Reverse Engineering RET Homepage RET Members Reverse Engineering Projects Reverse Engineering Papers Reversing Challenges Reverser Tools RET Re-Search Engine Reverse Engineering Forum Reverse Engineering Links

Go Back   Reverse Engineering Team Board > Reverse Engineering Board > File Unpacking
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Thread Tools Display Modes
Old 02-05-2005, 05:52 AM
XFlorian XFlorian is offline
Junior Member
Join Date: Feb 2005
Posts: 3
Default Cracking ASProtect 1.3 without Unpacking

hello Can anyone help me how I can crack an Asprotected Tool without Unpacking it?
Reply With Quote
Old 02-05-2005, 10:10 PM
seven seven is offline
Junior Member
Join Date: Feb 2005
Posts: 4
Send a message via MSN to seven
Default XFlorian

uze loader 2 crack,m without unpack,m .
[ each day pass , we learn more ]
Reply With Quote
Old 05-05-2005, 03:55 PM
JohnWho JohnWho is offline
Junior Member
Join Date: May 2005
Posts: 4

With v1.2/1.3 you can redirect one of the dips and that way you don't have to deal with the CRC check! To use this method you'll need to study aspr's crypto to understand the encryption/decryption!

With v2.0x you can either change encrypted bytes after 2nd call to virtualalloc to break from the layer and start your patching chain, or you can start your patching chain from first hardcoded jmp in 1st decryption block shortly after EP(this way you don't need to know anything about aspr's crypto), this method you can also use on v1.2/1.3 ofcourse! Using this method you'll ofcourse have to deal with the CRC check by

1) make aspr do it's crc check on a backup file!(this is done before createfilea where eax contains file path and name)
2) patch the mapped image of file in memory back to original(this is done immediately after mapviewofileex where eax contains mapped image base)

Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2023, Jelsoft Enterprises Ltd.