Results 1 to 5 of 5

Thread: is this code tricking me ?

  1. #1
    __DuDu__
    Guest

    is this code tricking me ?

    MOV EAX,[0040B760] ; EAX = Ah that is the lenght of the entered serial
    CMP EAX,[0040B768] ; Compare EAX to the right serial ?! if yes where's the right serial ? d *40b768 or d 40b768 ?
    JNZ 00408A12 ; jump if serial isn't equal EAX (if i patch this to je it goes to the registered msgbox else nothing happens)

    Tnx in Advance
    DuDu

    /me slaps spiaj and kilby for being bad guys in my last post, be nice now
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2
    CoDe_InSiDe
    Guest
    Hi __DuDu__,

    Your saying that if you Patch the JNZ to JZ you get the Registered Message Box?
    But if i see about what you posted, it only Compares the Serial Length with the correct Length ?
    Maybe some more info...?

    Cya...

    CoDe_InSiDe
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  3. #3
    __DuDu__
    Guest
    Hey CoDe_InSiDe :-)

    Your saying that if you Patch the JNZ to JZ you get the Registered Message Box?
    yes, patching it i get the 'Thanks for Registering MsgBox'

    [quote]But if i see about what you posted, it only Compares the Serial Length with the correct Length ? ? 0040B768 d 0040B768 d *0040B768 ? whitch one of them ?

    I think so, but how can I get the lenght thats being compared with the len of the entered serial ??

    im thinking im in a protection that only checks the lenght of the serial

    Tnx in Advance
    __DuDu__
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  4. #4
    CoDe_InSiDe
    Guest
    Hi __DuDu__,

    Oh hehe
    Then just use "d 40B768" and look in the Data Window

    Cya...

    CoDe_InSiDe
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  5. #5
    __Dudu__
    Guest
    Hi Code, tnx for helping me, look i did what u did say to me and got it
    :? eax
    0000000A 0000000010 ""
    : d 0040B768

    018F:0040B768 02 00 00 00 B0 08 B7 00-00 00 00 00 00 00 00 00 ................
    018F:0040B778 00 01 00 00 00 00 00 00-00 00 00 00 00 00 00 00 ................

    so, is it comparing my serial to 2 ? dont think so coz it didnt jump when i passed the instruction

    tnx in advance
    I promise that I have read the FAQ and tried to use the Search to answer my question.

Similar Threads

  1. Different papers about SMC, polymorph code and anti trace code...
    By OHPen in forum Advanced Reversing and Programming
    Replies: 7
    Last Post: March 29th, 2007, 15:45

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •