求助注册算法问题！-付费问答-看雪-安全社区|安全招聘|kanxue.com

[旧帖] 求助注册算法问题！ 0.00雪花

发表于: 2010-4-30 08:48 2875

[旧帖] 求助注册算法问题！ 0.00雪花

duyu

活跃值

2010-4-30 08:48

2875

破解一个程序的时候跟到了注册算法地方了，可是自己汇编学的实在是不咋地。听说貌似网上有汇编转C语音的程序？高手指点一下。。。如果没有的话，谁帮帮忙分析一下下面程序段的算法也行啊。谢谢啦。。
0040BDEA  /.  55          PUSH EBP
0040BDEB  |.  8BEC       MOV EBP,ESP
0040BDED  |.  81EC 18000000 SUB ESP,18
0040BDF3  |.  C745 FC 00000>MOV DWORD PTR SS:[EBP-4],0
0040BDFA  |.  C745 F8 00000>MOV DWORD PTR SS:[EBP-8],0
0040BE01  |.  68 00000000 PUSH 0
0040BE06  |.  BB B0F14000 MOV EBX,1.0040F1B0                      ;  j
0040BE0B  |.  E8 9C2F0000 CALL 1.0040EDAC
0040BE10  |.  83C4 04    ADD ESP,4
0040BE13  |.  8945 F4    MOV DWORD PTR SS:[EBP-C],EAX
0040BE16  |.  8B45 F4    MOV EAX,DWORD PTR SS:[EBP-C]
0040BE19  |.  50          PUSH EAX
0040BE1A  |.  8B5D FC    MOV EBX,DWORD PTR SS:[EBP-4]
0040BE1D  |.  85DB       TEST EBX,EBX
0040BE1F  |.  74 09       JE SHORT 1.0040BE2A
0040BE21  |.  53          PUSH EBX
0040BE22  |.  E8 672F0000 CALL 1.0040ED8E
0040BE27  |.  83C4 04    ADD ESP,4
0040BE2A  |>  58          POP EAX
0040BE2B  |.  8945 FC    MOV DWORD PTR SS:[EBP-4],EAX
0040BE2E  |.  68 00000000 PUSH 0
0040BE33  |.  BB B0F14000 MOV EBX,1.0040F1B0                      ;  j
0040BE38  |.  E8 6F2F0000 CALL 1.0040EDAC
0040BE3D  |.  83C4 04    ADD ESP,4
0040BE40  |.  8945 F4    MOV DWORD PTR SS:[EBP-C],EAX
0040BE43  |.  68 01030080 PUSH 80000301
0040BE48  |.  6A 00       PUSH 0
0040BE4A  |.  68 01000000 PUSH 1
0040BE4F  |.  68 04000080 PUSH 80000004
0040BE54  |.  6A 00       PUSH 0
0040BE56  |.  8B45 F4    MOV EAX,DWORD PTR SS:[EBP-C]
0040BE59  |.  85C0       TEST EAX,EAX
0040BE5B  |.  75 05       JNZ SHORT 1.0040BE62
0040BE5D  |.  B8 61BB4D00 MOV EAX,1.004DBB61
0040BE62  |>  50          PUSH EAX
0040BE63  |.  68 02000000 PUSH 2
0040BE68  |.  BB 60F44000 MOV EBX,1.0040F460
0040BE6D  |.  E8 3A2F0000 CALL 1.0040EDAC
0040BE72  |.  83C4 1C    ADD ESP,1C
0040BE75  |.  8945 F0    MOV DWORD PTR SS:[EBP-10],EAX
0040BE78  |.  8B5D F4    MOV EBX,DWORD PTR SS:[EBP-C]
0040BE7B  |.  85DB       TEST EBX,EBX
0040BE7D  |.  74 09       JE SHORT 1.0040BE88
0040BE7F  |.  53          PUSH EBX
0040BE80  |.  E8 092F0000 CALL 1.0040ED8E
0040BE85  |.  83C4 04    ADD ESP,4
0040BE88  |>  68 5A285D00 PUSH 1.005D285A                         ;  \
0040BE8D  |.  FF75 F0    PUSH DWORD PTR SS:[EBP-10]
0040BE90  |.  E8 2053FFFF CALL 1.004011B5
0040BE95  |.  83C4 08    ADD ESP,8
0040BE98  |.  83F8 00    CMP EAX,0
0040BE9B  |.  B8 00000000 MOV EAX,0
0040BEA0  |.  0F95C0       SETNE AL
0040BEA3  |.  8945 EC    MOV DWORD PTR SS:[EBP-14],EAX
0040BEA6  |.  8B5D F0    MOV EBX,DWORD PTR SS:[EBP-10]
0040BEA9  |.  85DB       TEST EBX,EBX
0040BEAB  |.  74 09       JE SHORT 1.0040BEB6
0040BEAD  |.  53          PUSH EBX
0040BEAE  |.  E8 DB2E0000 CALL 1.0040ED8E
0040BEB3  |.  83C4 04    ADD ESP,4
0040BEB6  |>  837D EC 00 CMP DWORD PTR SS:[EBP-14],0
0040BEBA  |.  0F84 55000000 JE 1.0040BF15
0040BEC0  |.  68 00000000 PUSH 0
0040BEC5  |.  BB B0F14000 MOV EBX,1.0040F1B0                      ;  j
0040BECA  |.  E8 DD2E0000 CALL 1.0040EDAC
0040BECF  |.  83C4 04    ADD ESP,4
0040BED2  |.  8945 F4    MOV DWORD PTR SS:[EBP-C],EAX
0040BED5  |.  68 5A285D00 PUSH 1.005D285A                         ; /\
0040BEDA  |.  FF75 F4    PUSH DWORD PTR SS:[EBP-C]             ; |Arg1
0040BEDD  |.  B9 02000000 MOV ECX,2                               ; |
0040BEE2  |.  E8 8851FFFF CALL 1.0040106F                         ; \1.0040106F
0040BEE7  |.  83C4 08    ADD ESP,8
0040BEEA  |.  8945 F0    MOV DWORD PTR SS:[EBP-10],EAX
0040BEED  |.  8B5D F4    MOV EBX,DWORD PTR SS:[EBP-C]
0040BEF0  |.  85DB       TEST EBX,EBX
0040BEF2  |.  74 09       JE SHORT 1.0040BEFD
0040BEF4  |.  53          PUSH EBX
0040BEF5  |.  E8 942E0000 CALL 1.0040ED8E
0040BEFA  |.  83C4 04    ADD ESP,4
0040BEFD  |>  8B45 F0    MOV EAX,DWORD PTR SS:[EBP-10]
0040BF00  |.  50          PUSH EAX
0040BF01  |.  8B5D FC    MOV EBX,DWORD PTR SS:[EBP-4]
0040BF04  |.  85DB       TEST EBX,EBX
0040BF06  |.  74 09       JE SHORT 1.0040BF11
0040BF08  |.  53          PUSH EBX
0040BF09  |.  E8 802E0000 CALL 1.0040ED8E
0040BF0E  |.  83C4 04    ADD ESP,4
0040BF11  |>  58          POP EAX
0040BF12  |.  8945 FC    MOV DWORD PTR SS:[EBP-4],EAX
0040BF15  |>  68 20F76700 PUSH 1.0067F720                         ; /配置文本.ini
0040BF1A  |.  FF75 FC    PUSH DWORD PTR SS:[EBP-4]             ; |Arg1
0040BF1D  |.  B9 02000000 MOV ECX,2                               ; |
0040BF22  |.  E8 4851FFFF CALL 1.0040106F                         ; \1.0040106F
0040BF27  |.  83C4 08    ADD ESP,8
0040BF2A  |.  8945 F4    MOV DWORD PTR SS:[EBP-C],EAX
0040BF2D  |.  6A FF       PUSH -1
0040BF2F  |.  6A 08       PUSH 8
0040BF31  |.  68 8F030116 PUSH 1601038F
0040BF36  |.  68 C7020152 PUSH 520102C7
0040BF3B  |.  E8 662E0000 CALL 1.0040EDA6
0040BF40  |.  83C4 10    ADD ESP,10
0040BF43  |.  8945 F0    MOV DWORD PTR SS:[EBP-10],EAX
0040BF46  |.  68 04000080 PUSH 80000004
0040BF4B  |.  6A 00       PUSH 0
0040BF4D  |.  8B45 F0    MOV EAX,DWORD PTR SS:[EBP-10]
0040BF50  |.  85C0       TEST EAX,EAX
0040BF52  |.  75 05       JNZ SHORT 1.0040BF59
0040BF54  |.  B8 61BB4D00 MOV EAX,1.004DBB61
0040BF59  |>  50          PUSH EAX
0040BF5A  |.  68 04000080 PUSH 80000004
0040BF5F  |.  6A 00       PUSH 0
0040BF61  |.  68 2DF76700 PUSH 1.0067F72D                         ;  注册码
0040BF66  |.  68 04000080 PUSH 80000004
0040BF6B  |.  6A 00       PUSH 0
0040BF6D  |.  68 34F76700 PUSH 1.0067F734                         ;  注册
0040BF72  |.  68 04000080 PUSH 80000004
0040BF77  |.  6A 00       PUSH 0
0040BF79  |.  8B45 F4    MOV EAX,DWORD PTR SS:[EBP-C]
0040BF7C  |.  85C0       TEST EAX,EAX
0040BF7E  |.  75 05       JNZ SHORT 1.0040BF85
0040BF80  |.  B8 61BB4D00 MOV EAX,1.004DBB61
0040BF85  |>  50          PUSH EAX
0040BF86  |.  68 04000000 PUSH 4
0040BF8B  |.  BB C01C4100 MOV EBX,1.00411CC0
0040BF90  |.  E8 172E0000 CALL 1.0040EDAC
0040BF95  |.  83C4 34    ADD ESP,34
0040BF98  |.  8945 EC    MOV DWORD PTR SS:[EBP-14],EAX
0040BF9B  |.  8B5D F4    MOV EBX,DWORD PTR SS:[EBP-C]
0040BF9E  |.  85DB       TEST EBX,EBX
0040BFA0  |.  74 09       JE SHORT 1.0040BFAB
0040BFA2  |.  53          PUSH EBX
0040BFA3  |.  E8 E62D0000 CALL 1.0040ED8E
0040BFA8  |.  83C4 04    ADD ESP,4
0040BFAB  |>  8B5D F0    MOV EBX,DWORD PTR SS:[EBP-10]
0040BFAE  |.  85DB       TEST EBX,EBX
0040BFB0  |.  74 09       JE SHORT 1.0040BFBB
0040BFB2  |.  53          PUSH EBX
0040BFB3  |.  E8 D62D0000 CALL 1.0040ED8E
0040BFB8  |.  83C4 04    ADD ESP,4
0040BFBB  |>  837D EC 00 CMP DWORD PTR SS:[EBP-14],0
0040BFBF  |.  0F85 30000000 JNZ 1.0040BFF5
0040BFC5  |.  6A 00       PUSH 0
0040BFC7  |.  6A 00       PUSH 0
0040BFC9  |.  6A 00       PUSH 0
0040BFCB  |.  68 01030080 PUSH 80000301
0040BFD0  |.  6A 00       PUSH 0
0040BFD2  |.  68 00000000 PUSH 0
0040BFD7  |.  68 04000080 PUSH 80000004
0040BFDC  |.  6A 00       PUSH 0
0040BFDE  |.  68 39F76700 PUSH 1.0067F739                         ;  写配置项失败
0040BFE3  |.  68 03000000 PUSH 3
0040BFE8  |.  BB C00E4100 MOV EBX,1.00410EC0
0040BFED  |.  E8 BA2D0000 CALL 1.0040EDAC
0040BFF2  |.  83C4 28    ADD ESP,28
0040BFF5  |>  68 20F76700 PUSH 1.0067F720                         ; /配置文本.ini
0040BFFA  |.  FF75 FC    PUSH DWORD PTR SS:[EBP-4]             ; |Arg1
0040BFFD  |.  B9 02000000 MOV ECX,2                               ; |
0040C002  |.  E8 6850FFFF CALL 1.0040106F                         ; \1.0040106F
0040C007  |.  83C4 08    ADD ESP,8
0040C00A  |.  8945 F4    MOV DWORD PTR SS:[EBP-C],EAX
0040C00D  |.  6A 00       PUSH 0
0040C00F  |.  6A 00       PUSH 0
0040C011  |.  6A 00       PUSH 0
0040C013  |.  68 04000080 PUSH 80000004
0040C018  |.  6A 00       PUSH 0
0040C01A  |.  68 2DF76700 PUSH 1.0067F72D                         ;  注册码
0040C01F  |.  68 04000080 PUSH 80000004
0040C024  |.  6A 00       PUSH 0
0040C026  |.  68 34F76700 PUSH 1.0067F734                         ;  注册
0040C02B  |.  68 04000080 PUSH 80000004
0040C030  |.  6A 00       PUSH 0
0040C032  |.  8B45 F4    MOV EAX,DWORD PTR SS:[EBP-C]
0040C035  |.  85C0       TEST EAX,EAX
0040C037  |.  75 05       JNZ SHORT 1.0040C03E
0040C039  |.  B8 61BB4D00 MOV EAX,1.004DBB61
0040C03E  |>  50          PUSH EAX
0040C03F  |.  68 04000000 PUSH 4
0040C044  |.  BB F01B4100 MOV EBX,1.00411BF0
0040C049  |.  E8 5E2D0000 CALL 1.0040EDAC
0040C04E  |.  83C4 34    ADD ESP,34
0040C051  |.  8945 F0    MOV DWORD PTR SS:[EBP-10],EAX
0040C054  |.  8B5D F4    MOV EBX,DWORD PTR SS:[EBP-C]
0040C057  |.  85DB       TEST EBX,EBX
0040C059  |.  74 09       JE SHORT 1.0040C064
0040C05B  |.  53          PUSH EBX
0040C05C  |.  E8 2D2D0000 CALL 1.0040ED8E
0040C061  |.  83C4 04    ADD ESP,4
0040C064  |>  8B45 F0    MOV EAX,DWORD PTR SS:[EBP-10]
0040C067  |.  50          PUSH EAX
0040C068  |.  8B5D F8    MOV EBX,DWORD PTR SS:[EBP-8]
0040C06B  |.  85DB       TEST EBX,EBX
0040C06D  |.  74 09       JE SHORT 1.0040C078
0040C06F  |.  53          PUSH EBX
0040C070  |.  E8 192D0000 CALL 1.0040ED8E
0040C075  |.  83C4 04    ADD ESP,4
0040C078  |>  58          POP EAX
0040C079  |.  8945 F8    MOV DWORD PTR SS:[EBP-8],EAX
0040C07C  |.  68 00000000 PUSH 0
0040C081  |.  BB F0194100 MOV EBX,1.004119F0                      ;  j
0040C086  |.  E8 212D0000 CALL 1.0040EDAC
0040C08B  |.  83C4 04    ADD ESP,4
0040C08E  |.  68 01030080 PUSH 80000301
0040C093  |.  6A 00       PUSH 0
0040C095  |.  50          PUSH EAX
0040C096  |.  68 01000000 PUSH 1
0040C09B  |.  BB 70FC4000 MOV EBX,1.0040FC70
0040C0A0  |.  E8 072D0000 CALL 1.0040EDAC
0040C0A5  |.  83C4 10    ADD ESP,10
0040C0A8  |.  8945 F0    MOV DWORD PTR SS:[EBP-10],EAX
0040C0AB  |.  68 04000080 PUSH 80000004
0040C0B0  |.  6A 00       PUSH 0
0040C0B2  |.  68 46F76700 PUSH 1.0067F746                         ;  abedd8da8ebfc6f0aba21d115e3ca7769dd0912ea1
0040C0B7  |.  68 04000080 PUSH 80000004
0040C0BC  |.  6A 00       PUSH 0
0040C0BE  |.  68 71F76700 PUSH 1.0067F771                         ;  1098b
0040C0C3  |.  68 04000080 PUSH 80000004
0040C0C8  |.  6A 00       PUSH 0
0040C0CA  |.  8B45 F8    MOV EAX,DWORD PTR SS:[EBP-8]
0040C0CD  |.  85C0       TEST EAX,EAX
0040C0CF  |.  75 05       JNZ SHORT 1.0040C0D6
0040C0D1  |.  B8 61BB4D00 MOV EAX,1.004DBB61
0040C0D6  |>  50          PUSH EAX
0040C0D7  |.  68 05000080 PUSH 80000005
0040C0DC  |.  6A 00       PUSH 0
0040C0DE  |.  8B45 F0    MOV EAX,DWORD PTR SS:[EBP-10]
0040C0E1  |.  85C0       TEST EAX,EAX
0040C0E3  |.  75 05       JNZ SHORT 1.0040C0EA
0040C0E5  |.  B8 08285D00 MOV EAX,1.005D2808
0040C0EA  |>  50          PUSH EAX
0040C0EB  |.  68 04000000 PUSH 4
0040C0F0  |.  B8 04000000 MOV EAX,4
0040C0F5  |.  BB D06D4800 MOV EBX,1.00486DD0
0040C0FA  |.  E8 952C0000 CALL 1.0040ED94
0040C0FF  |.  83C4 34    ADD ESP,34
0040C102  |.  8945 EC    MOV DWORD PTR SS:[EBP-14],EAX
0040C105  |.  8B5D F0    MOV EBX,DWORD PTR SS:[EBP-10]
0040C108  |.  85DB       TEST EBX,EBX
0040C10A  |.  74 09       JE SHORT 1.0040C115
0040C10C  |.  53          PUSH EBX
0040C10D  |.  E8 7C2C0000 CALL 1.0040ED8E
0040C112  |.  83C4 04    ADD ESP,4
0040C115  |>  837D EC 01 CMP DWORD PTR SS:[EBP-14],1
0040C119  |.  74 39       JE SHORT 1.0040C154
0040C11B  |.  90          NOP
0040C11C  |.  90          NOP
0040C11D  |.  90          NOP
0040C11E  |.  90          NOP
0040C11F  |.  6A 00       PUSH 0
0040C121  |.  6A 00       PUSH 0
0040C123  |.  6A 00       PUSH 0
0040C125  |.  68 01030080 PUSH 80000301
0040C12A  |.  6A 00       PUSH 0
0040C12C  |.  68 40000000 PUSH 40
0040C131  |.  68 04000080 PUSH 80000004
0040C136  |.  6A 00       PUSH 0
0040C138  |.  68 77F76700 PUSH 1.0067F777                         ;  恭喜你,注册成功！请重启软件.
0040C13D  |.  68 03000000 PUSH 3
0040C142  |.  BB C00E4100 MOV EBX,1.00410EC0
0040C147  |.  E8 602C0000 CALL 1.0040EDAC
0040C14C  |.  83C4 28    ADD ESP,28
0040C14F  |.  E9 30000000 JMP 1.0040C184
0040C154  |>  6A 00       PUSH 0
0040C156  |.  6A 00       PUSH 0
0040C158  |.  6A 00       PUSH 0
0040C15A  |.  68 01030080 PUSH 80000301
0040C15F  |.  6A 00       PUSH 0
0040C161  |.  68 10000000 PUSH 10
0040C166  |.  68 04000080 PUSH 80000004
0040C16B  |.  6A 00       PUSH 0
0040C16D  |.  68 94F76700 PUSH 1.0067F794                         ;  注册码不正确！
0040C172  |.  68 03000000 PUSH 3
0040C177  |.  BB C00E4100 MOV EBX,1.00410EC0
0040C17C  |.  E8 2B2C0000 CALL 1.0040EDAC
0040C181  |.  83C4 28    ADD ESP,28
0040C184  |>  8B5D FC    MOV EBX,DWORD PTR SS:[EBP-4]
0040C187  |.  85DB       TEST EBX,EBX
0040C189  |.  74 09       JE SHORT 1.0040C194
0040C18B  |.  53          PUSH EBX
0040C18C  |.  E8 FD2B0000 CALL 1.0040ED8E
0040C191  |.  83C4 04    ADD ESP,4
0040C194  |>  8B5D F8    MOV EBX,DWORD PTR SS:[EBP-8]
0040C197  |.  85DB       TEST EBX,EBX
0040C199  |.  74 09       JE SHORT 1.0040C1A4
0040C19B  |.  53          PUSH EBX
0040C19C  |.  E8 ED2B0000 CALL 1.0040ED8E
0040C1A1  |.  83C4 04    ADD ESP,4
0040C1A4  |>  8BE5       MOV ESP,EBP
0040C1A6  |.  5D          POP EBP
0040C1A7  \.  C3          RETN

[课程]Android-CTF解题方法汇总！

收藏・0

免费・0

支持

分享

最新回复 (7)
rol 雪币： 360 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 4 回帖 166 粉丝 0 关注私信	rol 2 楼传说中的e? 好多call不明白什么意思啊 2010-4-30 08:54 0
duyu 雪币： 223 活跃值： (12) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 24 粉丝 0 关注私信	duyu 3 楼恩这个事E语言的 2010-4-30 09:15 0
duyu 雪币： 223 活跃值： (12) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 24 粉丝 0 关注私信	duyu 4 楼对呀可以告诉我哪个地方看出是E语言的？ 2010-4-30 09:17 0
GUX 雪币： 268 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 139 粉丝 0 关注私信	GUX 5 楼 IDA PRO有个插件Hex-Rays可以将汇编代码转为C代码 2010-4-30 09:59 0
rol 雪币： 360 活跃值： (10) 能力值： ( LV2，RANK：10 ) 在线值：发帖 4 回帖 166 粉丝 0 关注私信	rol 6 楼我的意思是光给这些还不太可能看出算法，把程序传上来，就有可能把牛引出来了 2010-4-30 10:50 0
duyu 雪币： 223 活跃值： (12) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 24 粉丝 0 关注私信	duyu 7 楼根本就没用过IDA呢先试试看了哦 2010-4-30 10:55 0
duyu 雪币： 223 活跃值： (12) 能力值： ( LV2，RANK：10 ) 在线值：发帖 1 回帖 24 粉丝 0 关注私信	duyu 8 楼程序是千里目远程控制2.7 提供个地址吧。 http://www.61538.com/qlm2.7.rar 2010-4-30 10:58 0
	游客登录 \| 注册方可回帖回帖表情雪币赚取及消费高级回复

返回

duyu

发帖

回帖

RANK

他的文章

求助注册算法问题！ 2876

看雪公众号

专注于PC、移动、智能设备安全研究及逆向工程的开发者社区

//