================*/
1. Find the real serial number.
2. Alter the code to allow it to accept any serial
/*===================================*\

LLXX
January 6th, 2007, 03:19
I was expecting something a bit more complex for that size... but this one was a bit disappointing seeing as a hex editor is all that's needed

What the hell was it compiled with? A protection like this doesn't take four-hundred-thousand bytes

harmor
January 6th, 2007, 03:57
The program has 22 lines and was compiled with Dev C++

ZaiRoN
January 6th, 2007, 04:55
Good enough for real newbies

Silkut
January 6th, 2007, 13:39
As LLXX said, the valid serial is waiting for us. =/

LLXX
January 6th, 2007, 19:45
Quote:
[Originally Posted by harmor;63565]The program has 22 lines and was compiled with Dev C++
With "generate most bloated code possible" option enabled.

I've seen entire apps with more complex protections than this in les than 1/10th the size (unpacked)...

countryman
January 6th, 2007, 20:24
Thank you for your Hardwork.
so. later
see you again.

treaxer
March 21st, 2007, 05:40
19654659119676XXX

ZaiRoN
March 21st, 2007, 07:40
Hmm, nice number. What is it?

begemott
March 27th, 2007, 04:36
.text:00401429 mov [esp+88h+var_84], offset a19654659119676 ;

BTW: why the generated exe is so large?
Did you make use of template metaprogramming or other code bloating techniques? ? ?

LLXX
March 31st, 2007, 06:07
About half of it is useless debug info, 3/4 of the other half is probably std::cout and the rest of the standard bloated library, and of the 1/8th that's left, 1/10th of that would be the code and data contribution that he actually wrote.

Me thinks he decided to link in everything so his serial couldn't be so easily found... though the compiler *does* put the data in its own section...

0xf001
March 31st, 2007, 10:53
i dont understand the excitement about size. its obvious why. and its an easy crackme

thanks for posting it

LLXX
April 1st, 2007, 02:16
Quote:
i dont understand the excitement about size.
You're probably not all that learned in Asm compared to some of us here. Most HLL'ers are that way thinking it really does require over 9000 bytes to do a string comparison and write a few lines to the console, when at most a few hundred is sufficient.

I'd say that learning Asm really does change your perception of programming and software in general, in a revolutionary way (and IMHO positive) way.

0xf001
April 1st, 2007, 06:29
hehe,

i tried to get the focus away from this "issue". i thought its not so important for somebody who wants to test his skills against this crackme.

about my perception of asm: i am a bit familiar with it. and i am fully with u about HLLs. about ca 14 years ago i learned asm for i386 after switch from C128 to pc. at that time i used 6510 asm for about 3 years (i started at the age of 13 with it), where i coded my own 4 bit audio sample sequencer (like drum machine), gfx effects, little games, and reversed some games. my 1st programming language on i386 was asm, where i coded intros, gfx effects, little games, and then my first polymorphic, full stealth, resident incfectors, various programs to bypass novell security and custom protectors used at school
i developed electronic devices using 8051 microcontroller derivates, pic microcontrolllers (before it understood basic ), ... in asm of course.
then came pascal, then c, then VB, then linux: shell, perl, javascript, php, ... then VC++, then hp-ux, solaris, aix, then osx reversing.

usually i am quite concerned about size where it matters. like in virus coding for example. however for a beginners crackme just all is fine in my opinion.

regards, 0xf001

goqq2008
April 26th, 2007, 07:10
1. Find the real serial number.
19654659119676414

2. Alter the code to allow it to accept any serial
00401437 . E8 1CAD0300 call 0043C158
0040143C . 84C0 test al, al
0040143E 74 16 je short 00401456 ; nop
00401440 . C74424 04 2C0>mov dword ptr [esp+4], 0044002C ; the serial you entered is correct\n\n
00401448 . C70424 C03344>mov dword ptr [esp], 004433C0
0040144F . E8 44AD0300 call 0043C198
00401454 . EB 1B jmp short 00401471
00401456 > C74424 04 500>mov dword ptr [esp+4], 00440050 ; the serial is incorrect\n\n

owl
April 27th, 2007, 09:41
Quote:
[Originally Posted by goqq2008;65215]1. Find the real serial number.
19654659119676414

2. Alter the code to allow it to accept any serial
00401437 . E8 1CAD0300 call 0043C158
0040143C . 84C0 test al, al
0040143E 74 16 je short 00401456 ; nop
00401440 . C74424 04 2C0>mov dword ptr [esp+4], 0044002C ; the serial you entered is correct\n\n
00401448 . C70424 C03344>mov dword ptr [esp], 004433C0
0040144F . E8 44AD0300 call 0043C198
00401454 . EB 1B jmp short 00401471
00401456 > C74424 04 500>mov dword ptr [esp+4], 00440050 ; the serial is incorrect\n\n


That is a spoiler! for anyone that wanted to try.

vivekgupta1987
May 10th, 2007, 15:21
i am new to this.

i found real serial key using hexeditor as well as IDA (freeware) but first.exe says it is incorrect!!!

i can't understand alteration code.
How can i alter code in IDA or hexeditor?

ZaiRoN
May 10th, 2007, 17:58
Quote:
How can i alter code in IDA or hexeditor?
Don't know which version of Ida are you using but it's possible. There should be a menu item named 'Patch program' somewhere in the edit menu. If you don't see the voice you have to enable it changing the configuration file. The answer is somewhere inside our board, just do some practice using the board search function and you'll reach the goal.
Altering the code using a hex editor is possible. The answer is somewhere in our faq, read our faq page and you'll surely find the answer to your newbie questions.

Good luck.

Deep Undercover
August 16th, 2007, 02:42
very good thank you

Nice and basic, which helps with understanding what is going on within the program.



[yAtEs]
August 16th, 2007, 06:04
yay i also managed it! its good to know im still a cracker

blaklite
April 28th, 2009, 12:29
V V easy, was my first ever without a tut now to move on to the next...

DENiSON
July 19th, 2009, 19:04
Open ollydbg
f9 to load crackme
back in ollybdg "search, all referenced text strings"
try the large number
"that is the correct serial"