
Fereter's CrackMe by Fereter #2
Download CrackMeByFereter#2.zip, 2 kb (password: crackmes.de) Browse contents of CrackMeByFereter#2.zip The CrackMe has a protection from static analysis (crypted strings, complex logics of execution, some hidden API calls), anti-debug, a light protection against patching.
Difficulty: 2 - Needs a little brain (or luck) | RatingWaiting for at least 3 votes View profile of Fereter » |
Solutions
Solution by Taliesin, published 20. oct, 2016; download (55 kb), password: crackmes.de or browse.
Taliesin has rated this crackme as quite nice.
Solution by acruel, published 20. oct, 2016; download (1 kb), password: crackmes.de or browse.
acruel has not rated this crackme yet.
Discussion and comments
beaver 31. Aug, 06:22 | I avoid anti-debug protection. and find place there serial has calculate. But cant find where username processed. First SendMessage call doesn't returns anything. |
---|---|
beaver 01. Sep, 06:42 | ha-ha, its a nice trick with IsDebuggerPresent |
donnie 04. Sep, 08:58 | After NOPing the entire byte-check, you can easily apply CC bps and also bp on SendMessage. Then also NOP all the jnz and je in the windproc after the cmp command (you'll know after studying it a bit). Now it always shows Registered, no matter what you enter for name and serial. Loved the programming. Very clever :) |
SV Reverser 12. Sep, 12:44 | 0040245A | cmp eax,0 | 0040245D | jne crackmebyfereter#2_.svz.4024F8 | |
Taliesin 17. Oct, 06:13 | Submitted solution and keygen. Hopefully they'll be approved without issue. |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.