[P-CODE]cscg-crackme 0.1 算法分析

飘云 · 发表于 2007-6-17 09:06:10

【破文标题】[P-CODE]cscg-crackme 0.1 算法分析
【破文作者】飘云[PYG]
【作者邮箱】[email protected]
【作者主页】BBS.CHINAPYG.COM
【破解工具】Peid0.94,OllyDbg,VB
【破解平台】Win9x/NT/2000/XP
【软件名称】cscg-crackme 0.1
【软件大小】15kb
【原版下载】https://www.chinapyg.com/viewthread.php?tid=7727
【保护方式】用户名+序列号
【软件简介】cscg-crackme 0.1
VB P-CODE方式编译
【破解声明】我是一只菜菜鸟，偶得一点心得，愿与大家分享！^_^
------------------------------------------------------------------------
【破解过程】

:00405778 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★用户名输入框
|
:0040577B 0DA0000000 VCallHresult ;Call ptr_00402CB4
:00405780 2834FF0100 LitVarI2 ;PushVarInteger 0001 //★参数：1
:00405785 F505000000 LitI4 ;Push 00000005 //★参数：5
:0040578A 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:0040578D 4654FF CVarStr ;
:00405790 0414FF FLdRfVar ;Push LOCAL_00EC
**********Reference To->msvbvm60.rtcMidCharVar //★截取用户名第5位
|
:00405793 0A04001000 ImpAdCallFPR4 ;Call ptr_00401056; check stack 0010; Push EAX
:00405798 0414FF FLdRfVar ;Push LOCAL_00EC
:0040579B FCF6C4FE FStVar ;
:0040579F 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:004057A2 36040054FF34FF FFreeVar ;Free 0004/2 variants
:004057A9 04C4FE FLdRfVar ;Push LOCAL_013C
******Possible String Ref To->""
|
:004057AC 3A64FF0500 LitVarStr ;PushVarString ptr_00402CF0
:004057B1 5D HardType ;
:004057B2 FB33 EqVarBool ;
:004057B4 1C5C01 BranchF ;If Pop=0 then ESI=00405808 //★是否为空~~
******Possible String Ref To->"" //★这里就间接说明了用户
名至少为5位!
.
.
.
.
.
.
(省略部分代码)
:00405812 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★注册码输入框
|
:00405815 0DA0000000 VCallHresult ;Call ptr_00402CB4
:0040581A 2834FF0400 LitVarI2 ;PushVarInteger 0004 //★参数：4
:0040581F F501000000 LitI4 ;Push 00000001 //★参数：1
:00405824 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:00405827 4654FF CVarStr ;
:0040582A 0414FF FLdRfVar ;Push LOCAL_00EC
**********Reference To->msvbvm60.rtcMidCharVar //★从第1位开始截取4位
|
:0040582D 0A04001000 ImpAdCallFPR4 ;Call ptr_00401056; check stack 0010; Push EAX
:00405832 0414FF FLdRfVar ;Push LOCAL_00EC
:00405835 FCF6A4FE FStVar ;
:00405839 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:0040583C 36040054FF34FF FFreeVar ;Free 0004/2 variants
:00405843 0474FF FLdRfVar ;Push LOCAL_008C
:00405846 21 FLdPrThis ;[SR]=[stack2]
:00405847 0F0C03 VCallAd ;Return the control index 05
:0040584A 1978FF FStAdFunc ;
:0040584D 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★注册码输入框
|
:00405850 0DA0000000 VCallHresult ;Call ptr_00402CB4
:00405855 F506000000 LitI4 ;Push 00000006 //★参数：6
:0040585A 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:0040585D 4654FF CVarStr ;
:00405860 0434FF FLdRfVar ;Push LOCAL_00CC
**********Reference To->msvbvm60.rtcRightCharVar //★从右边截取6位
|
:00405863 0A07000C00 ImpAdCallFPR4 ;Call ptr_0040105C; check stack 000C; Push EAX
:00405868 0434FF FLdRfVar ;Push LOCAL_00CC
:0040586B FCF694FE FStVar ;
:0040586F 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:00405872 3554FF FFree1Var ;Free LOCAL_00AC
:00405875 04A4FE FLdRfVar ;Push LOCAL_015C
:00405878 0494FE FLdRfVar ;Push LOCAL_016C
:0040587B FBEF54FF ConcatVar ; //★连接起来
:0040587F FCF684FE FStVar ;
:00405883 0484FE FLdRfVar ;Push LOCAL_017C
******Possible String Ref To->"csks[cscg]" //★特征串
|
:00405886 3A64FF0800 LitVarStr ;PushVarString ptr_00402D14
:0040588B 5D HardType ;
:0040588C FB33 EqVarBool ;
:0040588E 1CA105 BranchF ;If Pop=0 then ESI=00405C4D //★上面连接之后的字符串是否和特
征串相同~~~
:00405891 0474FF FLdRfVar ;Push LOCAL_008C
:00405894 21 FLdPrThis ;[SR]=[stack2]
:00405895 0F1003 VCallAd ;Return the control index 06
:00405898 1978FF FStAdFunc ;
:0040589B 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★用户名输入框
|
:0040589E 0DA0000000 VCallHresult ;Call ptr_00402CB4
:004058A3 F503000000 LitI4 ;Push 00000003 //★参数：3
:004058A8 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:004058AB 4654FF CVarStr ;
:004058AE 0434FF FLdRfVar ;Push LOCAL_00CC
**********Reference To->msvbvm60.rtcRightCharVar //★从用户名右边截取3位
|
:004058B1 0A07000C00 ImpAdCallFPR4 ;Call ptr_0040105C; check stack 000C; Push EAX
:004058B6 0434FF FLdRfVar ;Push LOCAL_00CC
:004058B9 FCF674FE FStVar ;
:004058BD 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:004058C0 3554FF FFree1Var ;Free LOCAL_00AC
:004058C3 0474FF FLdRfVar ;Push LOCAL_008C
:004058C6 21 FLdPrThis ;[SR]=[stack2]
:004058C7 0F1003 VCallAd ;Return the control index 06
:004058CA 1978FF FStAdFunc ;
:004058CD 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★用户名输入框
|
:004058D0 0DA0000000 VCallHresult ;Call ptr_00402CB4
:004058D5 2834FF0300 LitVarI2 ;PushVarInteger 0003 //★参数：3
:004058DA F501000000 LitI4 ;Push 00000001 //★参数：1
:004058DF 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:004058E2 4654FF CVarStr ;
:004058E5 0414FF FLdRfVar ;Push LOCAL_00EC
**********Reference To->msvbvm60.rtcMidCharVar //★从用户名第1位开始取3位
|
:004058E8 0A04001000 ImpAdCallFPR4 ;Call ptr_00401056; check stack 0010; Push EAX
:004058ED 0414FF FLdRfVar ;Push LOCAL_00EC
:004058F0 FCF664FE FStVar ;
:004058F4 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:004058F7 36040054FF34FF FFreeVar ;Free 0004/2 variants
:004058FE 0474FE FLdRfVar ;Push LOCAL_018C
******Possible String Ref To->"csks[cscg]" //★特征串
|
:00405901 3A64FF0800 LitVarStr ;PushVarString ptr_00402D14
:00405906 FBEF54FF ConcatVar ; //★连接
:0040590A 0464FE FLdRfVar ;Push LOCAL_019C
:0040590D FBEF34FF ConcatVar ; //★连接
:00405911 0474FF FLdRfVar ;Push LOCAL_008C
:00405914 21 FLdPrThis ;[SR]=[stack2]
:00405915 0F1003 VCallAd ;Return the control index 06
:00405918 1978FF FStAdFunc ;
:0040591B 0878FF FLdPr ;[SR]=[LOCAL_0088]
***********Reference To:[propget]TextBox.Text //★用户名输入框
|
:0040591E 0DA0000000 VCallHresult ;Call ptr_00402CB4
:00405923 3E74FF FLdZeroAd ;Push DWORD [LOCAL_008C]; [LOCAL_008C]=0
:00405926 4614FF CVarStr ;//★和上面的连接之后构成新用户名
:00405929 FBEFF4FE ConcatVar ;
:0040592D FCF654FE FStVar ;
:00405931 1A78FF FFree1Ad ;Push [LOCAL_0088]; Call [[[LOCAL_0088]]+8]; [[LOCAL_0088]]=0
:00405934 36060054FF34FF14 FFreeVar ;Free 0006/2 variants
:0040593D 0454FE FLdRfVar ;Push LOCAL_01AC
:00405940 FBEB54FF FnLenVar ;vbaLenVar //★取新用户名长度
:00405944 FCF644FE FStVar ;
:00405948 F400 LitI2_Byte ;Push 00 //★初始化 0
:0040594A 703EFE FStI2 ;Pop WORD [LOCAL_01C2]
:0040594D 0454FE FLdRfVar ;Push LOCAL_01AC
:00405950 FC02 CStrVar ;vbaStrVarCopy
:00405952 3140FE FStStr ;SysFreeString [LOCAL_01C0]; [LOCAL_01C0]=Pop
:00405955 2824FF0100 LitVarI2 ;PushVarInteger 0001
:0040595A 042CFE FLdRfVar ;Push LOCAL_01D4
:0040595D 6C40FE ILdRf ;Push DWORD [LOCAL_01C0]
:00405960 4A FnLenStr ;vbaLenBstr
:00405961 FD6944FF CVarI4 ;
:00405965 FE680CFEED02 ForVar ; //★for...(next)
:0040596B 6B3EFE FLdI2 ;Push WORD [LOCAL_01C2]
:0040596E 2754FF LitVar ;PushVar LOCAL_00AC
:00405971 042CFE FLdRfVar ;Push LOCAL_01D4
:00405974 FC22 CI4Var ;vbaI4Var
:00405976 6C40FE ILdRf ;Push DWORD [LOCAL_01C0]
**********Reference To->msvbvm60.rtcMidCharBstr
|
:00405979 0B09000C00 ImpAdCallI2 ;Call ptr_00401062; check stack 000C; Push EAX
:0040597E 2374FF FStStrNoPop ;SysFreeString [LOCAL_008C]; [LOCAL_008C]=[stack]
**********Reference To->msvbvm60.rtcAnsiValueBstr
|
:00405981 0B0A000400 ImpAdCallI2 ;Call ptr_00401068; check stack 0004; Push EAX
:00405986 A9 AddI2 ; //★累加新用户名ASCII
:00405987 703EFE FStI2 ;Pop WORD [LOCAL_01C2]
:0040598A 2F74FF FFree1Str ;SysFreeString [LOCAL_008C]; [LOCAL_008C]=0
:0040598D 3554FF FFree1Var ;Free LOCAL_00AC
:00405990 042CFE FLdRfVar ;Push LOCAL_01D4
:00405993 FE7E0CFEBF02 NextStepVar ; //★(for)...next
:00405999 2854FF0100 LitVarI2 ;PushVarInteger 0001 //★参数：1
:0040599E F503000000 LitI4 ;Push 00000003 //★参数：3
:004059A3 043EFE FLdRfVar ;Push LOCAL_01C2
:004059A6 4D64FF0240 CVarRef ;
:004059AB 0434FF FLdRfVar ;Push LOCAL_00CC
**********Reference To->msvbvm60.rtcMidCharVar //★取累加和中第3位字符
| //下面就是一个selest case了~~
:004059AE 0A04001000 ImpAdCallFPR4 ;Call ptr_00401056; check stack 0010; Push EAX
:004059B3 0434FF FLdRfVar ;Push LOCAL_00CC
:004059B6 FCF6FCFD FStVar ;
:004059BA 3554FF FFree1Var ;Free LOCAL_00AC
:004059BD 04FCFD FLdRfVar ;Push LOCAL_0204
:004059C0 2864FF0100 LitVarI2 ;PushVarInteger 0001
:004059C5 5D HardType ;
:004059C6 FB33 EqVarBool ;
:004059C8 1C2B03 BranchF ;If Pop=0 then ESI=004059D7
******Possible String Ref To->"［"
|
:004059CB 3A64FF0B00 LitVarStr ;PushVarString ptr_00402D30
:004059D0 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:004059D4 1E1504 Branch ;ESI=00405AC1
:004059D7 04FCFD FLdRfVar ;Push LOCAL_0204
:004059DA 2864FF0200 LitVarI2 ;PushVarInteger 0002
:004059DF 5D HardType ;
:004059E0 FB33 EqVarBool ;
:004059E2 1C4503 BranchF ;If Pop=0 then ESI=004059F1
******Possible String Ref To->"中"
|
:004059E5 3A64FF0C00 LitVarStr ;PushVarString ptr_00402D38
:004059EA FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:004059EE 1E1504 Branch ;ESI=00405AC1
:004059F1 04FCFD FLdRfVar ;Push LOCAL_0204
:004059F4 2864FF0300 LitVarI2 ;PushVarInteger 0003
:004059F9 5D HardType ;
:004059FA FB33 EqVarBool ;
:004059FC 1C5F03 BranchF ;If Pop=0 then ESI=00405A0B
******Possible String Ref To->"华"
|
:004059FF 3A64FF0D00 LitVarStr ;PushVarString ptr_00402D40
:00405A04 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A08 1E1504 Branch ;ESI=00405AC1
:00405A0B 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A0E 2864FF0400 LitVarI2 ;PushVarInteger 0004
:00405A13 5D HardType ;
:00405A14 FB33 EqVarBool ;
:00405A16 1C7903 BranchF ;If Pop=0 then ESI=00405A25
******Possible String Ref To->"软"
|
:00405A19 3A64FF0E00 LitVarStr ;PushVarString ptr_00402D48
:00405A1E FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A22 1E1504 Branch ;ESI=00405AC1
:00405A25 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A28 2864FF0500 LitVarI2 ;PushVarInteger 0005
:00405A2D 5D HardType ;
:00405A2E FB33 EqVarBool ;
:00405A30 1C9303 BranchF ;If Pop=0 then ESI=00405A3F
******Possible String Ref To->"件"
|
:00405A33 3A64FF0F00 LitVarStr ;PushVarString ptr_00402D50
:00405A38 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A3C 1E1504 Branch ;ESI=00405AC1
:00405A3F 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A42 2864FF0600 LitVarI2 ;PushVarInteger 0006
:00405A47 5D HardType ;
:00405A48 FB33 EqVarBool ;
:00405A4A 1CAD03 BranchF ;If Pop=0 then ESI=00405A59
******Possible String Ref To->"解"
|
:00405A4D 3A64FF1000 LitVarStr ;PushVarString ptr_00402D58
:00405A52 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A56 1E1504 Branch ;ESI=00405AC1
:00405A59 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A5C 2864FF0700 LitVarI2 ;PushVarInteger 0007
:00405A61 5D HardType ;
:00405A62 FB33 EqVarBool ;
:00405A64 1CC703 BranchF ;If Pop=0 then ESI=00405A73
******Possible String Ref To->"密"
|
:00405A67 3A64FF1100 LitVarStr ;PushVarString ptr_00402D60
:00405A6C FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A70 1E1504 Branch ;ESI=00405AC1
:00405A73 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A76 2864FF0800 LitVarI2 ;PushVarInteger 0008
:00405A7B 5D HardType ;
:00405A7C FB33 EqVarBool ;
:00405A7E 1CE103 BranchF ;If Pop=0 then ESI=00405A8D
******Possible String Ref To->"同"
|
:00405A81 3A64FF1200 LitVarStr ;PushVarString ptr_00402D68
:00405A86 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405A8A 1E1504 Branch ;ESI=00405AC1
:00405A8D 04FCFD FLdRfVar ;Push LOCAL_0204
:00405A90 2864FF0900 LitVarI2 ;PushVarInteger 0009
:00405A95 5D HardType ;
:00405A96 FB33 EqVarBool ;
:00405A98 1CFB03 BranchF ;If Pop=0 then ESI=00405AA7
******Possible String Ref To->"盟"
|
:00405A9B 3A64FF1300 LitVarStr ;PushVarString ptr_00402D70
:00405AA0 FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405AA4 1E1504 Branch ;ESI=00405AC1
:00405AA7 04FCFD FLdRfVar ;Push LOCAL_0204
:00405AAA 2864FF0000 LitVarI2 ;PushVarInteger 0000
:00405AAF 5D HardType ;
:00405AB0 FB33 EqVarBool ;
:00405AB2 1C1504 BranchF ;If Pop=0 then ESI=00405AC1
******Possible String Ref To->"]"
|
:00405AB5 3A64FF1400 LitVarStr ;PushVarString ptr_00402D78
:00405ABA FD00ECFD FStVarCopy ;[LOCAL_0214]=vbaVarCopy(Pop)
:00405ABE 1E1504 Branch ;ESI=00405AC1
:00405AC1 6B3EFE FLdI2 ;Push WORD [LOCAL_01C2]
:00405AC4 F38019 LitI2 ;Push 1980 //★参数：1980(16进制)
:00405AC7 FB12 XorI4 ; //★和累加值做异或运算
:00405AC9 4464FF CVarI2 ;
:00405ACC FCF6DCFD FStVar ;
******Possible String Ref To->"csks" //★前特征串
|
:00405AD0 3A64FF1500 LitVarStr ;PushVarString ptr_00402D80
:00405AD5 04DCFD FLdRfVar ;Push LOCAL_0224
:00405AD8 0444FE FLdRfVar ;Push LOCAL_01BC
:00405ADB FB9C54FF SubVar ; //★累加值-新用户名长度
:00405ADF FBEF34FF ConcatVar ; //★连接
:00405AE3 04ECFD FLdRfVar ;Push LOCAL_0214
:00405AE6 FBEF14FF ConcatVar ; //★连接
:00405AEA 6B3EFE FLdI2 ;Push WORD [LOCAL_01C2]
:00405AED 4444FF CVarI2 ;
:00405AF0 0444FE FLdRfVar ;Push LOCAL_01BC
:00405AF3 FB9CF4FE SubVar ; //★(和累加值做异或运算)的结果-新用户名长
度
:00405AF7 04DCFD FLdRfVar ;Push LOCAL_0224
:00405AFA FB94CCFD AddVar ; //★上面两步的结果相加-新用户名长度
:00405AFE FBEFBCFD ConcatVar ; //★连接
******Possible String Ref To->"[cscg]" //★后特征串
|
:00405B02 3A24FF1600 LitVarStr ;PushVarString ptr_00402D90
:00405B07 FBEFACFD ConcatVar ; //★OK，第4次连接，这里之后就是真正注册码了
！
:00405B0B FCF69CFD FStVar ;
:00405B0F 36080034FF14FFCC FFreeVar ;Free 0008/2 variants
:00405B1A 2854FF0400 LitVarI2 ;PushVarInteger 0004
:00405B1F F50A000000 LitI4 ;Push 0000000A
:00405B24 049CFD FLdRfVar ;Push LOCAL_0264
:00405B27 0434FF FLdRfVar ;Push LOCAL_00CC
.
.
.
.
.
.
(省略部分代码)

复制代码

------------------------------------------------------------------------
【破解总结】1.用户名至少5位

2.name1=用户名右边3位+"csks[cscg]"+用户名左边3位+用户名得到新用户名

3.LenName1=新用户名长度

4.sum=累加上面的ascii值

5.str1=Sum转换成字符串，，由第3位决定取哪个字符:
   1：［
   2：中
   3：华
   4：软
   5：件
   6：解
   7：密
   8：同
   9：盟
   0：]

6.Sum1 = Sum xor 0x1980

7.A=Sum - LenName1

8.B=Sum1 - LenName1

9.C = A+B+LenName1

10.Sn = "csks" & B & Str1 & C & "[cscg]"
------------------------------------------------------------------------
【注册机】

'为方便阅读，关键变量均和【破解总结】中的一至
Dim Name, Name1 As String
Dim LenName, LenName1 As Integer
Dim Sum, Sum1 As Integer
Dim Str1 As String
Dim A, B, C As Integer
Dim Sn As String
Dim i As Integer
Name = Text1.Text
LenName = Len(Name)
If Name <> "" And LenName >= 5 Then
Name1 = Right(Name, 3) & "csks[cscg]" & Left(Name, 3) & Name
LenName1 = Len(Name1)
For i = 1 To LenName1
Sum = Sum + Asc(Mid(Name1, i, 1))
Next i
Select Case Mid(Trim(Str(Sum)), 3, 1)
Case 0
Str1 = "]"
Case 1
Str1 = "［"
Case 2
Str1 = "中"
Case 3
Str1 = "华"
Case 4
Str1 = "软"
Case 5
Str1 = "件"
Case 6
Str1 = "解"
Case 7
Str1 = "密"
Case 8
Str1 = "同"
Case 9
Str1 = "盟"
End Select
Sum1 = Sum Xor &H1980
A = Sum - LenName1
B = Sum1 - LenName1
C = A + B + LenName1
Sn = "csks" & B & Str1 & C & "[cscg]"
Text2.Text = Sn
Else
Text2.Text = "请输入用户名！"
End If

复制代码

------------------------------------------------------------------------
【版权声明】本文纯属技术交流,转载请注明作者信息并保持文章的完整,谢谢！

快雪时晴 · 发表于 2007-6-17 10:22:03

原帖由飘云
【破解工具】Peid0.94,OllyDbg,VB
...

一直对P-CODE比较仇视，在OD中调试让人想碰墙
老大没用VBExplorer和VKTDEBUG吗？

另外外界流传的飘云修改版QQ不知是否和PYG有关系，我在本论坛没有发现任何链接

lgjxj · 发表于 2007-6-17 17:55:51

强悍，学习了

glts · 发表于 2007-6-17 18:17:18

破文写得好公整啊！

yingfeng · 发表于 2007-8-6 11:46:13

老大出手的东东,就是不同凡响,P-CODE的,老大一个静态反编就搞定了,佩服!

小子贼野 · 发表于 2007-8-6 21:55:52

看了一下，发现这个算法用Delphi写不如用易语言写来的简单（我刚开始学Delphi）

csks · 发表于 2007-8-7 20:15:49

放了那么就，总算1个crackme被完整破解了。恭喜

我的crackme 0.2试过没有？？？

lxk836 · 发表于 2007-8-8 18:17:17

向老大学习.算法我还是不懂啊

superhacker · 发表于 2007-8-10 21:32:54

破文写得好公整啊！

bwin · 发表于 2007-8-18 16:47:06

这个是用什么工具分析出来的
是用2楼的兄弟说的那个工具吗？？

		自动登录	找回密码
密码			加入我们

[原创] [P-CODE]cscg-crackme 0.1 算法分析

相关帖子