Another tutorial by seifer666

How to crack Seven Kingdoms

Written by seifer666 for HellForge

06/29/2000

1)Introduction

This is a new tutorial on how to crack the cd-check protection of this strategy's game by Ubisoft :). If you run the game without the cd in the drive, One Player Game and Wall of Fame won't be available ! We will see that it isn't very difficult to repair this hehe.

Tools needed : *W32Dasm (or SoftIce)
	       *HexEditor (I use HexWorkShop)

2)The cracking

Dasm the 7k.exe file once the game is installed. Go in the imported functions and search the WinApi GetDriveTypeA (the more used one for games protection). Double-click on it, u should arrive at :

* Reference To: KERNEL32.GetDriveTypeA, Ord:00CEh
                                  |
:0053C59E FF1518D35800            Call dword ptr [0058D318]	;Calls the API
:0053C5A4 83F805                  cmp eax, 00000005		;Checks for CD in the drive
:0053C5A7 0F8525000000            jne 0053C5D2			;No CD ? jmp bad cracker

* Possible StringData Ref from Data Obj ->"D:\7K.EXE"
                                  |
:0053C5AD 6888FB5600              push 0056FB88
:0053C5B2 B9F0275700              mov ecx, 005727F0
:0053C5B7 E8D3D5FEFF              call 00529B8F
:0053C5BC 85C0                    test eax, eax			;Is the file D:\7K.EXE found ?
:0053C5BE 0F840E000000            je 0053C5D2			;No ? jmp bad cracker
:0053C5C4 8A45F8                  mov al, byte ptr [ebp-08]
:0053C5C7 8B4DF4                  mov ecx, dword ptr [ebp-0C]
:0053C5CA 884159                  mov byte ptr [ecx+59], al
:0053C5CD E905000000              jmp 0053C5D7			;Continues the game if good cracker

So what is this piece of crap looking for ?? It checks if the CD is in the drive and looks for itself on the cd-rom (D:\7K.exe). It is now very easy to kill those checks by nopping the two jumps :

jne 0053C5D2 -------> nop nop nop nop nop nop
je  0053C5D2 -------> nop nop nop nop nop nop

By patching this way, the game will run if the CD is in the drive or not !! Another one cracked !

3)Final words

Well I hope u understood this whole tutorial, it isn't very difficult, and u can try to crack the game even if it is ur first attempt in such crackings ;-).

I greet my groups : DQF, digital Factory, HellForge

and my friends (no specific order) : ACiD BuRN, BoomBox, BlndAngl, Lucifer48, Volatility, Tscube, Visionz, amante4, alpine, FatBoyJoe, Warez Pup, Eternal_bliss, r!sc, [mega], Sushi, MagicRaphoun, TaMaMbolo, Kahel,V-Rom, Ep-180, morrinth, Tres`ni, Dawai, DXF, CiniMod, xor, Air2k, grAnix, LordOfLa, karlitoXZ, [ManKind], Falcon^, Dazzler.... and all I've forgotten ;-)

This tutorial is dedicated to baie-d-or : she reverses everything in me :pp

seif' (shortened coz i'm so tired :) ) and HellForge

You can join me at seifer666@caramail.com or #ICQ : 61545376 ->"drive and try again" <-- so quickly