CiN1 Team - Cracking Is Number 1  

Cracking Is Number 1

Go Back   CiN1 Team - Cracking Is Number 1 >
~~ Learning Cracking ~~
> Free Talk About Cracking

Nội qui diễn đn - Forum Rules Must Read

Search kỹ trước khi post bi


Reply
 
Thread Tools Display Modes
Old 18-04-2016, 10:54 PM   #1
User Profile
mounirthabet

 
mounirthabet's Avatar
 
Join Date: Mon Apr 2016
Posts: 19

Cấp bậc: 3 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 52
Hoạt động: 6 / 168
Kinh nghiệm: 9%


Thanks: 7
Thanked 13 Times in 5 Posts
Icon14 Need help to unpack this!!

software name : DirectX Happy Uninstall
Link :
Quote:
[Only registered and activated users can see links. ]
pack : UPX protected

Last edited by movAl1; 19-04-2016 at 01:53 AM. Reason: use quote/code button for external link.thanks
  Reply With Quote
Old 19-04-2016, 01:54 AM   #2
User Profile
movAl1

 
movAl1's Avatar
 
Join Date: Tue Apr 2010
Posts: 582

Cấp bậc: 22 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 528
Hoạt động: 194 / 11021
Kinh nghiệm: 13%


Thanks: 3,218
Thanked 2,435 Times in 554 Posts
Default

use pe explorer > open with pe explorer.and just save it
  Reply With Quote
The Following 3 Users Say Thank You to movAl1 For This Useful Post:
Old 19-04-2016, 04:16 AM   #3
User Profile
abdo443322

 
abdo443322's Avatar
 
Join Date: Thu Mar 2014
Posts: 424

Cấp bậc: 19 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 453
Hoạt động: 141 / 4219
Kinh nghiệm: 13%


Thanks: 822
Thanked 2,144 Times in 337 Posts
Default

This new version in upx it found some trick in this version when you unp the app with any tool become nag and the pc restart and it is the seam when you load the program in olly to unpack and run it !!!!!!!!!!!!!!!

Last edited by abdo443322; 19-04-2016 at 04:42 AM.
  Reply With Quote
The Following 3 Users Say Thank You to abdo443322 For This Useful Post:
Old 20-04-2016, 12:22 AM   #4
User Profile
cachito

 
cachito's Avatar
 
Join Date: Wed Nov 2015
Posts: 35

Cấp bậc: 4 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 92
Hoạt động: 11 / 408
Kinh nghiệm: 68%


Thanks: 22
Thanked 39 Times in 24 Posts
Default

Have you tried bp'ing NtShutdownSystem and NtSetSystemPowerState???
  Reply With Quote
The Following User Says Thank You to cachito For This Useful Post:
Old 20-04-2016, 01:39 AM   #5
User Profile
abdo443322

 
abdo443322's Avatar
 
Join Date: Thu Mar 2014
Posts: 424

Cấp bậc: 19 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 453
Hoạt động: 141 / 4219
Kinh nghiệm: 13%


Thanks: 822
Thanked 2,144 Times in 337 Posts
Default

no i do not try but i think is better when search about pc shutdown call routin i think in this call all trick
  Reply With Quote
The Following 2 Users Say Thank You to abdo443322 For This Useful Post:
Old 23-04-2016, 03:42 AM   #6
User Profile
mounirthabet

 
mounirthabet's Avatar
 
Join Date: Mon Apr 2016
Posts: 19

Cấp bậc: 3 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 52
Hoạt động: 6 / 168
Kinh nghiệm: 9%


Thanks: 7
Thanked 13 Times in 5 Posts
Default

sorry movAl1 is not too easy like that , pe explorer or UPX can unpack it .
  Reply With Quote
Old 23-04-2016, 03:48 AM   #7
User Profile
mounirthabet

 
mounirthabet's Avatar
 
Join Date: Mon Apr 2016
Posts: 19

Cấp bậc: 3 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 52
Hoạt động: 6 / 168
Kinh nghiệm: 9%


Thanks: 7
Thanked 13 Times in 5 Posts
Default

Quote:
Originally Posted by movAl1 View Post
use pe explorer > open with pe explorer.and just save it

sorry man is not too easy like that , pe explorer or UPX can't unpack it .
  Reply With Quote
Old 23-04-2016, 04:03 AM   #8
User Profile
mounirthabet

 
mounirthabet's Avatar
 
Join Date: Mon Apr 2016
Posts: 19

Cấp bậc: 3 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 52
Hoạt động: 6 / 168
Kinh nghiệm: 9%


Thanks: 7
Thanked 13 Times in 5 Posts
Default

2 weak trying with this software, every time my PC restarts, I success to unpack it with only using phant0m plugins, but is not working after fixed by IMPREC, any one succeed please make a tuto how realized it. and i will be thankful
  Reply With Quote
Old 23-04-2016, 04:20 AM   #9
User Profile
abdo443322

 
abdo443322's Avatar
 
Join Date: Thu Mar 2014
Posts: 424

Cấp bậc: 19 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 453
Hoạt động: 141 / 4219
Kinh nghiệm: 13%


Thanks: 822
Thanked 2,144 Times in 337 Posts
Default

Quote:
Originally Posted by mounirthabet View Post
software name : DirectX Happy Uninstall
Link :
pack : UPX protected
now we success to unpack this application

1- load the program in pe explor und save with other name
2- change the name to orignal file
3-load the unpack file in olly
4-change this bit :

0041BF80 55 PUSH EBP
0041BF80 C3 RETN
  Reply With Quote
The Following 5 Users Say Thank You to abdo443322 For This Useful Post:
Old 23-04-2016, 04:54 AM   #10
User Profile
mounirthabet

 
mounirthabet's Avatar
 
Join Date: Mon Apr 2016
Posts: 19

Cấp bậc: 3 [cin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1teamcin1team]
Sức sống: 0 / 52
Hoạt động: 6 / 168
Kinh nghiệm: 9%


Thanks: 7
Thanked 13 Times in 5 Posts
Default

Quote:
Originally Posted by abdo443322 View Post
This new version in upx it found some trick in this version when you unp the app with any tool become nag and the pc restart and it is the seam when you load the program in olly to unpack and run it !!!!!!!!!!!!!!!
Quote:
Originally Posted by abdo443322 View Post
now we success to unpack this application

1- load the program in pe explor und save with other name
2- change the name to orignal file
3-load the unpack file in olly
4-change this bit :

0041BF80 55 PUSH EBP
0041BF80 C3 RETN
big thinks bro now i will try to crack it
! how you come to this solution !
  Reply With Quote
The Following User Says Thank You to mounirthabet For This Useful Post:
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +8. The time now is 01:31 PM.


Powered by vBulletin® Version 3.xx
Copyright ©2000 2017, Jelsoft Enterprises Ltd. Help
Licensed to: cin1team.biz