rantasipi's Little Headache
| Download LHeadache.zip, 61 kb (password: crackmes.de) Browse contents of LHeadache.zip 'Little Headache' by rantasipi for crackmes.de
Difficulty: 1 - Very easy, for newbies | RatingWaiting for at least 3 votes View profile of rantasipi » |
Solutions
Solution by tinqnpro, published 04. nov, 2012; download (11 kb), password: crackmes.de or browse.
tinqnpro has not rated this crackme yet.
Discussion and comments
| ShadowOfDeath 29. Mar 2012 | OllyDbg gave me a error when i try to run this .. |
|---|---|
| crackamania 05. Apr 2012 | Use OllyAdvanced plugin for disable IsDebuggerPresent. |
| cyberdog 07. Apr 2012 | 1 h into it and learnt the VB asm and structures first time ... thanks ... Found the correct and wrong msg box and some thread creation and timer, but kindda stuck now on where to look as I can't trace how the correct gets called back in VB (no ref to it) |
| cyberdog 08. Apr 2012 | patch offset E05A from 75 to 74 and the IsDebugger Check is inverted letting you analyse under IDA and Olly with no additional plugin. |
| darklanx 01. May 2012 | what's this... |
| d0d0 28. May 2012 | how can i learn cracking from a to e ? |
| mobius 01. Aug 2012 | You don't have to run a plug in, just rename OllyDBG to Oll or Olly or anything else. In addition, there does not appear to be a IsDebugerPresent call, only a NtQueryInformationProcess, which performs the same function at offset 5b348 from the module base of ntdll. Cyberdog, that offset means nothing because you don't explain what it's offset from. I can't fucking figure it out and it's getting really fucking irritating, so just attach to the fucker after you run it :p |
| mausy131 04. Nov 2012 | Finaly a solution! |
| rantasipi Author 18. Mar 2013 | good job, tinqnpro! |
You may leave your comment, thoughts and discuss this crackme with other reversers here.
Acting childish will not be tolerated.
HTML and such will be left as-is, so don't try.