þ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿þ ÛÛÛÛ ÛÛ ÛÛÛ ÛÛ ÛÛÛ ÛÛÛÛ ÛÛ ÛÛ ÛÛ ÛÛÛÛ ÛÛ ÛÛÛÛ ÛÛÛÛ ÛÛ Û ÛÛÛÛ ÛÛÛÛÛ ÛÛ Û Û Û Û Û Û Û Û Û Û Û ÛÛ Û ÛÛ Û ÛÛ ÛÛ Û Û ÛÛ Û Û ÛÛ Û ÛÛ ÛÛ ÛÛÛÛÛ ÛÛÛÛ ÛÛÛÛ ÛÛ Û ÛÛ Û ÛÛ Û Û Û Û ÛÛÛÛÛÛ Û Û ÛÛ Û Û Û Û ÛÛ ÛÛÛÛÛ ÛÛÛÛÛ Û Û ÛÛÛÛÛ ÛÛÛ Û Û ÛÛ ÛÛ Û ÛÛ ÛÛÛ Û ÛÛÛÛÛÛ ÛÛ Û ÛÛÛ Û ÛÛÛ Û Û ÛÛÛÛÛÛ Û Û Û ÛÛ ÛÛ Û Û Û ÛÛ ÛÛ ÛÛÛÛ ÛÛÛÛ ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Cracking Tutorial #30: CrAcKiNG Wine Label 3 by changing 6 bytes in the program [cracked bY:] sLeEpY¿[FWA/NWA/FTPR8Z] iN 05/2002 [difficulty:] beginner [where:] http://www.labelware.ca/winelabel.htm http://www.labelware.ca/ [tOOLz:] W32dasm 8.93 with dread vb sdr enabler patch, Hiew 6.1 ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Wine Label 3 R4 Version: 3.00.035 Lwldemo.exe is the Download file @ 6.92 meg, the exe is lblware.exe. A friend of a friend needed this cracked, so i guess hes my friend too, so lets crack this program. This is an example of how looks can be deceiving. This program is huge. 20.6 meg for the full templates and all crap or 6.92M for the smaller version. I'm on dialup again so its the smaller, i think the exe's are the same it just has more crap in the packaging, templates and stuff. Now at first i thought this was gonna be some tough protection with all the professional looking registration stuff.... Run the program and we get greeted with what looks to be a ton of armor. Try to disassemble the app in w32dasm and we get nothing cause it looks to be a VB app. We have a way around this with a w32dasm patch but first lets check out the nags: 1.Try this DEMO software FREE for 6 uses! 2. The DEMO has printing limitations: An "X" will be printed on 1/2 of all labels until you have paid for and received a KEY. 3. Nag at startup: Registration and other crap again. Click on the "Register now" button: Lock number = 87997685 Key Number = ????????? So your key is decided by the lock number. Well putting in the wrong key gives this error: Wine Label 3 The entered key is invalid. [OK] So lets run this patched version of w32dasm that can read VB apps Strings! Some info below so you know how to and what patch to find for w32dasm. | | W32Dasm Disassembled v1.01a 12/2000 | written by Harlequin | This patch is intended for W32Dasm v8.93 | (Filename W32Dsm89.exe) | 6. Dread'S VB SDR enabler: | Enables Visual Basic strings to be shown in W32Dasm, non VB | applications will work normally. | After we get a patched version (backup your original because the patch does screw up some regular progs disassembly) disassemble your program again and you will see these in the SDR window! I only pulled the ones that look like they might be important. ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì " ORDER BY " " Registration = " " registration" " Registration" "Date of Purchase = " "has been successfully registered." "Illegal character in code." "lablware.cfg" "Please enter a valid serial number " "Registration = " "registration" "Serial No. = " "The entered key is invalid." "This is an unregistered version. " "Wrong add-on code length." "Wrong code length." ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Let's trace from bad crap message backwards: ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì "The entered key is invalid." :00506D76 <-we get dropped here ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Look up or scroll up whatever till you find where this error message is jumped from. ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:00506D15(U) <-jumped from here, lets go find it (1) | ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì * Referenced by a (U)nconditional or (C)onditional Jump at Address: |:0050676D(C) <-a conditional jump, lets go there | : :lines of code : :00506CE5 0F8583010000 jne 00506E6E <-jumps to error with no msg =() : not what we want. :lines of code : :00506CF9 751C jne 00506D17 : :lines of code : :00506D15 EB0A jmp 00506D21 <-start here and go up (1) ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì :0050676B 85D2 test edx, edx :0050676D 0F845D050000 je 00506CD0 <-our deciding jump :00506773 C745FC0F000000 mov [ebp-04], 0000000F ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì Change this: :0050676D 0F845D050000 je 00506CD0 <-jump to crap if code is wrong (offset 10676D) To this: :0050676D 0F845D050000 jne 00506CD0 <-no jump, goto registered if code is wrong Or this: :0050676D 909090909090 nop <-never jump to bad message, register with any code ììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììììì After all that you can make a patch with any patchmaker, the one i used for this crack is called cogen and it uses TASM, pretty kool. Included is the patch source! CRC32 on the prog as well: D1C71A7B <-before patch ECC58793 <-after patch Later! ¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼¬½¼ email me if you are bored: sleepy@linuxwaves.com ._Tutorialz_. [-------------------------------------------------------------------------------] [ 1. Cracking Cosmi's Generic Installshield Protection ] [ 2. CRACKING(?) MATH WORKSHOP 2.0 ] [ 3. CrAcKiNG DLSuperCBT Resynchronizing Byte Compare Program ] [ 4. CrAcKiNG the nag on DLSuperCBF - Dir Binary File Compare Program ] [ 5. CrAcKiNG n)0(va crackme v3 (crazy approach) ] [ 6. CrAcKiNG mIRC(R) v5.91 Internet Relay Chat Client ] [ 7. CrAcKiNG Actionizer 1.4 ] [ 8. CrAcKiNG Tag Wizard 4.3.0 ] [ 9. CrAcKiNG Freecell for Win2k and WinXP ] [10. CrAcKiNG Netrace 1.0a ] [11. CrAcKiNG Winrar 3 Beta 2 THROUGHLY ] [12. CrAcKiNG Aditor Pro 3.05 build 1 ] [13. CrAcKiNG EasyType 1.0 ] [14. CrAcKiNG The Psychedelic Screen Saver v2002.0215 ] [15. CrAcKiNG Applet Headline Factory Version 4.0 ] [16. CrAcKiNG Codewhiz Editor Version 1.7 (build 1.01b) ] [17. CrAcKiNG iuVCR 4.0.0.205 beta5 Trial (R_02-28-2002) ] [18. CrAcKiNG The Weakest Link -NOCD- ] [19. CrAcKiNG Blowfish 2000 V2.3 by finding a valid serial ] [20. CrAcKiNG the CD Check in Tony Hawk Pro Skater 3 ] [21. CrAcKiNG DLL Show 4.7 bY Turning it Into its Own Keygen ] [22. CrAcKiNG Opera 6.01 bY making a valid serial and manually unpacking Aspack ] [23. CrAcKiNG Tickle 2.8 with w32dasm, & finding a valid serial with SI hmemcpy ] [24. CrAcKiNG AxMan 3.12 with a valid serial using softice Hmemcpy ] [25. CrAcKiNG Acid_Cool_178 Assembler Crackme01 using W32dasm ] [26. CrAcKiNG Mirc 6.1 bY finding a valid serial using Softice Hmemcpy ] [27. CrAcKiNG Bitmap to Icon 3.5 two ways with w32dasm & Softice ] [28. CrAcKiNG Power Edit 1.1 by unpacking UPX w/procdump and using w32dasm, then] [ finding a valid serial with Softice ] [29. CrAcKiNG Blackboard Encrypt 1.1 using w32dasm and resource hacker ] [30. CrAcKiNG Wine Label 3 by changing 6 bytes in the program ] ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ gReEtz: MiNioN, GreycZ, KlutCh, KiNgEr, MidNight, FWA, NWA, FTPiRatEz! HAR! BEASTFXP! This one was cracked on request from TJ. ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿ CopyLeft: __ ______ __ __ _ _____/ / ___ / ____/__\ \/ /(_) / ___/ / / _ \/ __/ / __ \ // / (__ ) /__/ __/ /___/ /_/ / / _/_ /____/_____|___/_____/ .___/_/\___/ /_/ [all rights reversed] Boredom causes crackers and babies. Visit http://zor.org/sleepy ¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿¿