megadoctor's Ser-Me
| Download Ser-Me.zip, 214 kb (password: crackmes.de) Browse contents of Ser-Me.zip Read the Readme File fot Info...
Difficulty: 1 - Very easy, for newbies | Send a message to megadoctor » View profile of megadoctor » |
Solutions
Solution by Tenshi, published 19. jun, 2006; download (428 kb), password: crackmes.de or browse.
Tenshi has not rated this crackme yet.
Solution by BugHunter, published 19. jun, 2006; download (222 kb), password: crackmes.de or browse.
BugHunter has rated this crackme as awesome.
Solution by FBI, published 19. jun, 2006; download (215 kb), password: crackmes.de or browse.
FBI has rated this crackme as awesome.
The submission of solutions is closed.
Discussion and comments
| FBI 15. Jun 2006 | I have 2 of the 3 cracked lol... I have enabled the button: changed a false 0 into a false 1 I have disabled the Message by changing the je jump into a jne. ( I think it was a je jump ) I'm too much of a newbie to crack the damn thing though lol. Help, please PM or post. PM will keep this post clean. |
|---|---|
| Daemon 15. Jun 2006 | This solution was rejected because of little size, but i dont know what i have to written else: 1. To Enable the Button 'Register', you can change follow bytes (from 2 row to 3 row): 00000319: 3A 40 00062DB0: 00 42 00062DB1: 00 6F 00062DB2: 00 6D 00062DB3: 00 65 000660CD: 08 09 000663FF: 00 C9 2. To remove the messagebox 'Get Rid of the Little fucker' change original command from 0045973D FF52 50 CALL DWORD PTR DS:[EDX+50] to 0045973D 32C0 XOR AL,AL 0045973F 90 NOP 3. To Make the program accept any Serial see next steps 4. To Make an Message saying 'Right Serial' and to Remove the Error saying 'Wrong Serial' change from 00459758 . 45 72 72 6F 7>ASCII "Error",0 to 00459758 . 47 6F 6F 64 2> ASCII "Good!",0 and from 00459768 . 57 72 6F 6E 6>ASCII "Wrong Serial !",0 to 00459768 . 52 69 67 68 7>ASCII "Right Serial !",0 |
| megadoctor Author 15. Jun 2006 | i think this should be in Level 2... |
| zairon Moderator 15. Jun 2006 | >but i dont know what i have to written else I told you what you have to write. Look at the first point, here's your description: " 1. To Enable the Button 'Register', you can change follow bytes (from 2 row to 3 row): 00000319: 3A 40 00062DB0: 00 42 00062DB1: 00 6F 00062DB2: 00 6D 00062DB3: 00 65 000660CD: 08 09 000663FF: 00 C9 " Do you really think someone will understand why you have to change these bytes? Sorry but I don't think so... Imho you have to explain how you reach the solution. I would like to see what others think about this type of solutions. |
| FBI 16. Jun 2006 | I use W32Dasm and Heiw. Open W32Dasm, and load ser-me. Click the String Refence button ( beside the print button) Strn Ref is what it looks like.. Once open, find the String Refence called False... it's just False, there should be one named True as well My Guess is that it's for enable = true enable = false, what do you think :P You do need to change the False statement... You might want it too look similiar to the True statement below it, what do you think... Hope this helps, if you need more help let me know: zex.ath.cx #zex msg FBi |
| Daemon 16. Jun 2006 | Thank you FBI. I thought, that every one, who load this serme in Disasm, will understand, why this bytes must be patched. I dont supposed, that some one will be interested in explaining of this simple steps. The detailed solution takes much more times, that crack process :) But i will try to do this for more complex crackmes. |
| yzhr 16. Jun 2006 | I have a problem to find where the program check the Serial and Loginname. |
| megadoctor Author 16. Jun 2006 | yzhr - i doesnt check, you just have to make an Message saying that it is correct ;) |
| megadoctor Author 16. Jun 2006 | Come on somebody! Submit a Solution... its really easy :| |
| megadoctor Author 19. Jun 2006 | Nice work, FBI keep it up! |
| hardcoder 10. Jul 2006 | I've tried something different, Patched 00437958 814B 04 00000>OR DWORD PTR DS:[EBX+4],8000000 With NOP, so both of the textbox and button got enabled and patched , 00455ED6 E8 5DB2FFFF CALL cked.00451138 With NOP, so it prevents from exiting finally WRONG with GOOD regards |
| hardcoder 10. Jul 2006 | Oh I forgot, I patched , 00455EC8 . /74 0A JE SHORT Ser-Me2.00455ED4 with nop too |
| hardcoder 10. Jul 2006 | so, fool of me it is the solution of Ser-me 2 |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.