This time, i write in English, so that everyone can understand thiz shit...
Ok, what to crack? - A CrackMe - by Brad Soblesky [crackmes.cjb.net]
What do we need?
Win32Dasm and Hiew (a hexeditor) - they can be found on any cracking page
(especially tbc.tsx.org)
So, let's start this crackme...
Enter Registration Numer: ______________
Hmm, as we don't have the right registration number, we're gonna make the program believe that we have the right registration number...
So, make a backup of Crackme.exe and disasemmble it in Win32Dasm...
So, let's have a look at the String Data Reference...
What's that - "Incorrect try again!" hmm, looks familiar...
Let's double-click on it... now, we are here:
.
.
.
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00401595(C)
|
:004015AD 6A40 push 00000040
* Possible StringData Ref from Data Obj ->"CrackMe"
|
:004015AF 686C304000 push 0040306C
* Possible StringData Ref from Data Obj ->"Incorrect try again!!"
|
:004015B4 6874304000 push 00403074
:004015B9 8B4DE0 mov ecx, dowrd ptr [ebc-20]
.
.
.
Hmm, the Message "Incorrect try again!!" is called by a conditional jump at 00401595...
so, let's goto Code location 00401595:
* Reference To: KERNEL32.lstrcmpA, Ord:02FCh
|
:0040158D FF1500204000 Call dword ptr [00402000]
:00401593 85C0 test eax, eax
:00401595 7516 jne 004015AD <-- hmm, jump to the error message
:00401597 6A40 push 00000040
.
.
.
so, the jne jumps to the error messsage, if we entered the wrong serial...
let's n0pe it...
Fire up Hiew and load CrackMe.exe...
After that, goto the offset of the jump (1595) and change following things:
7516 to
9090
Save the File and start it... let's enter any serial number and... it's right!!!
So, you have cracked it... but this was a pretty easy crackme... watch out for harder ones!
Oh, to all crackerz: I know, you could also rip the right serial with SoftIce... but I think this way is the most easiest.. so why do more work than needed???
