Reverse Engineering Team Board

Reverse Engineering Team Board (http://www.reteam.org/board/index.php)
-   Reverse Code Engineering (http://www.reteam.org/board/forumdisplay.php?f=23)
-   -   new reverse me!! (http://www.reteam.org/board/showthread.php?t=197)

sixty1 01-10-2005 07:27 PM
new reverse me!!
 
http://geekyhackers.com/trg/regme.rar

This one is a lil bit more complicated make the startup message show that its registered and find the right serial. Anyone wanna take a try?

:D
laatez

- sixty1

Crudd 01-10-2005 08:51 PM
Too simple. The regfile doesnt even need to contain any bytes, and the serial is in plain view.
Crudd [RET]

sixty1 01-10-2005 11:50 PM
waaat??? The serial isnt in plain view, Unless your saying plain view as when comparison when in the register. I dont know.

Crudd 01-12-2005 08:25 PM
Code:
UPX0:00401481 * * * * * * * * call * *sub_40946D * * * * * ; Serial routine? *Doesnt matter anyway :)

UPX0:00401486 * * * * * * * * add * * esp, 4 * * * * * * * ; EAX holds our serial after the call

UPX0:00401489 * * * * * * * * cmp * * eax, 0FA5A9C40h * * *; compare our serial with the correct serial (4200242240)

UPX0:0040148E * * * * * * * * pop * * esi

UPX0:0040148F * * * * * * * * push * *0

UPX0:00401491 * * * * * * * * push * *0

UPX0:00401493 * * * * * * * * jnz * * short loc_4014A8 * * ; jump if not correct serial (4200242240)

UPX0:00401495 * * * * * * * * push * *offset aHackThePlanet; "Hack the planet!"

UPX0:0040149A * * * * * * * * push * *offset aWowYourAPro *; "Wow your a pro!"

UPX0:0040149F * * * * * * * * push * *0

UPX0:004014A1 * * * * * * * * call * *ds:MessageBoxExA

UPX0:004014A7 * * * * * * * * retn
Crudd [RET]

sixty1 01-13-2005 04:41 PM
ahha
 
yep yep :)

rous 01-22-2005 07:45 AM
:lol:


All times are GMT -4. The time now is 11:30 AM.

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2022, Jelsoft Enterprises Ltd.