home *** CD-ROM | disk | FTP | other *** search
/ Cracking 2 / Cracking II..iso / Texty / crackme / phox_crackme2.txt < prev    next >
Encoding:
Text File  |  2000-01-24  |  2.4 KB  |  51 lines
  1. Phox Crackme 2
  2. --------------
  3.  
  4. This one wasn't so hard either,
  5. First off start the crackme and enter a junk serial, i entered '11223344'
  6. and set a breakpoint on MessageBoxA , press the OK button and you'll land
  7. here:
  8.  
  9. :004011E8  E86C000000          CALL    USER32!MessageBoxA
  10. :004011ED  33C0                XOR     EAX,EAX
  11. :004011EF  5E                  POP     ESI
  12. :004011F0  5F                  POP     EDI
  13. :004011F1  5B                  POP     EBX
  14. :004011F2  C9                  LEAVE
  15. :004011F3  C21000              RET     0010
  16.  
  17. scroll up a bit and you'll see
  18.  
  19. :0040119B  837D1020            CMP     DWORD PTR [EBP+10],20
  20. :0040119F  754C                JNZ     004011ED
  21. :004011A1  FF354C204000        PUSH    DWORD PTR [0040204C]
  22. :004011A7  E89B000000          CALL    USER32!GetWindowTextLengthA ; get the length of our entered serial
  23. :004011AC  A3E9204000          MOV     [004020E9],EAX
  24. :004011B1  8BF0                MOV     ESI,EAX                     ; ESI = length of our serial
  25. :004011B3  83FE0C              CMP     ESI,0C                      ; Compare ESI with 0Ch (12)
  26. :004011B6  751E                JNZ     004011D6                    ; Jump if length isn't 12 chars
  27. :004011B8  6A30                PUSH    30
  28. :004011BA  6891204000          PUSH    00402091                    ; else push the 'Nice Job' stuff
  29. :004011BF  6897204000          PUSH    00402097
  30. :004011C4  FF3548204000        PUSH    DWORD PTR [00402048]
  31. :004011CA  E88A000000          CALL    USER32!MessageBoxA          ; and show it
  32. :004011CF  5E                  POP     ESI
  33. :004011D0  5F                  POP     EDI
  34. :004011D1  5B                  POP     EBX
  35. :004011D2  C9                  LEAVE
  36. :004011D3  C21000              RET     0010
  37. :004011D6  6A30                PUSH    30
  38. :004011D8  68ED204000          PUSH    004020ED                    ; push the bad box
  39. :004011DD  68FB204000          PUSH    004020FB
  40. :004011E2  FF3548204000        PUSH    DWORD PTR [00402048]
  41. :004011E8  E86C000000          CALL    USER32!MessageBoxA          ; show it
  42. :004011ED  33C0                XOR     EAX,EAX
  43. :004011EF  5E                  POP     ESI
  44. :004011F0  5F                  POP     EDI
  45. :004011F1  5B                  POP     EBX
  46. :004011F2  C9                  LEAVE
  47. :004011F3  C21000              RET     0010
  48.  
  49. well, all you have to do is enter 12 chars as the serial number..
  50. ---
  51. /Klefz