新手破解练习Crackme160之108 - CrackMe2

  1. 脱壳
    使用PEiD查看有UPX的壳, 用PEiD通用脱壳器脱壳失败, 换用UPX Unpacker脱壳成功~
     

  2. 正常破解
    程序是Delphi写的, 直接用IDR查看按钮事件,

Unit1::TForm1.SpeedButton1Click
 00442B2C    push       ebp
 00442B2D    mov        ebp,esp
 00442B2F    push       0
 00442B31    push       ebx
 00442B32    mov        ebx,eax
 00442B34    xor        eax,eax
 00442B36    push       ebp
 00442B37    push       442BD5
 00442B3C    push       dword ptr fs:[eax]
 00442B3F    mov        dword ptr fs:[eax],esp
 00442B42    lea        edx,[ebp-4]
 00442B45    mov        eax,dword ptr [ebx+2C4]; TForm1.Edit1:TEdit
 00442B4B    call       TControl.GetText
 00442B50    mov        eax,dword ptr [ebp-4]
 00442B53    mov        edx,442BE8; '12011982'
 00442B58    call       @LStrCmp
>00442B5D    jne        00442B79
 00442B5F    push       0
 00442B61    mov        ecx,442BF4; 'Trial CrackMe Cracked!'
 00442B66    mov        edx,442C0C; 'Congrats! You were successful!'
 00442B6B    mov        eax,[00443C54]; ^Application:TApplication
 00442B70    mov        eax,dword ptr [eax]
 00442B72    call       TApplication.MessageBox
>00442B77    jmp        00442BBF
 00442B79    lea        edx,[ebp-4]
 00442B7C    mov        eax,dword ptr [ebx+2C4]; TForm1.Edit1:TEdit
 00442B82    call       TControl.GetText
 00442B87    cmp        dword ptr [ebp-4],0
>00442B8B    jne        00442BA7
 00442B8D    push       0
 00442B8F    mov        ecx,442C2C; 'Nothing entered'
 00442B94    mov        edx,442C3C; 'You have to enter a serial'
 00442B99    mov        eax,[00443C54]; ^Application:TApplication
 00442B9E    mov        eax,dword ptr [eax]
 00442BA0    call       TApplication.MessageBox
>00442BA5    jmp        00442BBF
 00442BA7    push       0
 00442BA9    mov        ecx,442C58; 'Wrong Serial'
 00442BAE    mov        edx,442C68; 'You are a bad cracker!'
 00442BB3    mov        eax,[00443C54]; ^Application:TApplication
 00442BB8    mov        eax,dword ptr [eax]
 00442BBA    call       TApplication.MessageBox
 00442BBF    xor        eax,eax
 00442BC1    pop        edx
 00442BC2    pop        ecx
 00442BC3    pop        ecx
 00442BC4    mov        dword ptr fs:[eax],edx
 00442BC7    push       442BDC
 00442BCC    lea        eax,[ebp-4]
 00442BCF    call       @LStrClr
 00442BD4    ret
<00442BD5    jmp        @HandleFinally
<00442BDA    jmp        00442BCC
 00442BDC    pop        ebx
 00442BDD    pop        ecx
 00442BDE    pop        ebp
 00442BDF    ret

答案就是: 12011982

 
 
 
这是160个软件part1
这是160个软件part2

1~160每个破解过程,在吾爱破解论坛都有高手破解过了,也有整理好现成的, 我这边主要就是自己动手操作的过程,与他们的不太一样
附上高手们的连接: 点击前往查看
使用的工具连接(工具有点多有点大,可以先下OD,其它的后面慢慢下) 点击前往下载

新人入门教程"玩玩破解,写给新人看" 点击前往查看
我就是从这里开始的,对我这样的小白感觉超级友好~

下面是我的OD的界面布局,我觉得这4个是最常用的界面,其它的我基本上没用到~
OD界面布局

posted @ 2024-07-15 16:41  hankerstudio  阅读(9)  评论(0)    收藏  举报