Hi everyone.

I'm trying to backup my dongle SRM everything is OK except that I can't get the Vendor AES. and I can't dump the EXE file. it's always corrupted. the software name is t-r-i-m-b-l-e ____ b-u-s-i-n-e-s-s ____ c-e-n-t-e-r.

Please I need help to extract the vendor AES

He use new envelope with section name .AKS?

Well I dumped the exe file with (Process Explorer) and scanned the file with VID Tool to extract the AES but I think the resault is encrypted as it didn't work.

Any help please or advice on how to extract the AES knowing the I've dumped the exe file successfully.

As I know, this software works via dynamic-link library hasp_windows_XXXXX.dll (XXXXX - the vendor's number). Look this file in the application's folder. But this file from the new Sentinel HL API and Vendor AES key is encrypted by whitebox AES. Unfortunately, I think that public solutions are not suitable for this protection.

it's not a public solution. I just got the emulator that was published on lavteam.net and i got the dumper from the dongle author which is working perfectly with the emulator except for getting the vendor AES.

TBC new versions have 2-layer protection:
1. using wbaes hasp_windows dll + checking hash of the dll
2. checking hasp key via internal query/answer tables

It can be easily bypassed by correct emulator :)

Redirect crc check to original vendor dll. And if tables inside you need do and put in emulator.
That's all.

Lavteam full of copy cat cheaters....

Hello!
nodongle:
Can You explain what is "checking hash of the dll"?
What will be wrong when I remove .protect section and reconstract IAT&reloc (only import, export is correct).
I didn't find hasp_windows dll in my folder, it's CPM.
My dll don't work after reconstraction. Now it change other dll...
Thanks!

if have dongle solution is 100% possible, not public free available.