Name      : MightyFax

Version   : 2.9q

Editor    : RKS Software

Target    : mf.exe

s/n saved: mf.ini

Tools     : Softice
	    Brain
	    Pen & Paper (old school ;)
	    
Cracker   : LW2000

Tutorial  : No.9

http://www.rkssoftware.com/


---
DISCLAIMER
For educational purposes only!
I hold no responsibility of the mis-used of this material!
---


Please excuse my poor english, its not my mother language....


1.      Launch MightyFax, a nag appears. There's an interesting button...
	'Enter Serial Number' *g*. Let's do so. 
	
2.	Name: LW2000
	Serial: 1230099
	*BOOM* You have entered an incorrect name and/or serial...
	Press OK. Wrong serial? Typical program bug ;)

3.	[Ctrl]+[d] to Softice and set a Breakpoint on Messagebeep:
	bpx messagebeep
	[F5] to retur to the application.

4.	Name: LW2000
	Serial: 1230099
	*BOOM* Softice pops up.
	[F11] to get the Caller.

0177:004B24A0  E8833BF5FF          CALL      USER32!MessageBeep
0177:004B24A5  B201                MOV       DL,01
0177:004B24A7  8B45F4              MOV       EAX,[EBP-0C]
0177:004B24AA  E805FBFFFF          CALL      004B1FB4
0177:004B24AF  8B45F4              MOV       EAX,[EBP-0C]
0177:004B24B2  8B80B0010000        MOV       EAX,[EAX+000001B0]

5. Scroll up till you see:

0177:004B242B  8B4DF8       MOV      ECX,[EBP-08]
0177:004B242E  8B55FC       MOV      EDX,[EBP-04]
0177:004B2431  E872770000   CALL     004B9BA8 <- doubleclick on this line
0177:004B2436  84C0         TEST     AL,AL
0177:004B2438  7464         JZ       004B249E
0177:004B243A  6A00         PUSH     00

Type 'bd 0'.

Press [F5] to return to app.

6. 	Next try...
	Name: LW2000
	Serial: 1230099
	Press OK.

	*BOOM* Softice breaks on our line *g*

7.	Let's look what we've got:
	'd eax' nothing important
	'd ebx' nothing important
	'd ecx' WHAT THE HELL IS THIS??? *g*

Take a look on the Data Window!!!!

We see there our dummy serial (1230099), our Name (LW2000).
Mhmm, then 'RKS-1230099' [remeber RKS is the Editor... *g*]
But we've got more! 2478645 (mhmm, look interesting), then RKS-2478645.
And RKS-2142351. Looks like we've found the serials...

Ok, so check it out!

Name: LW2000
Serial: RKS-2478645
Press OK.

*BOOM* Serial Number Accepted!

8.   6 minutes till here, i love stupid software =)

     RKS-2142351 works, too. You can try it yourself, simply del the
     serial in the MF.ini under [Registration32], and enter the
     new details in the dialog. Or change the ini...  ;)


Congratulation! You are a registered user!

FINISH! Easy, or?

cu LW2000
Any comments? Mail me LW2000@gmx.net !!!
----
tKC, thx for your tutors!
I started with tutor 1 and i still read them... they are the best!