_khAttAm_'s _khAttAm_'s What Is My Password v8
| Download WIMP8_Rebuilt3.zip, 137 kb (password: crackmes.de) Browse contents of WIMP8_Rebuilt3.zip _khAttAm_'s What Is My Password (WIMP) v8
Difficulty: 8 - *VERY VERY* hard | RatingVotes: 7 View profile of _khAttAm_ » |
Solutions
There are no solutions to this crackme yet. Have you solved it? Please write a tutorial and submit it here!
Discussion and comments
| _khAttAm_ Author 31. Jul 2005 | This is the second rebuild. The first build had a flaw. it would take "passw0rd" as a valid password, which is not the real passeord. Thanks to Oorja-HalT for pointing out that. Again, i saw another flaw. It would take spaces as a valid password. This rebuild has no flaws. You can try this one........ |
|---|---|
| Oorja-HalT 31. Jul 2005 | yeah sure but if only i can unpack armadillo properly : i could never do that |
| Oorja-HalT 31. Jul 2005 | BTW PEid says its version 1.51 where did you get that |
| code_inside 31. Jul 2005 | I thought commercial protectors are not allowed to be used in a CrackMe anymore ??? |
| Knight 01. Aug 2005 | >Can I pack/protect my Crackme with a commercial protector? >No. This website is not meant to be a place where commercial protectors are disabled for you by other reverse code engineers. This is taken from FAQ. What if i write lamyest crackme and pack it with arma? I think it's unfair that to unpack crackme might be even harder than to crack it. |
| _khAttAm_ Author 01. Aug 2005 | And you know that such protections are a major part of todays softwares.......... You gotta unpack 'em if you wanna win the game.............. |
| _khAttAm_ Author 01. Aug 2005 | @Oorja..... BTW, it is v 2.??.......... That shud be easy to unpack........ Never done it myself though.......... There are good Armadillo unpacking tuts from Unpacking Gods and others............. |
| _khAttAm_ Author 01. Aug 2005 | Ok............. I'll never use those protections again....... My own are difficult enough........ LOL :D |
| _khAttAm_ Author 01. Aug 2005 | Armadillo removed......... Submitted.......... |
| _khAttAm_ Author 02. Aug 2005 | Actually, you all didn't get me......... Ok hints: If it would be Arma packed, it would do nothing, coz only one file is packed (just packed, no any other protections) with Arma...... The file is just for a good GUI........ The original checkings are done by other included files...... So, Arma or ASPR, does that really matter?? Anyways, hope you got me now........... The original checking is done by Mswin16.ocx, which is not really an ocx............., it is an exe........ It is packed with UPX and Aspack (which is not a problem now-a-days, or is it??)............... BTW, another one is out, already, without Armadillo..... so ...... |
| Oorja-HalT 02. Aug 2005 | The serial check itself is so good you dont need all that attachment like one file reading it and writting to another temp then third file would read that from temp and verify it . |
| _khAttAm_ Author 03. Aug 2005 | Oh, that was done so as to give a proper output......... You wouldn't like the output in a temp file, would you?? That VB interface is just for a good GUI.... and pass.exe was a compensation so that I didn't have to re-write the MsWin16.ocx again, coz it was too messy............ Anyways, hope you'll crack it.......... or have you already done it?? If so, solution would be good so that I could make better protection................ |
| deroko 23. Aug 2005 | heh this is funny or bug? wimp8.wmp and wimp8__.wmp are created in C:\ but pass.exe opens wimp8__.wmp or wimp8.wmp in current drirectory =) So I get "Well done" without a valid key if my input is equal to wimp...wmp in current directory =))) |
| _khAttAm_ Author 24. Aug 2005 | Can't get you deroko........ If you are running the unmodified form of WIMP8 and getting a correct serial message with a text input in the appropriate field, thats it......... Hope you got me.... |
| deroko 24. Aug 2005 | from pass.exe 0040104D |. 53 PUSH EBX ; ||Arg1 => 00404010 ASCII "wimp8__.wmp" 0040104E |. E8 DD030000 CALL pass.00401430 ; |\pass.00401430 004010CE |. 8D1D 88404000 LEA EBX,DWORD PTR DS:[404088] ; || 004010D4 |. 53 PUSH EBX ; ||Arg1 => 00404088 ASCII "c:\wimp8.wmp" 004010D5 |. E8 56030000 CALL pass.00401430 ; |\pass.00401430 =))) I tought I have right pass but later figured out that wimp(dialog_box_vb) writes to C:\wimp8.wmp but pass.exe compares curdir\wimp8__.wmp and C:\wimp8.wmp so if I put in curdir\wimp8__.wmp key that I've typed in dialog I'll get god pass =) I was talking about this, so I'll have to run wimp from C:\ =))) |
| _khAttAm_ Author 24. Aug 2005 | No! Thats not the way..... |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.