downloadbrowsecoffeebean's cbeans kgm 1

Download cbean__s_kgm_#1.zip, 58 kb (password: crackmes.de)
Browse contents of cbean__s_kgm_#1.zip

It's easy, however, it needs a little preliminary work. ;)

Difficulty: 3 - Getting harder
Platform: Windows
Language: Assembler

Published: 27. Dec, 2009
Downloads: 2165

Rating

Votes: 3
Crackme is boring.

Rate this crackme:

Send a message to coffeebean »

View profile of coffeebean »

Solutions

Solution by draww, published 09. jan, 2010; download (9 kb), password: crackmes.de or browse.

draww has rated this crackme as boring.

Submit your solution »

Discussion and comments

BLODYALBO
30. Dec 2009
name:orhan
serial:f4355-76ad-4a1a-bbe3-f72
MaxOn
30. Dec 2009
This crackme don't match his Difficulty. First, i set breakpoint at offset 403C74(its address on my computer). On this address is function wsprintf. Its generated true
serial number.Function at offset 00403CB5 receives the written serial number. The next function,lstrlenA , compare size of true serial number and size of written serial
number. And if strings are equal , programm call lstrcmpA, for compare two string. Its patched code:
00403CA6 . PUSH 7F ;
00403CA8 PUSH cbean's_.004050DC
00403CAD PUSH 3EA
00403CB2 PUSH DWORD PTR SS:[EBP+8]
00403CB5 CALL <JMP.&user32.GetDlgItemTextA>
00403CBA PUSH cbean's_.004050DC
00403CBF CALL <JMP.&kernel32.lstrlenA>
00403CC4 MOV DWORD PTR DS:[40515C],EAX
00403CC9 PUSH cbean's_.00405160
00403CCE CALL <JMP.&kernel32.lstrlenA>
00403CD3 CMP EAX,DWORD PTR DS:[40515C]
00403CD9 NOP
00403CDA NOP
00403CDB NOP
00403CDC NOP
00403CDD NOP
00403CDE NOP
00403CDF PUSH cbean's_.004050DC
00403CE4 PUSH cbean's_.00405160
00403CE9 CALL <JMP.&kernel32.lstrcmpA>
00403CEE NOP
00403CEF NOP
00403CF0 NOP
00403CF1 NOP
00403CF2 MOV DWORD PTR DS:[40500B],0AFF85
00403CFC PUSH 1
00403CFE PUSH 0
00403D00 PUSH 0
00403D02 PUSH DWORD PTR SS:[EBP+8]
00403D05 CALL <JMP.&user32.RedrawWindow>
00403D0A JMP cbean's_.00403DBF
00403D0F CMP DWORD PTR SS:[EBP+10],3EC
00403D16 JNZ cbean's_.00403DBF

TRUE SERIAL NUMBER IS: e91fb-4d81-4202-ac7f-a20
kilobyte.asm
31. Dec 2009
posting name/serial combo doesn't mean anything this crackme can be fished in under a minute with one breakpoint. That isn't the point, keygen it and write a tutorial and explain to us the scheme.
dahiphop
31. Dec 2009
Name: DAHipHop
Serial: e5f76-6a5c-bed1-f5ba-58e
=> Very easy => Difficulty: 1
coffeebean
Author
31. Dec 2009
To everyone posting user/serial combination: *FACEPALM*. Come on, that is NOT the point of this keygenme, study what's actually happening and show some enthusiasm for the code. Real crackers aim to write keygens, you learn most that way.
draww
31. Dec 2009
hello coffeebean.. really nice crack me.. i've solved it.. i'm writing a keygen and the solution text right now ;) will be back soon.

2Eh XOR 7Bh = 55h.... nice trick.
draww
31. Dec 2009
i just submit my solution.. thanks for the crack me ;)
draww
31. Dec 2009
link to my solution, happy new year!

http://www.mediafire.com/?mmjtgdtnmjy
coffeebean
Author
01. Jan 2010
good work draww! Brilliant tut. Happy new year everyone!
kilobyte.asm
01. Jan 2010
was going to write tut but i'll wait for draww's to be submitted
draww
01. Jan 2010
thank you coffeebean, happy new year too.. keep up the good work (;
Akusei
08. Jan 2010
I disagree with a few of the comments here. The difficulty is appropriately marked as 3.

If you were required to simply provide a name/key combination with no explanation, the difficulty would easily be a 1. This is not the case however, you are required to create a keygen and provide an explanation of the key generation process.

There are about 4 to 5 unique things about this crackme that put it at a "Getting Harder" difficulty, that is, if you actually take the time to understand what is being done and what is being used.

Good job, I enjoyed this one... maybe I'll actually spend the time to write a tutorial/keygen for it.

I know it's been said previously but if you have a solution, please post it as a solution and not a comment. Also, try not to give away too much about the crackme in the comments... you don't want to spoil it for everyone.
r-Evolution
30. Sep 2010
name: SearcH_AnD_DeStroY
serial: 4050c-25bb-ab42-578d-f56

sorry but i have no time for a solution
draww
27. Nov 2010
this is interesting.. in some long names the serial algo is broken and the final serial is shortened as follows:

name: heyyaaaaaaaaaaaaaa
serial: 80084-7

and it works :)

You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.