PDA

View Full Version : Help with ckinfo & crypkey 7


janjan
July 8th, 2012, 12:47
Please, HELP!!!
I downloaded the new version of an application, it is a program to design 3D bodies.
In the past, I manages to apply the correct key to it's older version using ckinfo and the script I added below.
However, the new version is using a new version (7.6) i think, of cryptkey and when i try to enter the sitecode in the appropriate place I always get the following error:

Decrypt Failed - Trying v6.00 Decryption...
Error #16: Error occurred decrypting the Site Code - Encryption Keys Not Found


This prevents me from getting the Encryption key

The application I am trying to get the key for can be downloaded from:

<Commercial Software link deleted - Read the FAQ>


The old script i used (with the older version of this application is:
#Default Script (ckInfo)
Action=CreateSiteKey
AddToExistingLicence=no
EasyLicence=no
KeyLevel=0
LicenceDuration=unlimited
NumberOfLicences=1
NetworkLicence=no
UserKeyHash=0x6CA7
SiteCode=<enter site code here>
KeyOptions=1,9,10,11,12



I tried with ckinfo 1.14 and i always get the above errors.
I even tried to dump the crp32002 file and i THINK i got some relevant combination at the end of it but i have no idea what to do with it.

Please HELP.

newbie
August 5th, 2012, 08:45
did you find a way to deobfuscate sitecode

janjan
August 10th, 2012, 11:41
no i did not.
have you?
do you know of any other forum which can help me/us with this?

newbie
August 12th, 2012, 04:23
nothing till now ,some suggested replacing NGN file with old version ,i tried with no success

janjan
August 12th, 2012, 12:54
I tried that as well and nothing, tried to dump the crp32002.ngn file and look up the code to no avail.
guess no one here can help with this but if you do come up with something please let me know.

kjms
August 13th, 2012, 07:40
@janjan post dumped crp32002.ngn file here

newbie
August 13th, 2012, 08:02
Does anyone have crypkey v7.1 SDK ?

FoxB
August 13th, 2012, 10:04
for sdk you can ask crypkey canada directly and post it here

janjan
August 13th, 2012, 12:46
Quote:
[Originally Posted by kjms;93075]@janjan post dumped crp32002.ngn file here


I've attached it

kjms
August 14th, 2012, 06:27
janjan
Code:
userkey C70EB46C0297245BE4C76F
masterkey 311faf5136c7548e5e66b366754c2db5e696dfe03476035dc2b02a38d21644f267d31d59eb263e0f66a619fc247fb4d2e0c2 90fde17da662e94fa19d2cd65851380a5f0aa752a70d9ca25662ee657d1816953b15700afc884c71d32139f5dcd88df14924 bb9d9cf0377e65516001279a71b227c292b250a4fd9e10bb3d130100

janjan
August 14th, 2012, 12:49
Quote:
[Originally Posted by kjms;93081]janjan
Code:
userkey C70EB46C0297245BE4C76F
masterkey 311faf5136c7548e5e66b366754c2db5e696dfe03476035dc2b02a38d21644f267d31d59eb263e0f66a619fc247fb4d2e0c2 90fde17da662e94fa19d2cd65851380a5f0aa752a70d9ca25662ee657d1816953b15700afc884c71d32139f5dcd88df14924 bb9d9cf0377e65516001279a71b227c292b250a4fd9e10bb3d130100


I need the sitecode...
How do i get it?

As i already wrote my olde script did not work
I attached it as well and i need to put in the correct sitecode in order to get the software working.

newbie
August 15th, 2012, 04:44
BTW i have tried to use CrypKey 7.1 SKG and it gives me Bad CRC for Sitecode ,which means that it's not problem with CrypKey ,i think software Itself Obfuscate it

FoxB
August 15th, 2012, 11:55
CrypKey 7.1 SKG work only for crypkey canada product's

janjan
August 15th, 2012, 12:44
Is there a away to get the real site code or not?
If the site code is encrypted by the software, can't it be extracted from the dump file, or reproduced with the userkey and masterkey?

newbie
August 18th, 2012, 07:40
The software already protected by CrypKey Canada yet sitecode is not working with skg

yescardmen
October 14th, 2012, 03:22
Hi everyone,

Janjan have you found a solution to your problem?
Because i've exactly the same. I've got the master key / userkey, dumped the cp32002, but the sitecode is not obfuscate, just newer for ckinfo and can't be processed.
The software is protected by Crypkey 7.7 Build 7712....

janjan
October 15th, 2012, 15:45
No,
I haven't found any solution yet.
I keep searching and let you know when i do.
Let me know if you do...

spwoof
October 29th, 2012, 11:39
Hi,

Im trying to make one sitekey, but Im getting the error below.
Any one knows how can I fix it?

I used the ckinfo 1.13 and ckinfo 1.14. Both with same error message.

keygen /SITECODE 9F50 C112 6F9F 51C1 1E
CrypKey Copy Protection Information v1.13 and v1.14

Parsing Code - 9F50 C112 6F9F 51C1 1E
Decrypt Failed - Trying v6.00 Decryption...

Error #16: Error occurred decrypting the Site Code - Encryption Keys Not Found

Well, the cryptkey worked with old one sitecode, but there was a software version upgrade, after that I cannot make good sitekey any more.

Is there a way to fix that? Ive got userkey, masterkey maybe to get a sitekey in that new version? Maybe dump the new NGN file or using another method??? Can you give me any help to fix that issue?

Thanks a lot any information about how fix that.

Spwoof

FoxB
October 29th, 2012, 11:46
crypkey has change from v7.6+ cipher keys and ckinfo not have it, imho

spwoof
October 29th, 2012, 11:50
Quote Originally Posted by FoxB View Post
crypkey has change from v7.6+ cipher keys and ckinfo not have it, imho
Ok thanks!

But is there any way to reverse engineering that??? Any method???
Always there is a way. But I dont know how do that yet.

THX a lot

FoxB
October 29th, 2012, 11:52
Try to do something by yourself.

spwoof
October 29th, 2012, 11:57
Quote:
[Originally Posted by FoxB;93565]Try to do something by yourself.


Thanks again.

Im trying. Dump the ngn file... Well, I did do everthing I know. But no good results.
I dont need someone doing for me, I just need know if there is a way and if exist how can I do that?

THX a lot

FoxB
April 16th, 2013, 08:30
@spwoof:

Parsing Code - 9F50 C112 6F9F 51C1 1E
Decrypting Code - 0002 4D37 0544 4F41 76 [0x04:0x0E]
Code Validation - OK
Formatting Code :
02 4D 3705 444F 4176
╚╣ ╚╣ ╠══╝ ╠══╝ ╠══╝
║ ║ ║ ║ ╚═══════════════ Code CRC - 0x4176
Allow Add Licence? - No ═══╣ ║ ║ ╠════════ User Key Hash (Seed) - 0x4F44
Allow Easy Licence? - Yes ═╝ ║ ║ ╚══════════ Drive Serial Number - 20292
CrypKey Libraries - v7.7 ═════╝ ╠═ Account Number - 311
╠═ Application Id - 1
╚═ Company Number - 7956311

burt.muhlenbeim
May 11th, 2013, 11:37
It would be great to understand this process a little better. I've been searching for a while and can't find a good explanation. My process is the following:

open [offending program]
open ollydbg
file->attach crp32002.ngn
plugin->ollydbg pe dumper->make dump of process
debug->close
file->open the saved dumped process file
plugins->ultra string->find ascii
search for something that looks like a site code, in my case right after "get_site_code_1" is "5051 53C4 2895 4762 91"



There are a few problems. One is that site code seems to be associated with crypkey rather than maxsea. The other is that even if I could get the site code, it seems with the version 1.14 of ckinfo available, it wouldn't parse it anyway. I say this because many of the keys posted don't decrypt, giving the error:
Error #16: Error occurred decrypting the Site Code - Encryption Keys Not Found

Is there a path forward or should I just give up? Is my procedure the correct procedure?

FoxB
May 11th, 2013, 11:44
you got dafault SC from Crypkey Canada =)

Parsing Code - 5051 53C4 2895 4762 91
Decrypting Code - 0003 3D00 0455 3353 69 [0x0D:0x14]
Code Validation - OK
Formatting Code :
03 3D 0004 5533 5369
╚╣ ╚╣ ╠══╝ ╠══╝ ╠══╝
║ ║ ║ ║ ╚═══════════════ Code CRC - 0x5369
Allow Add Licence? - Yes ══╣ ║ ║ ╠════════ User Key Hash (Seed) - 0x3355
Allow Easy Licence? - Yes ═╝ ║ ║ ╚═════════ Drive Serial Number - unused
CrypKey Libraries - v6.1 ═════╝ ╠═ Account Number - 0
╠═ Application Id - 1
╚═ Company Number - 79560

for maxsea you have obfuscated SC. he can't use with ckinfo directly

burt.muhlenbeim
May 11th, 2013, 11:51
Right, so was I doing something wrong in my procedure, where I should've at least got the obfuscated SC? If I did get the obfuscated SC would the procedure at http://www.reteam.org/board/printthread.php?t=1868&page=31&pp=10
work? Or is the obfuscated SC a dead end at the current time?

FoxB
May 11th, 2013, 12:02
search in dumped crp32002 string "Copyright (c) 1992-2004 by P.J.Plauger, licensed by Dinkumware, Ltd. ALL RIGHTS RESERVED." press Down - you see UK, MK and press Down again - you see SC

burt.muhlenbeim
May 11th, 2013, 12:42
Couldn't find that string, but with further looking, found this code is also in the dump:

FE13 69CC D696 043F FF

2758

FoxB
May 12th, 2013, 05:53
Parsing Code - FE13 69CC D696 043F FF
Decrypting Code - 0002 4DEF 0F2C FF75 A0 [0x13:0x15]
Code Validation - OK
Formatting Code :
02 4D EF0F 2CFF 75A0
╚╣ ╚╣ ╠══╝ ╠══╝ ╠══╝
║ ║ ║ ║ ╚═══════════════ Code CRC - 0x75A0
Allow Add Licence? - No ═══╣ ║ ║ ╠════════ User Key Hash (Seed) - 0xFF2C
Allow Easy Licence? - Yes ═╝ ║ ║ ╚════ Drive Serial Number (Error) - 212
CrypKey Libraries - v7.7 ═════╝ ╠═ Account Number - 1007
╠═ Application Id - 3
╚═ Company Number - 79561007



you are wrong:
Quote:
Couldn't find that string, but with further looking


004A4FC0: 43 6F 70 79-72 69 67 68-74 20 28 63-29 20 31 39 Copyright (c) 19
004A4FD0: 39 32 2D 32-30 30 34 20-62 79 20 50-2E 4A 2E 20 92-2004 by P.J.
004A4FE0: 50 6C 61 75-67 65 72 2C-20 6C 69 63-65 6E 73 65 Plauger, license
004A4FF0: 64 20 62 79-20 44 69 6E-6B 75 6D 77-61 72 65 2C d by Dinkumware,
004A5000: 20 4C 74 64-2E 20 41 4C-4C 20 52 49-47 48 54 53 Ltd. ALL RIGHTS
004A5010: 20 52 45 53-45 52 56 45-44 2E 00 00-70 7C 48 00 RESERVED. p|H
004A5020: 34 72 49 00-00 00 00 00-2E 3F 41 56-5F 63 6F 6D 4rI .?AV_com
004A5030: 5F 65 72 72-6F 72 40 40-00 00 00 00-00 00 00 00 _error@@
004A5040: 0A 00 00 00-00 00 00 00-04 00 02 80-00 00 00 00
 А
004A5050: FF FF FF FF-00 00 00 00-00 00 00 00-00 00 00 00 ****
004A5060: 00 00 00 00-00 00 00 00-44 31 30 36-35 32 32 45 D106522E
004A5070: 32 33 38 36-37 35 46 30-30 46 00 00-00 00 00 00 238675F00F

burt.muhlenbeim
May 12th, 2013, 08:56
Ok great. I see now that the Copyright was in memory but not in the ollydbg ultra string window. So now for the big question, can I generate a site key? My ckinfo doesn't process it. Also, I'm confused, is the site code in the memory dump obfuscated or not?
Code:

v1.14>ckinfo /createkey site
CrypKey Copy Protection Information v1.14

Key Information...
+ Site Code : FE13 69CC D696 043F FF
Decrypt Failed - Trying v6.00 Decryption...

Error #16: Error occurred decrypting the Site Code - Encryption Keys Not Found

FoxB
May 12th, 2013, 08:58
just ckinfo v1.14 not hold code from crypkey v7.6+

burt.muhlenbeim
May 12th, 2013, 09:01
So then is there a new version available for the benefit of the world?

FoxB
May 12th, 2013, 09:08
no jet, only my own research...

belfa
January 14th, 2014, 05:40
hi all,
i'd like to know the procedure to obtain ac of mstz 2.
the sc that app tell me isn't correct for ckinfo 1.14. i found uk e mk in crp32002 process.
pls helm me.

kjms
January 15th, 2014, 02:38
post the SC & UK & SK here

belfa
January 15th, 2014, 03:41
tks kjms
UK = D106522E238675F00F
MK = 3474d185389670b782b8349c61b59b6830514babb164564fd817be46c8effa895f15af9e859e2abe217d645973ded4422e87 8ff113e6873b58bcb692fc24c8f3ba3817f590566ce03dbd5a7f957dba16b0d724996740367ac2868022214057173354882c 2e8d66a0fc029433874e3a865306caeca5564
SC im not sure if my serial number?
TO 35D1 FCB1 5F0D 7EC6 51
SC AD55 817C 60D6 132F 6A
tks for your help.
belfa

kjms
January 15th, 2014, 07:14
MK length is wrong, better post the dumped xxxx.ngn file here.

belfa
January 15th, 2014, 07:16
3474d185389670b782b8349c61b59b6830514babb164564fd817be46c8effa895f15af9e859e2abe217d645973ded4422e87 8ff113e6873b58bcb692fc24c8f3ba3817f590566ce03dbd5a7f957dba16b0d724996740367ac2868022214057173354882c 2e8d66a0fc029433874e3a865306caeca5564

belfa
January 15th, 2014, 07:25
here the dump

kjms
January 15th, 2014, 07:56
Code:

Parsing Key - 3474 D185 3896 70B7 82B8 349C <..> 454B 88D2 946C B7D0 84F6
Decrypting Key - DAFE 0000 EF0F 0000 0000 0046 0300 0000 0100 0000 0000 0000
0000 0000 0000 0000 0000 0000 0000 4D41 5853 4541 2E4C 4943
0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
0000 0000 0000 0000 0000 0000 0000 0000 0000 0000 D2D7
Key Validation - OK
Formatting Key :
0000 EF0F 00460300 0000:0000 4D41585345412E4C494300000000 D2D7
╚══╣ ╠══╝ ╠══════╝ ╚═══════╣ ╠══════════════════════════╝ ╚══╣
╔═ Allow Modules ═╝ ║ ║ ╔══════════════╝ ╚═════ Filename - MAXSEA.LIC ║
╠═ WinNT16? - Yes ║ ║ ╠══ Maximum Modules - 0 CRC - 0xD2D7 ═══╝
╠═ WinNT32? - Yes ║ ║ ╚══ Network Seats (Site Key: 1 / Max: 0)
╚═ Network? - Yes ║ ╠════ Static Key? - Yes
║ ╠════ USBKey? - No
║ ╠════ VM Protection? - No
║ ╠════ Licence File (CLF)? - No
║ ╚════ v7+ Key? - Yes (v7.0)
╠═══ Account Number - 1007
╠═══ Application Id - 3
╚═══ Company Number - 79561007


Parsing Key - D106 522E 2386 75F0 0F
Decrypting Key - 0709 060B 0A06 0606 00
Key Validation - OK
Formatting Key :
09060B0A06060600
╠══════════════╝
╠═══ Password - N7ZW777
╠═══ Password Number - 1055936055
╠═══ User Key Hash (1) - 0x36
╚═══ User Key Hash (2) - 0x60AA

Parsing Code - 3D7D E4B5 72E3 9D76 FC
Decrypting Code - 0002 4DEF 0F55 51D7 8C [0x1A:0x1A]
Code Validation - OK
Formatting Code :
02 4D EF0F 5551 D78C
╚╣ ╚╣ ╠══╝ ╠══╝ ╠══╝
║ ║ ║ ║ ╚═══════════════ Code CRC - 0xD78C
Allow Add Licence? - No ═══╣ ║ ║ ╠════════ User Key Hash (Seed) - 0x5155
Allow Easy Licence? - Yes ═╝ ║ ║ ╚══════════ Drive Serial Number - 20821
CrypKey Libraries - v7.7 ═════╝ ╠═ Account Number - 1007
╠═ Application Id - 3
╚═ Company Number - 79561007

belfa
January 15th, 2014, 08:02
tis very much.
now i've US, MK, SC right?
and than? pls helm me i want to learn