downloadbrowseFereter's CrackMe by Fereter #2

Download CrackMeByFereter#2.zip, 2 kb (password: crackmes.de)
Browse contents of CrackMeByFereter#2.zip

The CrackMe has a protection from static analysis (crypted strings, complex logics of execution, some hidden API calls), anti-debug, a light protection against patching.
The goal is either to patch CrackMe so it accepted any data or to create a KeyGen.

Difficulty: 2 - Needs a little brain (or luck)
Platform: Windows
Language: Assembler

Published: 25. Aug, 2016
Downloads: 594

Rating

Waiting for at least 3 votes
(we have only 2).

Rate this crackme:

Send a message to Fereter »

View profile of Fereter »

Solutions

Solution by Taliesin, published 20. oct, 2016; download (55 kb), password: crackmes.de or browse.

Taliesin has rated this crackme as quite nice.

Solution by acruel, published 20. oct, 2016; download (1 kb), password: crackmes.de or browse.

acruel has not rated this crackme yet.

Submit your solution »

Discussion and comments

beaver
31. Aug, 06:22
I avoid anti-debug protection. and find place there serial has calculate. But cant find where username processed. First SendMessage call doesn't returns anything.
beaver
01. Sep, 06:42
ha-ha, its a nice trick with IsDebuggerPresent
donnie
04. Sep, 08:58
After NOPing the entire byte-check, you can easily apply CC bps and also bp on SendMessage. Then also NOP all the jnz and je in the windproc after the cmp command (you'll know after studying it a bit). Now it always shows Registered, no matter what you enter for name and serial. Loved the programming. Very clever :)
SV Reverser
12. Sep, 12:44
0040245A | cmp eax,0 |
0040245D | jne crackmebyfereter#2_.svz.4024F8 |
Taliesin
17. Oct, 06:13
Submitted solution and keygen. Hopefully they'll be approved without issue.

You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.