downloadbrowse_khAttAm_'s _khAttAm_'s What Is My Password v8

Download WIMP8_Rebuilt3.zip, 137 kb (password: crackmes.de)
Browse contents of WIMP8_Rebuilt3.zip

_khAttAm_'s What Is My Password (WIMP) v8
-----------------------------------------

Now WIMP comes with a good Windows
interface. Hope you all will love it.
I have worked very hard on it to make
you work very hard.

It runs in Windows XP ONLY. Hope you
have it.

Happy cracking :)

Difficulty: 8 - *VERY VERY* hard
Platform: Windows
Language: Unspecified/other

Published: 01. Aug, 2005
Downloads: 1104

Rating

Votes: 7
Crackme is nothing special.

Rate this crackme:

Send a message to _khAttAm_ »

View profile of _khAttAm_ »

Solutions

There are no solutions to this crackme yet. Have you solved it? Please write a tutorial and submit it here!

Submit your solution »

Discussion and comments

_khAttAm_
Author
31. Jul 2005
This is the second rebuild. The first build had a flaw. it would take "passw0rd" as a valid password, which is not the real passeord. Thanks to Oorja-HalT for pointing out that. Again, i saw another flaw. It would take spaces as a valid password.

This rebuild has no flaws. You can try this one........
Oorja-HalT
31. Jul 2005
yeah sure but if only i can unpack armadillo properly : i could never do that
Oorja-HalT
31. Jul 2005
BTW PEid says its version 1.51 where did you get that
code_inside
31. Jul 2005
I thought commercial protectors are not allowed to be used in a CrackMe anymore ???
Knight
01. Aug 2005
>Can I pack/protect my Crackme with a commercial protector?

>No. This website is not meant to be a place where commercial protectors are disabled for you by other reverse code engineers.

This is taken from FAQ. What if i write lamyest crackme and pack it with arma? I think it's unfair that to unpack crackme might be even harder than to crack it.
_khAttAm_
Author
01. Aug 2005
And you know that such protections are a major part of todays softwares.......... You gotta unpack 'em if you wanna win the game..............
_khAttAm_
Author
01. Aug 2005
@Oorja.....

BTW, it is v 2.??..........

That shud be easy to unpack........ Never done it myself though..........

There are good Armadillo unpacking tuts from Unpacking Gods and others.............
_khAttAm_
Author
01. Aug 2005
Ok............. I'll never use those protections again.......

My own are difficult enough........ LOL :D
_khAttAm_
Author
01. Aug 2005
Armadillo removed......... Submitted..........
_khAttAm_
Author
02. Aug 2005
Actually, you all didn't get me.........

Ok hints:

If it would be Arma packed, it would do nothing, coz only one file is packed (just packed, no any other protections) with Arma...... The file is just for a good GUI........ The original checkings are done by other included files...... So, Arma or ASPR, does that really matter??

Anyways, hope you got me now...........

The original checking is done by Mswin16.ocx, which is not really an ocx............., it is an exe........ It is packed with UPX and Aspack (which is not a problem now-a-days, or is it??)...............

BTW, another one is out, already, without Armadillo..... so ......
Oorja-HalT
02. Aug 2005
The serial check itself is so good you dont need all that attachment like one file reading it and writting to another temp then third file would read that from temp and verify it .
_khAttAm_
Author
03. Aug 2005
Oh, that was done so as to give a proper output......... You wouldn't like the output in a temp file, would you?? That VB interface is just for a good GUI.... and pass.exe was a compensation so that I didn't have to re-write the MsWin16.ocx again, coz it was too messy............
Anyways, hope you'll crack it..........
or have you already done it??
If so, solution would be good so that I could make better protection................
deroko
23. Aug 2005
heh this is funny or bug?
wimp8.wmp and wimp8__.wmp are created in C:\ but pass.exe opens wimp8__.wmp or wimp8.wmp in current drirectory =) So I get "Well done" without a valid key if my input is equal to wimp...wmp in current directory =)))
_khAttAm_
Author
24. Aug 2005
Can't get you deroko........

If you are running the unmodified form of WIMP8 and getting a correct serial message with a text input in the appropriate field, thats it.........

Hope you got me....
deroko
24. Aug 2005
from pass.exe

0040104D |. 53 PUSH EBX ; ||Arg1 => 00404010 ASCII "wimp8__.wmp"
0040104E |. E8 DD030000 CALL pass.00401430 ; |\pass.00401430

004010CE |. 8D1D 88404000 LEA EBX,DWORD PTR DS:[404088] ; ||
004010D4 |. 53 PUSH EBX ; ||Arg1 => 00404088 ASCII "c:\wimp8.wmp"
004010D5 |. E8 56030000 CALL pass.00401430 ; |\pass.00401430

=)))
I tought I have right pass but later figured out that wimp(dialog_box_vb) writes to C:\wimp8.wmp but pass.exe compares curdir\wimp8__.wmp and C:\wimp8.wmp so if I put in curdir\wimp8__.wmp key that I've typed in dialog I'll get god pass =)
I was talking about this, so I'll have to run wimp from C:\ =)))
_khAttAm_
Author
24. Aug 2005
No! Thats not the way.....

You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.