Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > Reverse Code Engineering
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
Thread Tools Display Modes
  #1  
Old 04-14-2011, 03:14 PM
raif raif is offline
Junior Member
 
Join Date: Jul 2010
Posts: 4
Default Sentinel HASP Key

Hello There,

This is the first time i stuck such a position,
I couldnt understand which type dongle im using.

Shape look like HASP/Hardlock
Whenever i plug to i can see "Sentinel HASP Key" under the Universal Seris Bus Controllers



I can dump dongle with TORO's dumper (h5dmp.exe)

Whenever i trigger application to read dongle
Code:
==================================================================

2011/04/13  09:38:29.234	 <== Application: sysm.exe

2011/04/13  09:38:29.234	 <== InitPacket: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.296	 ==> InitPacket: Status = 0x00

==================================================================

2011/04/13  09:38:29.359	 <== Application: sysm.exe

2011/04/13  09:38:29.359	 <== HaspGeneration: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.421	 ==> HaspGeneration: P1 = 0x01, P2 = 0x01, P3 = 0xEA

2011/04/13  09:38:29.421	 ==> HaspGeneration - HASP4 is connected.

2011/04/13  09:38:29.421	 ==> HaspGeneration: Status = 0x00

==================================================================

2011/04/13  09:38:29.484	 <== Application: sysm.exe

2011/04/13  09:38:29.484	 <== HaspID: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.546	 ==> HaspID: ID = 0x52769C54

2011/04/13  09:38:29.546	 ==> HaspID: Status = 0x00

==================================================================

2011/04/13  09:38:29.609	 <== Application: sysm.exe

2011/04/13  09:38:29.609	 <== HaspStatus: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.671	 ==> HaspStatus: P1 = 0x01, P2 = 0x01, P3 = 0x01

2011/04/13  09:38:29.671	 ==> HaspStatus - HASP4 - M1

2011/04/13  09:38:29.671	 ==> HaspStatus: Status = 0x00

==================================================================

2011/04/13  09:38:29.734	 <== Application: sysm.exe

2011/04/13  09:38:29.750	 <== Hasp4_ID (Time): Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.796	 ==> Hasp4_ID (Time): ID = 0x10001

2011/04/13  09:38:29.812	 ==> Hasp4_ID (Time): Status = 0x35

==================================================================

2011/04/13  09:38:29.859	 <== Application: sysm.exe

2011/04/13  09:38:29.875	 <== HaspGeneration: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:29.921	 ==> HaspGeneration: P1 = 0x01, P2 = 0x01, P3 = 0xEA

2011/04/13  09:38:29.937	 ==> HaspGeneration - HASP4 is connected.

2011/04/13  09:38:29.937	 ==> HaspGeneration: Status = 0x00

==================================================================

2011/04/13  09:38:30.000	 <== Application: sysm.exe

2011/04/13  09:38:30.000	 <== HaspID: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.046	 ==> HaspID: ID = 0x52769C54

2011/04/13  09:38:30.046	 ==> HaspID: Status = 0x00

==================================================================

2011/04/13  09:38:30.109	 <== Application: sysm.exe

2011/04/13  09:38:30.125	 <== HaspStatus: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.171	 ==> HaspStatus: P1 = 0x01, P2 = 0x01, P3 = 0x01

2011/04/13  09:38:30.187	 ==> HaspStatus - HASP4 - M1

2011/04/13  09:38:30.187	 ==> HaspStatus: Status = 0x00

==================================================================

2011/04/13  09:38:30.234	 <== Application: sysm.exe

2011/04/13  09:38:30.250	 <== NetStatus: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.296	Failed: status = 234

2011/04/13  09:38:30.296	 ==> NetStatus: Status = 0x00

==================================================================

2011/04/13  09:38:30.359	 <== Application: sysm.exe

2011/04/13  09:38:30.375	 <== HaspHL_GetSize: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.421	 ==> HaspHL_GetSize: Memory size = 0x80 (128)

2011/04/13  09:38:30.421	 ==> HaspHL_GetSize: Status = 0x00

==================================================================

2011/04/13  09:38:30.484	 <== Application: sysm.exe

2011/04/13  09:38:30.500	 <== HaspHL_read: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.515	 <== HaspHL_read: Adress = 0x38, Length = 0x10

2011/04/13  09:38:30.546	 ==> HaspHL_read: Data = 

2011/04/13  09:38:30.562	

  57 42 50 54 | 01 00 00 00 | 10 00 00 00 | 00 00 28 B1 	[WBPT..........(.]



2011/04/13  09:38:30.578	 ==> HaspHL_read: Status = 0x00

==================================================================

2011/04/13  09:38:30.609	 <== Application: sysm.exe

2011/04/13  09:38:30.625	 <== HaspHL_logout: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)

2011/04/13  09:38:30.671	 ==> HaspHL_logout: Status = 0x04
Im using Vusb emulator..Its only emulates HASP Key and USB Key its not emulating Sentinel HASP Key

In that case emulating dongle respond software like that
Code:
==================================================================
2011/04/14  19:12:20.375	 <== Application: sysm.exe
2011/04/14  19:12:20.375	 <== InitPacket: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:20.437	 ==> InitPacket: Status = 0x00
==================================================================
2011/04/14  19:12:20.500	 <== Application: sysm.exe
2011/04/14  19:12:20.500	 <== HaspGeneration: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:20.562	 ==> HaspGeneration: P1 = 0x01, P2 = 0x01, P3 = 0x0A
2011/04/14  19:12:20.562	 ==> HaspGeneration - HASP4 is connected.
2011/04/14  19:12:20.562	 ==> HaspGeneration: Status = 0x00
==================================================================
2011/04/14  19:12:20.625	 <== Application: sysm.exe
2011/04/14  19:12:20.625	 <== HaspID: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:20.687	 ==> HaspID: ID = 0x52769C54
2011/04/14  19:12:20.687	 ==> HaspID: Status = 0x00
==================================================================
2011/04/14  19:12:20.750	 <== Application: sysm.exe
2011/04/14  19:12:20.750	 <== HaspStatus: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:20.812	 ==> HaspStatus: P1 = 0x01, P2 = 0x01, P3 = 0x01
2011/04/14  19:12:20.812	 ==> HaspStatus - HASP4 - M1
2011/04/14  19:12:20.812	 ==> HaspStatus: Status = 0x00
==================================================================
2011/04/14  19:12:20.875	 <== Application: sysm.exe
2011/04/14  19:12:20.875	 <== Hasp4_ID (Time): Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:20.937	 ==> Hasp4_ID (Time): ID = 0x10001
2011/04/14  19:12:20.937	 ==> Hasp4_ID (Time): Status = 0x35
==================================================================
2011/04/14  19:12:21.000	 <== Application: sysm.exe
2011/04/14  19:12:21.000	 <== HaspHL_logout: Pass1 = 0x220D (8717), Pass2 = 0x7484 (29828)
2011/04/14  19:12:21.062	 ==> HaspHL_logout: Status = 0x04
Any idea solve this issue :?
Reply With Quote
  #2  
Old 04-14-2011, 06:59 PM
foffa foffa is offline
Senior Member
 
Join Date: Jul 2007
Location: %TEMP%
Posts: 344
Default

Hi
in emu reg file change type to 0xEA

and may be reg need some modification too
Reply With Quote
  #3  
Old 04-18-2011, 07:16 AM
butaktelco butaktelco is offline
Senior Member
 
Join Date: Feb 2008
Posts: 71
Default

Hasp HL Rev 0325 ---New Firmware For HASP SRM
your dongle its HASP SRM
Reply With Quote
  #4  
Old 04-18-2011, 10:56 AM
nodongle nodongle is offline
Senior Member
 
Join Date: Oct 2007
Posts: 301
Default

Yes, HASP SRM type.
But seems it using in HASP4/HL compatibility mode only.
__________________
nodongle.biz
Reply With Quote
  #5  
Old 04-19-2011, 05:06 AM
raif raif is offline
Junior Member
 
Join Date: Jul 2010
Posts: 4
Default

Dumps can be found following link
https://rapidshare.com/files/458141684/hasp.rar

i used h5dmp and h6dmp
Pls check screenshoot for dumper result
both of them talking about HL and SRM found in dongle



I couldnt understand why unidumptoreg1b5 creates
Code:
"Data"=hex:\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF
According to logger
at DATA section, it should be different

Reply With Quote
  #6  
Old 04-19-2011, 09:25 AM
nodongle nodongle is offline
Senior Member
 
Join Date: Oct 2007
Posts: 301
Default

You can add last 16 bytes to "Data" section yourself.
It is "sign" of HASP HL memory: 57 42 50 54 ... 28 B1
__________________
nodongle.biz
Reply With Quote
  #7  
Old 04-19-2011, 10:02 AM
lostdongle lostdongle is offline
Member
 
Join Date: Apr 2011
Posts: 16
Send a message via MSN to lostdongle Send a message via Skype™ to lostdongle
Default

raif
Your dongle has SRM firmware, but your software uses HL api and possible it also use SRM api too. Hasp HL looger cant show SRM api calls - you must use UsbTrace. Make a log of running a program using UsbTrace and show it to me in PM or e-mail. Then I am 100% able to tell you what api is used and whether there is the possibility of emulating your key with public solutions.

How to use UsbTrace
__________________
www.lostdongle.com
Reply With Quote
  #8  
Old 04-19-2011, 10:16 AM
raif raif is offline
Junior Member
 
Join Date: Jul 2010
Posts: 4
Default

i changed data block like that

Code:
"Data"=hex:\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
57,42,50,54,01,00,00,00,10,00,00,00,00,00,28,B1,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00


Now i have emulated dongle with ! mark
But it works...i think i need little tweak

Thx nodongle ! Helpfull remarks
Reply With Quote
  #9  
Old 04-19-2011, 10:28 AM
lostdongle lostdongle is offline
Member
 
Join Date: Apr 2011
Posts: 16
Send a message via MSN to lostdongle Send a message via Skype™ to lostdongle
Default

Quote:
Originally Posted by raif View Post
i changed data block like that

Code:
"Data"=hex:\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
57,42,50,54,01,00,00,00,10,00,00,00,00,00,28,B1,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00
- this is wrong

must be:

Code:
"Data"=hex:\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,FF,\
57,42,50,54,01,00,00,00,10,00,00,00,00,00,28,B1
__________________
www.lostdongle.com
Reply With Quote
  #10  
Old 04-19-2011, 12:01 PM
raif raif is offline
Junior Member
 
Join Date: Jul 2010
Posts: 4
Default

ok miss count
16x8 row 128

every body makes mistake :P
Reply With Quote
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump





Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.