By ro0ted | February 25, 2015 - 09:16 | Posted in /b/ | 9 Comments
#ro0ted #OpNewblood What the blackhats don’t want you to know: Modifying Timed Trial Programs

Timed Trials – https://twitter.com/ro0ted/

 

Load program up in Olly:

Untitled

Search for all referenced strings:

Untitled

The important thing for a reverse engineer to know about time trials is that the app MUST remember the amount of tries/days left after quitting and restarting the program. That means that certain data has to be stored persistently somewhere. The most obvious candidates for storing this data are the registry and a file on the hard drive.

A registry path looks like this:

Software\\AppName\\Key

while a file path looks like this:

AppName\DataFileName.ini or AppName\DataFileName.dat

and many times will have something like %WINDOWS% in the name around it, pointing to the Windows install directory.

Looking in the Referenced Strings we find a Registry Key Reference:

Untitled

Now you know when you hack a website it usually has a database? So does your Windows machine; it’s called the registry. You can access it through “regedit” in the run box or if you have a Win7 type “regedit” without quotes…Run as Admin.

 

Untitled

Double click data to see where in Registry it’s located at as in the desired location:

Untitled

Untitled

The data flag says 9. It will be different for each machine.

Let’s re open the program outside of Olly.

Untitled

In registry location right click select modify change the number to 100 in Decimal to 100.

Untitled

Untitled

Actually let’s put it to 1000

Untitled

Now restart the program outside of Olly:

Untitled

 That’s how you make a time trial last on your terms.

ro0ted

 

 


 

(In order)

Why am I teaching Reverse Engineering to inexperienced new Anons in OpNewblood?

Whitehat Lab

ASM Programming

Introduction Part 1 Ollydbg 

Introduction Part 2 Using Ollydbg and Tracing Botnets

Analyzing Botnets

 Introduction Part 3 Ollydbg: Cheating a Crackme

Introduction Part 4 Ollydbg: Your first Patch

Encryption 101

Cuckoo Sandbox: Automated Malware Analysis also known as Malwr.com

Introduction to Honeydrive: A Brief Walk Through

Installing Kippo the SSH Honeypot on a VPS Part 1: How to set it up

Resource Hacker

Dll Injection the Easy Way

Visual Basic Binaries Walk Through Part 1

Ollydbg on Steroids

Creating Patchers Part 1

Have you supported the gas mask campaign over the years?

Crack to win a gas mask gift pack

How to edit a register me crack me Pre Part 1

Unwinding Delphi Binaries Walk Through if not Preview

Cracking Delphi Part 2

Reversing Timed Trials: Ollydbg Tricks Part 3 +

 

(Visited 476 times, 1 visits today)


  • You can follow any responses to this entry through the RSS 2.0 feed.
  • Both comments and pings are currently closed.

9 Responses to #ro0ted #OpNewblood What the blackhats don’t want you to know: Modifying Timed Trial Programs

  1. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats dont want u to know | Packing & Crypting, there’s a difference

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  2. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats don’t want you to know: Manually unpacking in Olly

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  3. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats dont want you to know: Manually Unpacking Part 2

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  4. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats dont want you to know: ASM Injecting Part 4

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  5. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats don’t want you to know: Add your own menu

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  6. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats dont want you to know: REMnux Volatility Framework

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  7. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the blackhats dont want you to know BE: think ur drive is really wiped?

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  8. Pingback: CyberGuerrilla soApboX » #ro0ted #OpNewblood What the Blackhats don’t want you to know series

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]

  9. Pingback: Tutoriales sobre ingeniería inversa | Cyberhades

    […] Reversing Timed Trials: Ollydbg Tricks Part 3 […]