TNT!CRACK!TEAM! ---> HTML TUTORIALS ---> http://kickme.to/tnt

007 STARR v1.22 A Typical Patch Best view 1024 X 768

by FaT[BiT] \ TNT!

Cracking For Beginners

Program Info Program Name : starrcmd.exe Program Type : Key Logger Program Location : http://www.iopus.com Program Size : 381KB

ToolZ : W32Dasm v8.93 Hiew v6.16

Easy ( X ) Medium ( ) Hard ( ) Pro ( )

007 STARR v1.22
Cracked and Written by : FaT[BiT] \ TNT!
Tutorial No. : 4

Introduction

HI THERE !!
PLEASE EXCUSE MY POOR ENGLISH !!!
THIS IS _ONLY_ FOR NEWBIES
As my friend Sir dReAm said " if you are an advanced cracker and you want to read this then you are really wasting your time "

Protection

This program needs a Registration Code !! , to be fully Registered !! . Now in this Tutorial we will patch the exe file to make it take any serial we enter , so let's get movin' , this is a short and easy tutorial !!!

The Essay

Run Starr and try to enter any serial or Registration Code , click on register and *boom* , there you go our nasty error message , so you know what to do , yes copy the file starrcmd.exe to win32dasm Dir. and dasm the file , after win32dasm finish , click on the SDR button and look for our error message , but wait !!! do u see what i see !! , There is out thank you message also , yes look harder , count 7 statement down from our error message and there you have it , it says "Your 007 STARR registration was.." , click on it , and scroll up a little bit and you will see this code :

:0040844F FFD7             call edi
:00408451 85C0             test eax, eax
:00408453 7571             jne 004084C6<-- THE GOOD BOY JUMP :)
:00408455 6A40             push 00000040
:00408457 53               push ebx

* Possible StringData Ref from Data Obj ->"Your 007 STARR registration was "
->"successful - Thank you ! "

:00408458 68F0F94200       push 0042F9F0
:0040845D 8BCE             mov ecx, esi
:0040845F E8FA190100       call 00419E5E

* Possible StringData Ref from Data Obj ->"REGISTERED VERSION"

:00408464 684CD44200 push 0042D44C
:00408469 8D8E54010000 lea ecx, dword ptr [esi+00000154]

Now.. Do i have to explain !!!! , if we follow the jump at address 00408453 it will take us to our error message , so if we patched it !!! then it will not !!! and STARR will Be REGISTERED .

The Patch

O.k run Hiew and load the file starrcmd.exe , go to the address 00408453 , now we have two ways to patch this code either change the jump if not equal to jump if equal , or NOP it . in the first way if we changed the jump not equal to jump equal , then STARR will not take the correct registration code , so i will do the seconed way .

Now we are gona NOP the jump , so we are at the address 00408453 , press F3 , and enter 9090 , then press F9 for update and exit hiew , now copy the file back to it's installed folder and run it , kool !!! , go to register and enter any code you want and yes yes yes yes !!!!

007 STARR is REGISTERED

Final Words

O.k there you have it , i hope you have enjoyed this tutorial as much as i did writing it !! , and cya in another tutorial !!!
FaT[BiT]_FaTsO GreetZ :

tKC ( you really Showed use the LIGHT !!! thanx alot )
LW2000 ( Thanx !!! i now use my brain !!)
Xasx (Hola !! the Best founder ever)
Sir_dReAm ( Nice CrackME !!! )
Bonez (Thanx for the support !! )

and to all TNT!CRACK!TEAM! members

cya FaT[BiT] \ TNT!