Cracking Tutorial #31:
CrAcKiNG WinRescue XP 1.07.06 with a hardcoded serial
[cracked bY:] sLeEpY¿[FWA/NWA/FTPR8Z] iN 05/2002
[difficulty:] beginner
[where:] http://superwin.com/
http://superwin.com/frescuex.htm
[tOOLz:] W32dasm 8.93, Hiew 6.1
WinRescue XP 1.07.06 5/14/2002
Hey startup and a nice timer you have to wait on a crappy looking nag screen before
you can continue using this piece of crap shareware. Jeez at least make the nag look
nice, no matter, time to get rid of it!
Put in you BS key and click continue, did you guess it?
NO? me either, All i won was this crap prize:
WinRescue XP
WARNING - Incorrect Key Entered
WinRescue may be used without entering a Key
WinRescue Terminating.
[OK]
I guess the author wanted to make sure you knew his app was called WinRescue.
Well lets crack this overcharging piece of junk. $29.99? sheeeeeeeeit
Anyway disassembled we see this in the SDR: "WARNING - Incorrect Key Entered" so double
click it and we land here and nowhere else:
:004B32AD
Lets open the code surrounding it:
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004B327E(C) <-jumped from here, lets go check it out..
|
* Possible StringData Ref from Code Obj ->"WARNING - Incorrect Key Entered"
:004B32AD B8B4334B00 mov eax, 004B33B4
004B327E 742D je 004B32AD <-our bad jump
Open up the code around it and you find something that all crackers love!
A Hard-coded reg key! MWAHAHAHAHA
* Possible StringData Ref from Code Obj ->"jabeZ4:9-10" <--Hmmm
004B3272 B858334B00 mov eax, 004B3358
004B3277 E8941DF5FF call 00405010
004B327C 85C0 test eax, eax
004B327E 742D je 004B32AD <-jump to crap
004B3280 33D2 xor edx, edx
004B3282 8B8304030000 mov eax, dword ptr [ebx+00000304]
004B3288 E8379EF9FF call 0044D0C4
* Possible StringData Ref from Code Obj ->"Registration Key Accepted"
So lets run the prog and as the registration key put in jabeZ4:9-10 and allright, we
are regged!
email me if you are bored: sleepy@linuxwaves.com
._Tutorialz_.
[ 1. Cracking Cosmi's Generic Installshield Protection ]
[ 2. CRACKING(?) MATH WORKSHOP 2.0 ]
[ 3. CrAcKiNG DLSuperCBT Resynchronizing Byte Compare Program ]
[ 4. CrAcKiNG the nag on DLSuperCBF - Dir Binary File Compare Program ]
[ 5. CrAcKiNG n)0(va crackme v3 (crazy approach) ]
[ 6. CrAcKiNG mIRC(R) v5.91 Internet Relay Chat Client ]
[ 7. CrAcKiNG Actionizer 1.4 ]
[ 8. CrAcKiNG Tag Wizard 4.3.0 ]
[ 9. CrAcKiNG Freecell for Win2k and WinXP ]
[10. CrAcKiNG Netrace 1.0a ]
[11. CrAcKiNG Winrar 3 Beta 2 THROUGHLY ]
[12. CrAcKiNG Aditor Pro 3.05 build 1 ]
[13. CrAcKiNG EasyType 1.0 ]
[14. CrAcKiNG The Psychedelic Screen Saver v2002.0215 ]
[15. CrAcKiNG Applet Headline Factory Version 4.0 ]
[16. CrAcKiNG Codewhiz Editor Version 1.7 (build 1.01b) ]
[17. CrAcKiNG iuVCR 4.0.0.205 beta5 Trial (R_02-28-2002) ]
[18. CrAcKiNG The Weakest Link -NOCD- ]
[19. CrAcKiNG Blowfish 2000 V2.3 by finding a valid serial ]
[20. CrAcKiNG the CD Check in Tony Hawk Pro Skater 3 ]
[21. CrAcKiNG DLL Show 4.7 bY Turning it Into its Own Keygen ]
[22. CrAcKiNG Opera 6.01 bY making a valid serial and manually unpacking Aspack ]
[23. CrAcKiNG Tickle 2.8 with w32dasm, & finding a valid serial with SI hmemcpy ]
[24. CrAcKiNG AxMan 3.12 with a valid serial using softice Hmemcpy ]
[25. CrAcKiNG Acid_Cool_178 Assembler Crackme01 using W32dasm ]
[26. CrAcKiNG Mirc 6.1 bY finding a valid serial using Softice Hmemcpy ]
[27. CrAcKiNG Bitmap to Icon 3.5 two ways with w32dasm & Softice ]
[28. CrAcKiNG Power Edit 1.1 by unpacking UPX w/procdump and using w32dasm, then]
[ finding a valid serial with Softice ]
[29. CrAcKiNG Blackboard Encrypt 1.1 using w32dasm and resource hacker ]
[30. CrAcKiNG Wine Label 3 by changing 6 bytes in the program ]
[31. CrAcKiNG WinRescue XP 1.07.06 with a hardcoded serial ]
gReEtz: MiNioN, GreycZ, KlutCh, KiNgEr, MidNight, FWA, NWA, FTPiRatEz! HAR! BEASTFXP!
This one was cracked on request from TJ.
CopyLeft:
sLeEpY¿
[all rights reversed]
Boredom causes crackers and babies.
Visit http://zor.org/sleepy