下载地址http://wan3d.com/down/3dss.rar
ASPack 2.12 -> Alexey Solodovnikov [Overlay]
脱了。处理附加数据。
下了内存断点
BP SetWindowTextA
一直跟到这里
0088439E 837D F8 01 CMP DWORD PTR SS:[EBP-8],1
008843A2 /0F85 DF000000 JNZ ok.00884487 这里是一个大跳转,开始跟到这个跳转后,发现在了注册码错误的提示
后来经过修改过。让程序继续往下走。不跳。
008843A8 |6A 00 PUSH 0
008843AA |68 20A14000 PUSH ok.0040A120
008843AF |6A FF PUSH -1
008843B1 |6A 0A PUSH 0A
008843B3 |68 06000116 PUSH 16010006
008843B8 |68 01000152 PUSH 52010001
008843BD |E8 B96B0000 CALL ok.0088AF7B
008843C2 |83C4 18 ADD ESP,18
008843C5 |6A 00 PUSH 0
008843C7 |68 00000000 PUSH 0
008843CC |6A FF PUSH -1
008843CC 6A FF PUSH -1
008843CE 6A 06 PUSH 6
008843D0 68 50090116 PUSH 16010950
008843D5 68 01000152 PUSH 52010001
008843DA E8 9C6B0000 CALL ok.0088AF7B
008843DF 83C4 18 ADD ESP,18
008843E2 68 1E000000 PUSH 1E
008843E7 FF35 A8000000 PUSH DWORD PTR DS:[A8]
008843ED E8 F6C7FBFF CALL ok.00840BE8
008843F2 83C4 08 ADD ESP,8
008843F5 83F8 00 CMP EAX,0
008843F8 0F85 29000000 JNZ ok.00884427
008843FE 6A 00 PUSH 0
00884400 6A 00 PUSH 0
00884402 6A 00 PUSH 0
00884404 68 06000080 PUSH 80000006
00884409 6A 00 PUSH 0
0088440B 68 4F3E0400 PUSH 43E4F
00884410 68 02000000 PUSH 2
00884415 BB 00000000 MOV EBX,0
0088441A B8 02000000 MOV EAX,2
0088441F E8 336B0000 CALL ok.0088AF57
00884424 83C4 1C ADD ESP,1C
00884427 68 01000000 PUSH 1
0088442C E8 C7EBFBFF CALL ok.00842FF8
00884431 8945 FC MOV DWORD PTR SS:[EBP-4],EAX
00884434 68 04000080 PUSH 80000004
00884439 6A 00 PUSH 0
0088443B 68 68101200 PUSH 121068
00884440 68 01030080 PUSH 80000301
00884445 6A 00 PUSH 0
00884447 68 40000000 PUSH 40
0088444C 68 04000080 PUSH 80000004
00884451 6A 00 PUSH 0
00884453 8B45 FC MOV EAX,DWORD PTR SS:[EBP-4]
00884456 85C0 TEST EAX,EAX
00884458 75 05 JNZ SHORT ok.0088445F
0088445A B8 00000000 MOV EAX,0
0088445F 50 PUSH EAX
00884460 68 03000000 PUSH 3
00884465 BB 00030000 MOV EBX,300
0088446A E8 FA6A0000 CALL ok.0088AF69 跟进发现这里就是提示注册成功
0088446F 83C4 28 ADD ESP,28
00884472 8B5D FC MOV EBX,DWORD PTR SS:[EBP-4]
00884475 85DB TEST EBX,EBX
00884477 74 09 JE SHORT ok.00884482
00884479 53 PUSH EBX
0088447A E8 D26A0000 CALL ok.0088AF51
0088447F 83C4 04 ADD ESP,4
00884482 E9 5B000000 JMP ok.008844E2
00884487 68 04000000 PUSH 4
0088448C E8 67EBFBFF CALL ok.00842FF8
00884491 8945 FC MOV DWORD PTR SS:[EBP-4],EAX
00884494 68 04000080 PUSH 80000004
00884499 6A 00 PUSH 0
0088449B 68 68101200 PUSH 121068
008844A0 68 01030080 PUSH 80000301
008844A5 6A 00 PUSH 0
008844A7 68 40000000 PUSH 40
008844AC 68 04000080 PUSH 80000004
008844B1 6A 00 PUSH 0
008844B3 8B45 FC MOV EAX,DWORD PTR SS:[EBP-4]
008844B6 85C0 TEST EAX,EAX
008844B8 75 05 JNZ SHORT ok.008844BF
008844BA B8 00000000 MOV EAX,0
008844BF 50 PUSH EAX
008844C0 68 03000000 PUSH 3
008844C5 BB 00030000 MOV EBX,300
008844CA E8 9A6A0000 CALL ok.0088AF69
008844CF 83C4 28 ADD ESP,28
008844D2 8B5D FC MOV EBX,DWORD PTR SS:[EBP-4]
008844D5 85DB TEST EBX,EBX
008844D7 74 09 JE SHORT ok.008844E2
008844D9 53 PUSH EBX
008844DA E8 726A0000 CALL ok.0088AF51
008844DF 83C4 04 ADD ESP,4
008844E2 68 01000100 PUSH 10001
008844E7 68 B3010106 PUSH 60101B3
008844EC 68 B4010152 PUSH 520101B4
008844F1 68 01000000 PUSH 1
008844F6 BB 60030000 MOV EBX,360
008844FB E8 696A0000 CALL ok.0088AF69
00884500 83C4 10 ADD ESP,10
00884503 8BE5 MOV ESP,EBP
00884505 5D POP EBP
00884506 C3 RETN
想爆力破解。。。。可惜不成功。点注册,提示注册成功可程序还是没有注册
比较注册码的地方选了几个发现在都不行
也找不到明码比较
我想问像这样的没有明码比较的软件,破解的时候应该怎么入手?
[招生]科锐逆向工程师培训(2024年11月15日实地,远程教学同时开班, 第51期)
