-
-
[原创]第五题分析
-
发表于: 2016-11-11 15:24
-
论坛排版好难,直接发图了
分析完后,还是用穷举吧,只有6位长度,而且全是数字,穷举很快,以下是穷举代码,要注入到CrackMe中
正确注册码为:771535
以上,谢谢观看
分析完后,还是用穷举吧,只有6位长度,而且全是数字,穷举很快,以下是穷举代码,要注入到CrackMe中
char b[] = {0xF4, 0x12, 0x9D, 0x60, 0x45, 0xF8, 0x20, 0x6A, 0x6F, 0x67,
0x04, 0x71, 0xC0, 0x9B, 0x0C, 0x5A, 0x1D, 0x18, 0x6C, 0x96,
0x69, 0x01, 0x1C, 0xF4, 0x7F, 0x28, 0x5A, 0xFB, 0x29, 0x07,
0x40, 0x8B, 0xD3, 0xE1, 0xB1, 0x12, 0xFB, 0xCA, 0x7C, 0x89,
0xB9, 0x5A, 0x30, 0x70, 0x9D, 0x95, 0x2B, 0x95, 0x3C, 0x8D,
0x2E, 0x45, 0xEF, 0x70, 0xC6, 0xA3, 0xB9, 0xB2, 0x5A, 0x63,
0x5F, 0x03, 0x33, 0xB8, 0x64, 0x4A, 0x8F, 0xBC, 0xF7, 0x91,
0x69, 0x6A, 0x56, 0x2E, 0xD4, 0x6E, 0x82, 0x93, 0xE9, 0x76,
0xDC, 0xA3, 0x6C, 0x5E, 0x6B, 0x72, 0x64, 0x37, 0xE7, 0x15,
0x17, 0xAC, 0x64, 0x78, 0xD5, 0x4A, 0x60, 0x2D, 0xF0, 0x54,
0xA6, 0xF3, 0xE8, 0xE0, 0xE0, 0xB9, 0x8F, 0x85, 0x90, 0xE4,
0xEA, 0xD6, 0xBB, 0xB7, 0x15, 0x9E, 0x2A, 0x44, 0xE7, 0x31,
0x63, 0xAC, 0x80, 0x6C, 0x34, 0x82, 0xE9, 0xCF};
for( int i = 0; i < 999999; ++ i )
{
char s[10];
sprintf( s, "%06d", i );
BOOL r = FALSE;
__asm
{
push 6
lea eax, dword ptr [s]
push eax
mov eax, 401000h
call eax
add esp, 08h
mov eax, 4010c0h
call eax
mov r, eax
}
if( r )
{
MessageBox( NULL, s, "found", 0 );
}
else
{
memcpy( (void*)0x406030, b, sizeof(b) );
}
}
正确注册码为:771535
以上,谢谢观看
[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入!
