View previous topic :: View next topic |
Author |
Message |
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 3:24 pm Post subject: |
|
|
Well yeah it's kinda like that code
I tried cracking it myself but I couldn't find my password I set
_________________
|
|
Back to top |
|
|
pimpstonie Advanced Cheater Reputation: 0
Joined: 27 Sep 2007 Posts: 70
|
Posted: Wed Dec 19, 2007 3:34 pm Post subject: |
|
|
I found 6 variables, not sure how they go in the textboxs. =(
Trying to figure out how to use Olly lol.
|
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 3:36 pm Post subject: |
|
|
Yea I found 6 too, although there aren't any clues that I could find
_________________
|
|
Back to top |
|
|
pimpstonie Advanced Cheater Reputation: 0
Joined: 27 Sep 2007 Posts: 70
|
Posted: Wed Dec 19, 2007 4:00 pm Post subject: |
|
|
Did you store it in the registry? o.0
|
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:09 pm Post subject: |
|
|
No
It's a normal crackme:
If something.text = whatever And something.text = whatever then
msgbox
else
msgbox
end if
Although I did put a twist in it...
(Btw, it is possible, there is a password that works)
_________________
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
Posted: Wed Dec 19, 2007 4:20 pm Post subject: |
|
|
Box 1: jjep
Box 2: iHih
Box 3: idjpi
The twist? Theres random strings that might be used when encrypting what is expected if thats the case. Other then that, you check the boxes in a different order then most will think as well. Box 3 -> 1 -> 2
Either way, break point on _vbaStrCmp, check the params, done.
_________________
- Retired. |
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:21 pm Post subject: |
|
|
What did you use to get it?
I tried getting it myself with Olly but I couldn't
And yeah, the twist was that I switched the order of the boxes. I put those random strings in there so people can read the message and think it's the password
_________________
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
Posted: Wed Dec 19, 2007 4:23 pm Post subject: |
|
|
I used Olly. Worked fine.
_________________
- Retired. |
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:26 pm Post subject: |
|
|
Oops, I meant to say the steps
Unless this was it:
Code: | break point on _vbaStrCmp, check the params, done |
_________________
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
Posted: Wed Dec 19, 2007 4:30 pm Post subject: |
|
|
Yea that was basically it. VB apps use the MSVBVM60.dll calls when they do basic string things such as the compares of
Code: | If Text1.Text = "This" Then |
And so on. So you just look for the calls to that function. In this case the first call for the first check (box 3) is:
Code: | 00402095 . FF15 40104000 CALL DWORD PTR DS:[<&MSVBVM60.__vbaStrCm>; MSVBVM60.__vbaStrCmp |
Just before that is the creation of the string thats being compared against. I'm not sure what you are doing exactly to create the string to compare, but from what it looks, it's not just a static string. I would assume you are splitting words using Mid() or Split(), but can't guarantee that. Further down from the above func is the rest:
Second box check(box 1):
Code: | 004020DF . FF15 40104000 CALL DWORD PTR DS:[<&MSVBVM60.__vbaStrCm>; MSVBVM60.__vbaStrCmp |
Again, just before is the creation of the string being checked.
And last:
Code: | 0040211A . FF15 40104000 CALL DWORD PTR DS:[<&MSVBVM60.__vbaStrCm>; MSVBVM60.__vbaStrCmp |
_________________
- Retired. |
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:33 pm Post subject: |
|
|
Hmm ok, I'll remember that (Even though I don't understand some of it)
_________________
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:36 pm Post subject: |
|
|
Kk, really simple though:
Code: | Private Sub cmdCrack_Click()
Dim Password As String
Dim Password2 As String
Dim Password3 As String
Dim Blag As String
Dim Blam As String
Dim Arfg As String
Dim Zip As String
Dim Bla As String
Dim Der As String
Dim Fake As String
Dim Fake2 As String
Dim Fake3 As String
Password = "ZOMG"
Blam = "i"
Fake = "Blader"
Bla = "d"
Password2 = "Hi"
Blag = "h"
Fake2 = "Pwns"
Arfg = "p"
Password3 = "NOOO"
Zip = "j"
Der = "e"
Fake3 = "Everyone"
If txt1.Text = Blam & Bla & Zip & Arfg & Blam And txt2.Text = Zip & Zip & Der & Arfg And txt3.Text = Blam & Password2 & Blag Then
MsgBox "You have cracked it woot! =D", vbOKOnly, "Cracked"
Else
MsgBox "You lose, try again", vbOKOnly, "Fail"
End If
End Sub |
_________________
|
|
Back to top |
|
|
pimpstonie Advanced Cheater Reputation: 0
Joined: 27 Sep 2007 Posts: 70
|
Posted: Wed Dec 19, 2007 4:41 pm Post subject: |
|
|
If your a clean freak at code, you can do this:
Code: | Dim Password, Password2, Password3 As String
Dim Blag, Blam, Arfg, Zip, Bla, Der, Fake, Fake2, Fake3 As String |
I am kinda a clean freak. When your coding something big, you want all the clutter formal.
|
|
Back to top |
|
|
Blader I post too much Reputation: 2
Joined: 19 Jan 2007 Posts: 2049
|
Posted: Wed Dec 19, 2007 4:43 pm Post subject: |
|
|
pimpstonie wrote: | If your a clean freak at code, you can do this:
Code: | Dim Password, Password2, Password3 As String
Dim Blag, Blam, Arfg, Zip, Bla, Der, Fake, Fake2, Fake3 As String |
I am kinda a clean freak. When your coding something big, you want all the clutter formal. |
Yes I know you can do that.
I did it separately so it *might* confuse the person who is going to crack it, but that doesn't seem much of a difference.
_________________
|
|
Back to top |
|
|
|