downloadbrowseksydfius's Aurora Borealis

Download aurora_borealis_ksydfius.zip, 1094 kb (password: crackmes.de)
Browse contents of aurora_borealis_ksydfius.zip

read the readme

Difficulty: 4 - Needs special knowledge
Platform: Windows
Language: .NET

Published: 26. Mar, 2013
Downloads: 225

Rating

Votes: 6
Crackme is nothing special.

Rate this crackme:

Send a message to ksydfius »

View profile of ksydfius »

Solutions

Solution by Matteo, published 29. jul, 2015; download (1012 kb), password: crackmes.de or browse.

Matteo has rated this crackme as awesome.

Submit your solution »

Discussion and comments

hepL3r
28. Mar 2013		This can not be unpacked without brute forcing or a valid key,you are using 2xMD5 and also you are using this to decrypt the main exe so without a key or brute force it's impossible to be unpacked, here is your main check code:

private void button1_Click(object sender, EventArgs e)
{
string text = this.textBox1.Text;
string str2 = this.md5(this.md5(text));
if (this.md5(this.md5(text)) == "200FA8DEDF693586BA939BD5E3DF8845")
{
byte[] key = this.md5asBytes(text);
byte[] buffer2 = this.sha256(text);
byte[] data = Resources.Aurora_Borealis_Crackme;
data = this.decrypt(data, buffer2);
byte[] bytes = Encoding.Default.GetBytes("\x00e9\"3\x00c2\x000e\x00b8\x00f1\x00c6\x00ff\x00e5\x0005\x00be\x00de\x001f'\x00e9\x00eb% \x00ce\x0017\x00b4\x00cb\x00aa\x00d6\x00f8\x0012\x00b2ƒ");
bytes = this.decrypt(bytes, key);
try
{
Form ownedForm = (Form) Assembly.Load(data).CreateInstance(Encoding.Default.GetString(bytes), true);
base.AddOwnedForm(ownedForm);
base.Hide();
ownedForm.ShowDialog();
Application.Exit();
}
catch (Exception)
{
MessageBox.Show("This is not supposed to happen...", "Error", MessageBoxButtons.OK, MessageBoxIcon.Exclamation);
}
}
else
{
MessageBox.Show("Invalid password!", "Wrong!", MessageBoxButtons.OK, MessageBoxIcon.Hand);
Application.Exit();
}
}
ksydfius
Author
28. Mar 2013		Hi hepL3r,

You have to think a little outside the box for this one... Take another look at the code...

-ksydfius
Noteworthy
28. Mar 2013		Seems unsolvable if we have to crack the double md5;. otherwise I tried to use same "keys" used to make buffer2 and 3 for the first run which are ".NET Protectorksydfius" and ".NET Protector Version 1.0" still not working
Noteworthy
28. Mar 2013		do we have to crack the xor based encrypted key ? "é"3¸ñÆÿå¾Þ'éë% δ˪Öø²ƒ"
adwi32
28. Mar 2013		didnt look to this crakme but if u say its not possible to unpack its wrong. If program using key to unpack, thats mean its possible to get this key.
Noteworthy
29. Mar 2013		Its upacked I was talking about the correct password !
ksydfius
Author
29. Mar 2013		Can someone please lower difficulty to a 4? I think a 6 is too high...

Thanks
Delirium
05. Apr 2013		Just bypass the loader, simple.
Delirium
05. Apr 2013		Oh the crackme is the loader itself.
Delirium
05. Apr 2013		Loader bypassed, ollydbg check bypassed.
jhon
13. Apr 2013		OK, All chargers bypassed.

Now to get "Wow! Please write a solution for crackmes.de!"

Regards ;D
Matteo
09. May 2015		Part 3 is a nightmare! Any hints?
Awesome crackme!!!

today i was jumping here and there and i found this...
i have solved part 1 and 2 (part 2 was my idea for new crackme, uff I'm not the only one who thought this)

problem now is part 3...
i'm not going to reverse all that (not sure if it is possible)
and i'm not sure i will try to bruteforce 16 chars (max) pw.

this is the best of part 3:
Q29uZ3JhdHVsYXRpb25zIHlvdSBjYW4gZGVjb2RlIGJhc2U2NCE=
Congratulations you can decode base64!
Matteo
09. May 2015		someone has any tips?
here some strings from the crackme:
You are on the wrong track.
the northern lights
Don't even try to break this encryption :)
This is where you should be looking... or is it?
ksydfius
Congratulations you can decode base64!
Too bad that won't help you on this one :(
Stop looking at my code please...
You are in the wrong direction...

supposing that i don't have to look at the code (which is long and complex) what should i look?
Matteo
16. May 2015		S O L V E D ! ! !
this was the most difficult crackme that i have ever found
i'm a genius eheheh
you should try it!!
now i need to make a tutorial but i will need much much time for this as it is long and difficult
again you should try it!!
SinaDiR
18. May 2015		I'm stuck on part3 ! that was huge to spend time !
Matteo
17. Jul 2015		solution uploaded now... a bit late but i had not much free time and i played poliCTF 2015 :) my first ctf :)
Matteo
29. Jul 2015		have fun with this solution, i hope you like it!
author says that "crunch" function and the "UnzipTheKey" function, together is AES encryption.
So seems that i cracked AES... i will search for more info

You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.