
KLiZMA's CrackMe#1 (Lucky)
Download Crackme#1_by_KLiZMA.zip, 3 kb (password: crackmes.de) Browse contents of Crackme#1_by_KLiZMA.zip Hey!
Difficulty: 1 - Very easy, for newbies | RatingWaiting for at least 3 votes View profile of KLiZMA » |
Solutions
Solution by Ox87k, published 08. jan, 2006; download (47 kb), password: crackmes.de or browse.
Ox87k has not rated this crackme yet.
Solution by Ank83, published 08. jan, 2006; download (8 kb), password: crackmes.de or browse.
Ank83 has not rated this crackme yet.
Discussion and comments
PiCkLeD 04. Jan 2006 | Unpacked this *boom* Norton AV Pops Bloodhound.W32.EP Wtf? |
---|---|
astigmata 04. Jan 2006 | maybe because it's packed with FSG FSG is used in order to pack worms and viriis like sasser or blaster but don't worry I unpacked too, but under olly, I found the good jump and I can't trace memory at adress 77C0537C is not readable :( |
Ank83 04. Jan 2006 | i unpacked it, found a valid serial, i will start writing a keygen ! unpacking is a little tricky ! |
astigmata 04. Jan 2006 | I wait for your solution to see what I 've forgotten |
astigmata 04. Jan 2006 | olly was the problem for IAT importrec is better I didn't find serial I nopped the 004012E7 jmp but I'm lazy to reverse because Ank83 is doing a kg :P |
HMX0101 04. Jan 2006 | i'm writing a bruteforce, for get the serials |
HMX0101 04. Jan 2006 | if this is accepted |
Zaphod 04. Jan 2006 | I'm rather mystified by this crackme because when I loaded it in Olly, Olly found the real entry point by itself! I have the Ollyscript for FSG 2.0, but normally I have to start it myself, only this time it wasn't necesssary. Olly must be more intelligent than I thought... Well, then it was just a matter of scrolling a little bit down to find the serial calculations. I haven't written a keygen but it was easy to find 9 correct serials - perhaps there are no more... |
KLiZMA Author 05. Jan 2006 | It is FSG v2.0!!! Unpack it!!! |
Ank83 05. Jan 2006 | It is very nice crackme ! Simple algoritam, perfect for newbies ! |
Ank83 05. Jan 2006 | hmx0101 dont write bruteforcer is endles combination of number that can be serials. Try looking into the code ! :) |
Zaphod 05. Jan 2006 | Yes, there are lots of correct serials, and I found out that you just have to look at the code from 40138D to 4013AF in the unpacked crackme to see what is going on. |
HMX0101 05. Jan 2006 | the serials like this "111111" is accepted by the crackme, maybe this is a bug |
DeepBlue 05. Jan 2006 | >> Norton AV Pops... Pls, do not trust Norton... |
KLiZMA Author 06. Jan 2006 | to HMX0101: 111111 is the correct serial Try to write the keygen and look to the code! |
Ox87k 06. Jan 2006 | klizma maybe i understand... the correct serials are all palindrome numbers? ex: 123321, 694496?? :D |
Ox87k 06. Jan 2006 | nope.. sorry! the sum of first 3 chars must be equal to the sum of the last 3 chars... so, not only palindrome numbers... ;) |
Ox87k 06. Jan 2006 | but this crackme accepted only numbers or also the chars? :| the scanf get the serial in long double mode so i think that the ckm accepted only numbers but i don't see any check (if numbers or chars)! |
KLiZMA Author 07. Jan 2006 | to Ox87k: phanx! phanx! phanx! |
outlaw 08. Jan 2006 | Я вот думаю, а еÑÑ‚ÑŒ тут руÑÑкие крÑкеры? |
m@[tador] 09. Jan 2006 | outlaw да, еÑÑ‚ÑŒ :-) |
zairon Moderator 09. Jan 2006 | No, only english language here. |
KpocoboK 24. Feb 2006 | OMG|GMO Russian crackers inside!! |
Rambo 24. Feb 2006 | Rusian, Polish :) |
Rambo 24. Feb 2006 | This is cmp func... bool Spr(char* s) { int a,b; if (strlen(s)==6) { a=s[0]+s[1]+s[2]; b=s[3]+s[4]+s[5]; if (a==b) return true; } return false; } I hope it's correct ;). Creating keygen is simple. |
Rapido 22. Feb 2009 | in solution: "Trace realentry bitewise (very slow!)"<< whats it? i cant find "adress of entry"? help please iam newby |
Rapido 23. Feb 2009 | nobody answer to me??!! |
DigitalAcid 23. Feb 2009 | Aaaaaaw, you need attention =). |
Rapido 23. Feb 2009 | thanks for your help! you need attention!! |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.