|
Tutorial to |
Ro.Wi.-Ownbase 1.0 |
NUKEM |
|
Download: http://www.elitereverser.net |
Download: http://www.winfiles.com |
Contact: nukem@elitereverser.net |
|
Easy (x) ___ Medium ( )___ Hard ( ) |
||
Install Ro.Wi.-Ownbase 1.0 and Run it.
At the start you`ll see the Registration Dialog.
Type your FakeSerial in it "121212" and press "Crtl+D"
Enter the breakpoint "bpx hmemcpy" "enter" "Crtl+D"
and you`ll be back in Ro.Wi.-Ownbase.
Now press the OK button and Softice pops up again.
Press one time F11 and 6 Times F12 to be in the Code of Ro.Wi.-Ownbase.
:00421646 5E pop esi // <=-- you be here
:00421647 5B pop ebx
:00421648 C3 ret // Return
Press 23 times F10 at :00421646 5E pop esi to trace over all returns. "ret"
Why ? , look at the stak of esi, ebx or at any adress before and you`ll find nothing.
After your 23 steps traced you`ll be landed here:
:004500F5 8B45FC mov eax, dword ptr [ebp-04]
:004500F8 50 push eax
:004500F9 8D55F8 lea edx, dword ptr [ebp-08]
:004500FC 8B83F0020000 mov eax, dword ptr [ebx+000002F0]
:00450102 E85971FDFF call 00427260
:00450107 8B55F8 mov edx, dword ptr [ebp-08]
:0045010A 58 pop eax
:0045010B E8783CFBFF call 00403D88 // Serial Routine "Step into
with F8"
:00450110 7578 jne 0045018A // If serial valid then Jump
:00403D88 53 push ebx
:00403D89 56 push esi
:00403D8A 57 push edi
:00403D8B 89C6 mov esi, eax // d eax shows your fake serial "121212"
:00403D8D 89D7 mov edi, edx // d edx shows the valid serial "98765621"
:00403D8F 39D0 cmp eax, edx // compare your serial and the valid serial
:00403D91 0F848F000000 je 00403E26
Yeah ok clear your breakpoint "bc*" and start Ro.Wi.-Ownbase again type 98765621
as serial into and press OK
and you`ll get the "Thanks for registration" Dialog.
© 2000 by NUKEM, http://www.elitereverser.net, nukem@elitereverser.net, proudly present by DBC, http://www.d-b-c.ch