Disclaimer: Please note, the information herein is copyright to Hellforge. No portion of this text may be duplicated. Furthermore, damage or problems arising after reading this text is left to the users disposal. Neither Hellforge, nor its members can be held responsible for any direct or indirect result of following this text. The full liability of following this text is on the reader (YOU). The information is provided for educational purposes, misuse of this information is strictly prohibited. If you do not agree with this agreement, then please hit the "back" button on your browser, and go to hell. - Mercution.
 

It is my first VB4 Crackme, I hope I am able to crack it...
 

This crackme was written in VB4, and i dunno any vb4 functions able to break under soft ice... So let's use another little vb trick. Edit your winice.dat, we will use the soft ice's AltF4 shortcut, by writing the line :


AF4="^s 0 l ffffffff 56,57,8b,7c,24,10,8b,74,24,0c,8b,4c,24,14,33,c0,f3,66,a7;"


Save the file and restart your computer...

Ok, now we'll be able to kick the ass of this crackme ! Enter your name and a fake serial, (seifer666/12345), put a bpx on hmemcpy and validate the serial. Soft Ice comes back, 25 % of our work is done ;) . Now, press F12 until u arrive under the vb4 dll (u can see its name at the bottom of sice window : VB40032.dll).

Clear the breakpoint (bc 0). We wil now search for the compare emplacement of the two serials. Press Alt+F4, you should see something like "search pattern found at 0187:0F79B348". We will put a bpx on this adress (bpx f79b348). Press F5 again, we break on this adress.

To get your serial, type dd esp, you should see four adresses like :
 
aaaaaaaa bbbbbbbb cccccccc dddddddd

Type d bbbbbbbb and u see in wide format :

1.2.3.4.5. <---- our serial

Type d cccccccc and u see in wide format :

B.I.S.H.O.P.-.C.R.K.M.E.2.-.1.5.3.1.
9.2.1.7.0.1.5.9.1.9.8.1.6.7.1.8.8.1.
7.4.1.7.8.1.7.5.1.7.4.1.8.7.1.2.7.1.
2.7.1.2.7.-.1.8.8.1.7.4.1.7.8.1.7.5.
1.7.4.1.8.7.1.2.7.1.2.7.1.2.7.   <---- our serial, kinda long

For each char of the name :
*Take each ascii code
*add 73 to it
*convert it to string
*put each ascii code into one string : strcode
*the serial is : "BISHOP-CRKME2-153192170159198167" + strcode + "-" + strcode

*************************************************************************************************
Private Sub Text1_Change()
Dim StrCode As String, i As Integer

If Text1.Text = "" Then
	Text2.Text = "Please enter your name !!"
	Exit Sub
End If

For i = 1 To Len(Text1.Text)
	StrCode = StrCode + CStr(Asc(Mid(Text1.Text, i, 1)) + 73)
Next i

Text2.Text = BISHOP-CRKME2-153192170159198167 + StrCode + "-" + StrCode

End Sub

*************************************************************************************************

Hey i'm happy, this is the first VB4 program I cracked, and it wasn't very difficult... The only difficulty with such programs is to find the algo, but by playing a little with the numbers, you should find it...