PureBasic Forums - English

http://www.purebasic.com
https://www.purebasic.fr/english/

.NET bad news for protector apps?

https://www.purebasic.fr/english/viewtopic.php?t=18086

Page 2 of 3

Posted: Fri Dec 09, 2005 4:36 pm
by thefool
thanks.. Waiting :)

Posted: Fri Dec 09, 2005 4:53 pm
by josku_x
Hehe, I don't think you saw my edited post:
josku_x wrote:Ok, it is uploaded.

Here is the file:
http://k.1asphost.com/joskux/HardCrackme.file

Again, after download rename ".file" to ".zip"

----------------
The zip includes HardCrackme.exe, which is not secured nor packed whatsoever and HardCrackmeP.exe, which is strongly encrypted with MoleBox.
----------------

Good luck.

Posted: Fri Dec 09, 2005 5:09 pm
by thefool
Oh i missed it! Thanks :)

Posted: Fri Dec 09, 2005 5:39 pm
by josku_x
well, as I said, good luck

Posted: Fri Dec 09, 2005 5:42 pm
by thefool
edit: I cracked it!

Posted: Fri Dec 09, 2005 6:07 pm
by thefool
The patch is however not too easy to create..

Posted: Fri Dec 09, 2005 6:16 pm
by thefool
Created the patcher using DZE patcher.
Its a loader file, and when you launch it, it will run the exe and imidiatly after compression change the jump when equal to 2 NOP's.

NOTICE: I could have done this with the other exe too, however i just found out of the method now. But actually its not hard to crack molebox then :/

File:1->Loader.exe
Image

You put it in the same directory as HardCrackmeP.exe, and ONLY launch the launcher.
If you think im cheating, i wouldnt mind telling you exactly what adresses you need to change at runtime, and then you can try it yourself either with a launcher generator, or with a memory changer tool..

Some time ago i also did a TrainerLib in purebasic wich can be used to this too, and also the process lib in PBOSL can be used to create this kind of patchers..

Best part is that it does not change the exe on the disk, only the memory at runtime.


Its hard to create an on disk patch though, because of checks etc.
But try the loader

edit: just programming a purebasic loader so you can try it at home ;)

edit2: Here is the purebasic loader source! And it works. Compile, place where HardCrackmeP.exe is and run!

Code: Select all

;Loader for HardCrackmeP.exe
;Written by: Thefool

Global tl_Place,tl_fcount, tl_madef, tl_tmrhandle
#PROCESS_ALL_ACCESS = $1F0FFF 

Procedure.l tl_hex2long(Hex.s)
  Erg.l = 0
  For i.l = 1 To Len(Hex)
    c.l = Asc(Mid(Hex, i, 1))
    If c > 64
      c - 55
    EndIf
    If c > 47
      c - 48
    EndIf
    Erg = Erg << 4 + c
  Next
  ProcedureReturn Erg
EndProcedure

ProcedureDLL tl_WriteAddress(phandle, address.s, value,size) ;Writes a value to memory..
  addressLONG = tl_hex2long(address.s)
  result = WriteProcessMemory_(phandle, addressLONG, @value, size, NULL)
  ProcedureReturn result
EndProcedure

OpenConsole()
PrintN("Loader by thefool.")


PrintN("launching the process. Please stand by for 2 seconds!")
phandle=RunProgram("HardCrackmeP.exe")
Delay(1000)
tl_WriteAddress(phandle,"4010B1",$90,1)
tl_WriteAddress(phandle,"4010B2",$90,1)

End

Posted: Fri Dec 09, 2005 6:33 pm
by Nik
Wow :shock:

Posted: Fri Dec 09, 2005 6:48 pm
by thefool
Nik wrote:Wow :shock:
:lol:

currently studying the windows pe files. I hope to be able to write an exe analyzing tool in purebasic. Also thinking of a simple way to make an compressor, or protector in purebasic [adding sections and executing them first.]. Also a live crc checker.

Posted: Fri Dec 09, 2005 7:34 pm
by thefool
I will email molebox about the problem.

Posted: Fri Dec 09, 2005 8:36 pm
by josku_x
Yea, good idea. I didn't thought making the patch is so simple yet hard to make.

Well, good job thefool, you cracked my moleboxed application! Congratulation!

EDIT: My antivirus app alerts about your file, look this image:
http://img223.imageshack.us/img223/9801/lol9ev.png

Isn't there any other way doing a patch without my antivirus to alert? Really idiotic :P

Posted: Fri Dec 09, 2005 8:41 pm
by thefool
josku_x wrote: Isn't there any other way doing a patch without my antivirus to alert? Really idiotic :P
I know why its doing that. Its not an harmfull app i have uploaded, but it is made using a crackers tool.

Read my whole post, i wrote a purebasic source wich you can simply compile to an exe and it works!!!

the loader patch actually requires less lines than a patcher, so its quite simple. I just had to figure out how to do it :)

Posted: Fri Dec 09, 2005 9:31 pm
by josku_x
Yea yea, but I thought if I would make a game and then create a patch to unlock for example all levels, and my clients download it, many of them would say it's a virus and they won't download it, so it would scare people-

I was thinking like that, but I am never going to do so. But brilliant work!

Posted: Fri Dec 09, 2005 9:48 pm
by thefool
josku_x wrote:Yea yea, but I thought if I would make a game and then create a patch to unlock for example all levels, and my clients download it, many of them would say it's a virus and they won't download it, so it would scare people-
It wont say its a virus :)
As if one said that i wouldnt use that patcher. Notice its just a normal patch maker for that exe file its not home programmed. But the source code is homebrewed :)

IF they listen to me, dont worry its going to be much better at protecting.

Posted: Sat Dec 10, 2005 12:14 am
by LuCiFeR[SD]
Ahhhhhhhhhhhhh, now the fool gets cocky ;)

/me rolls up sleeves and stops pretending to be dumb :)
All times are UTC+01:00
Page 2 of 3

Powered by phpBB® Forum Software © phpBB Limited