------------------------------------------------------------------------------ ÆÐÄ¡ °­Á No. 2 - 16 / 09 / 98 ÇÁ·Î±×·¥ : ³ª¸ð À¥ ¿¡µðÅÍ Version 2.02 ½ÃÇèÆÇ : 30ȸ Á¦ÇÑ , ³×±× ½ºÅ©¸° »ç¿ë Åø : Soft-Ice Version 3.23 Reg , W32Dasm Version 8.9 Reg ------------------------------------------------------------------------------ À̹ø¿¡´Â ´«Ä¡ ÄÚÄ¡ ÆÐÄ¡ °­Á¸¦ ½á º¸°Ú½À´Ï´Ù. Å©·¢À» ¹è¿ì·Á ÇϽô ºÐµéÀÌ º¸Åë ¾î¼Àºí¸®¾ð¾î¸¦ Àß ¸ð¸£°í °è½Ã´Â ºÐÀÌ ´ë ºÎºÐ À̱⠶§¹®¿¡ Àü¹®ÀûÀÎ Áö½Äº¸´Ù´Â Soft-Ice ¸¦ »ç¿ëÇÏ¿© ´«Ä¡·Î ÆÐÄ¡ ÇÏ´Â ¹æ¹ýÀ» À§ÁÖ·Î °­Á¸¦ ½á ³ª°¡¾ß °Ú½À´Ï´Ù.. ¸ÕÀú Á¦°¡ »ç¿ëÇÏ´Â Soft-Ice ÀÇ WINICE.DAT ÆÄÀÏÀ» °ø°³ÇÏ¿©¾ß °ÚÁö¿ä? ºÎ°¡ÀûÀÎ ¼³¸íÀº ÇÏÁö ¾Ê°Ú½À´Ï´Ù. ShareWare Killer Team ÀÇ Å©·¢ °­Á¸¦ º¸½Ã´øÁö ¾Æ´Ï¸é WINICE.DAT File ¿¡ ´ëÇÑ ¼³¸íÀ» ÇØ³í °­ÁµéÀÌ ¸¹ÀÌ ÀÖÀ¸´Ï Âü°í ÇϽñ⠹ٶø´Ï´Ù. --ÀýÃë¼±--WINICE.DAT----------------------------------------------------------- NMI=ON SIWVIDRANGE=ON LOWERCASE=ON MOUSE=ON NOLEDS=OFF NOPAGE=OFF PENTIUM=ON THREADP=ON VERBOSE=ON PHYSMB=128 SYM=1024 HST=256 TRA=8 INIT="WIN;WL;CODE ON;WC 10;WD 5;WR 2;X;" F1="^here;" F2="" F3="" F4="^rs;" F5="^x;" F6="^ec;" F7="^p ret;" F8="^t;" F9="^bpx;" F10="^p;" F11="^CODE OFF;" F12="^CODE ON;" EXP=c:\windows\system\vga.drv EXP=c:\windows\system\vga.3gr EXP=c:\windows\system\sound.drv EXP=c:\windows\system\mouse.drv EXP=c:\windows\system\netware.drv EXP=c:\windows\system\system.drv EXP=c:\windows\system\keyboard.drv EXP=c:\windows\system\toolhelp.dll EXP=c:\windows\system\shell.dll EXP=c:\windows\system\commdlg.dll EXP=c:\windows\system\olesvr.dll EXP=c:\windows\system\olecli.dll EXP=c:\windows\system\mmsystem.dll EXP=c:\windows\system\kernel32.dll EXP=c:\windows\system\user32.dll EXP=c:\windows\system\gdi32.dll EXP=c:\windows\system\comdlg32.dll EXP=c:\windows\system\shell32.dll EXP=c:\windows\system\advapi32.dll EXP=c:\windows\system\shell232.dll EXP=c:\windows\system\comctl32.dll EXP=c:\windows\system\crtdll.dll EXP=c:\windows\system\version.dll EXP=c:\windows\system\netlib32.dll EXP=c:\windows\system\msshrui.dll EXP=c:\windows\system\msnet32.dll EXP=c:\windows\system\mspwl32.dll EXP=c:\windows\system\mpr.dll EXP=c:\windows\system\msvbvm50.dll --ÀýÃë¼±---End--------------------------------------------------------------- ÀÌÁ¦ºÎÅÍ À§ÀÇ È¯°æÀ» °¡Áö°í ¼³¸íÇÏ¿© ³ª°¡°Ú½À´Ï´Ù. ½ÃÀÛ ÇÒ ±î¿ä!? ¸ÕÀú ³ª¸ð À¥ ¿¡µðÅ͸¦ ½ÇÇà ½ÃÅ°½Ã¸é ½ÃÇèÆÇÀ̶ó´Â ¹Ú½º°¡ ³ª¿ÀÁö¿ä! ±×¸®°í ±¸ÀÔ Á¤º¸¶óµçÁö.. ÀÌ·± µîµîÀÇ ¸Þ¼¼Áö°¡ ÀÖ´Â ¹Ú½º.. ÀÌ ¹Ú½º¸¦ ¾ø¾Ö°í ¶Ç Á¾·á ºÎºÐ¿¡µµ ¾ø¾Ö°í ¶ÇÇÑ.. 30ȸ °¡ Áö³ª¸é ÀÌ ÇÁ·Î±×·¥Àº ±×¸² ÆÄÀÏÀ» º¼ ¼ö ¾ø°Ô µË´Ï´Ù. ±× °Í ±îÁö ¾Ë¾Æ º¸µµ·Ï ÇÏ°Ú½À´Ï´Ù. Áö±Ý ÀÌ ³ª¸ð À¥ ¿¡µðÅÍ ÀÇ ³×±× ½ºÅ©¸° ó·³ ÀÌ·± ¹Ú½º¸¦ Àâ´Â ÇÔ¼ö°¡ ÀÖ½À´Ï´Ù. BPX DialogBoxParamA À§ ó·³ ¼Ò¾Æ¿¡ ¸í·ÉÀ» ³»¸®½Ã°í ÇÁ·Î±×·¥À» ½ÇÇà ½ÃÄÑ º¼±î¿ä..!! ´«Ä¡.. ´«Ä¡.. ÇÁ·Î±×·¥À» Àß »ìÇǽʽÿä... ÇÁ·Î±×·¥À» ½ÇÇà ½ÃÅ°´Ï±î ±ôºý ÇÏ´õ´Ï. ¼Ò¾Æ È­¸éÀÌ µÇ¾úÁö¿ä.. ±×·³ [F4] Å°¸¦ ´­·¯ º¸½Ã±â ¹Ù¶ø´Ï´Ù. ±×·³ ³ª¸ð°¡ ¶° ÀÖ°í.. óÀ½ ½ÇÇà ÇßÀ» ¶§ ³ª¿À´Â ³×±× ½ºÅ©¸°ÀÌ ³ª¿À±â Àü À̶ó´Â °ÍÀ» ¾Ë ¼ö ÀÖÁö¿ä.. ±×·³ ¼Ò¾Æ¿¡¼­ [F7] Å°¸¦ ´­·¯ º¾½Ã´Ù.. ±×·³. ±× ³×±× ½ºÅ©¸°ÀÌ ³ª¿ÀÁö¿ä. '°è¼Ó' ¹öÆ°À» ´­·¯º¸¸é XXXX:004ACF5 CALL [USER32!DialogBoxParamA] MOV ECX,[004B18F4] <- Ä¿¼­ À§Ä¡ ÀÌ·± È­¸éÀÌ º¸À̽óª¿ä..?? ±×·³ °è¼ÓÇÏ¿© Æ®·£½Ì.. [F7] ¹øÀ» ´­·¯ º¸¼¼¿ä.. ÀÚ ÀÌÁ¦ºÎÅÍ ÁøÂ¥ ¼³¸í ÀÔ´Ï´Ù. ÁÖ¼®À» À¯½ÉÈ÷ º¸¸é¼­ µû¶óÇØ º¸½Ã±â ¹Ù¶ø´Ï´Ù. ÁÖ¼®ÀÌ ´õ·¯¿ö¼­ ¾îÁö·¯¿ïÁö ¸ð¸£³ª Â÷±ÙÂ÷±Ù ÀÐ¾î º¸¼¼¿ä..!! (1) :0044A8DC E81FFAFFFF call 0044A300 <- ºêÆ÷ °É¾îÁà¿ä! :0044A8E1 85C0 test eax, eax :0044A8E3 752E jne 0044A913 <- eax = 0 À̸é No Jump <- Jump ½Ã <- ³×±×½ºÅ©¸°À» ¹þ¾î³² <- Jump ½ÃÅ°·Á¸é ±×À§ call 0044a300 ¿¡¼­ eax = 1 ·Î ¸¸µé¾î¾ßÁö¿ä! <- Àú±â ¾Æ·¡ ¼³¸íÀ» ÇÕ´Ï´Ù... ---->>>>> :0044A8E5 A1943C4B00 mov eax, dword ptr [004B3C94] :0044A8EA 8B0D081A4B00 mov ecx, dword ptr [004B1A08] :0044A8F0 8DB075ABFFFF lea esi, dword ptr [eax+FFFFAB75] :0044A8F6 56 push esi :0044A8F7 51 push ecx :0044A8F8 E8A303FEFF call 0042ACA0 <- Ǫ ÇÏÇÏÇÏ ³×±×½ºÅ©¸° :0044A8FD 83C408 add esp, 00000008 :0044A900 83FE1F cmp esi, 0000001F <- ¹»±î?? <- 1F ´Â 31 ÀÔ´Ï´Ù. <- È®ÀÎ => ?1F = 31 :0044A903 750E jne 0044A913 <- No Jump Çϸé <- 31º¸´Ù Å©¸é!! :0044A905 56 push esi :0044A906 683FC70000 push 0000C73F :0044A90B E88075FEFF call 00431E90 <- 31¹øÀ» ½ÇÇà ÇÑ °Í!!! :0044A910 83C408 add esp, 00000008 ---> ¿ä±â·Î Jump ½ÃÅ°¸é ³×±×½ºÅ©¸°À» º¼ ¼ö ¾ø´Ù.!!! (2) :0044A913 E888FAFFFF call 0044A3A0 <- 30 ¹ø ÀÌ»óÀ» ½ÇÇà ½ÃÄ×´ÂÁö¸¦ °Ë»ç Çؼ­ 30ÀÏÀÌ Áö³µ´Ù¸é ±×¸²À» Ãâ·ÂÇÏÁö ¸øÇϵµ·Ï ÇÏ´Â °÷!! <- ÀÌ°÷Àº ¾î¶²ÀÏÀ» ÇÒ±î? ¾Æ·¡¸¦ º¸¸é <- [004b3724] ¸¦ ºñ±³ÇßÁö¿ä!!..??!! <- ±×·³ µé¾î°¡ ºÁ¾ßÁö!! <- [004b3724] = 1 ·Î ºüÁ®³ª¿Í¾ß ÇÑ´Ù. <- ¾ÈÀÇ ³»¿ëÀº ¾Æ·¡¸¦ º¸½Ê½Ã¿ä!! :0044A918 85C0 test eax, eax :0044A91A 7510 jne 0044A92C <- eax = 0 À̸é No Jump :0044A91C A124374B00 mov eax, dword ptr [004B3724] <- ÀÌ°÷¿¡¼± [4b3724] ¸¦ °¡Áö±¸ ºñ±³ <- (2) ¿¡¼­ ¼öÁ¤ ÇØ ÁÖ¾ú´Ù¸é eax = 1 :0044A921 85C0 test eax, eax :0044A923 7E07 jle 0044A92C <- eax = 1 À̸é No Jump :0044A925 B801000000 mov eax, 00000001 <- ÃÖÁ¾ 1·Î ºüÁ®³ª°¨..!! :0044A92A EB02 jmp 0044A92E :0044A92C 33C0 xor eax, eax :0044A92E 50 push eax :0044A92F E8BCA9FFFF call 004452F0 :0044A934 83C404 add esp, 00000004 :0044A937 E8D4F20100 call 00469C10 :0044A93C 85C0 test eax, eax :0044A93E 750E jne 0044A94E :0044A940 B801000000 mov eax, 00000001 :0044A945 5F pop edi :0044A946 5E pop esi :0044A947 5B pop ebx :0044A948 8BE5 mov esp, ebp :0044A94A 5D pop ebp :0044A94B C21000 ret 0010 --(1) Start---------------------------------------------------------------- CALL 44A300 ¿¡¼­ EAX = 1 ·Î ¸¸µé¾î¾ß ÇÏÁÒ.. ÀÚ ¿ä±â¸¦ ÁÖ¸ñÇϽʽÿä,!!!! -----> CALL 0044A300 :0044A300 55 push ebp :0044A301 8BEC mov ebp, esp :0044A303 83EC20 sub esp, 00000020 :0044A306 56 push esi :0044A307 57 push edi :0044A308 E8D3FEFFFF call 0044A1E0 -> ¾ÈÀ¸·Î µé¾î°¡ º¼±î¿ä! ----> CALL 0044A1E0 :0044A1E0 55 push ebp :0044A1E1 8BEC mov ebp, esp :0044A1E3 83EC20 sub esp, 00000020 :0044A1E6 A150394B00 mov eax, dword ptr [004B3950] :0044A1EB 8B0D943C4B00 mov ecx, dword ptr [004B3C94] :0044A1F1 3BC1 cmp eax, ecx :0044A1F3 7506 jne 0044A1FB <- Jump :0044A1F5 33C0 xor eax, eax :0044A1F7 8BE5 mov esp, ebp :0044A1F9 5D pop ebp :0044A1FA C3 ret :0044A1FB 57 push edi :0044A1FC 8D4DE0 lea ecx, dword ptr [ebp-20] :0044A1FF 56 push esi :0044A200 51 push ecx :0044A201 6828374B00 push 004B3728 :0044A206 6860214900 push 00492160 :0044A20B E89068FFFF call 00440AA0 :0044A210 83C40C add esp, 0000000C :0044A213 B908000000 mov ecx, 00000008 :0044A218 8D7DE0 lea edi, dword ptr [ebp-20] :0044A21B BE9C394B00 mov esi, 004B399C :0044A220 33D2 xor edx, edx :0044A222 F3 repz :0044A223 A6 cmpsb :0044A224 8BC2 mov eax, edx :0044A226 5E pop esi ******* :0044A227 0F94C0 sete al <- Áö±Ý eax = 0 <- ÀÌ ºÎºÐÀ» eax = 1 ·Î ¹Ù²Ù¾îÁÜ <- xor eax,eax <- inc eax <- ¿ä·¸°Ô ¹Ù²Ù¾î ÁÖ¸é eax = 1 :0044A22A A320374B00 mov dword ptr [004B3720], eax <- [004b3720] = 0 <- ¹Ù²Ù¾î ÁÖ¾ú´Ù¸é [004b3720] = 1 :0044A22F B801000000 mov eax, 00000001 <- ºüÁ® ³ª¿Ã ¶§´Â eax = 1 ** : ÀÌ ºÎºÐ¿¡¼­ ¼ÓÁö ¸¶½Ê½Ã¿ä.. ¸ÕÀú EAX °ªÀ» [004B3720] ¶ó´Â °÷¿¡ ¹é¾÷ ½ÃÄÑ ³ñ´Ï´Ù. ±× ´ÙÀ½ EAX = 1 ·Î ¸¸µç ´ÙÀ½¿¡ RET ·Î ºüÁ® ³ª°¡Áö¿ä!! ±×·¯´Ï±î °á·ÐÀº EAX ÀÇ °ªÀÌ ÀúÀåµÇ¾î ÀÖ´Â °÷Àº [004B3720] ¶ó´Â °Í!!!!!!! :0044A234 5F pop edi :0044A235 8BE5 mov esp, ebp :0044A237 5D pop ebp :0044A238 C3 ret <-- ºüÁ®³ª°¨.. -> À̾ :0044A30D 85C0 test eax, eax <- eax ºñ±³! :0044A30F 7409 je 0044A31A <- eax = 1 À̸é No Jump <- Àü ·çƾ¿¡¼­ 1 ·Î ºüÁ® ³ª¿ÔÀ¸´Ï No Jump :0044A311 A120374B00 mov eax, dword ptr [004B3720] <- ***** <- eax = [004b3720] -> eax = 0 ** : ÀÌ °÷¿¡¼­ ºñ±³¸¦ ÇÕ´Ï´Ù.. ¸ÕÀú ¹é¾÷ ÇØ ÁÖ¾ú´ø °ªÀ» ´Ù½Ã eax ¿¡ ÀúÀå ÇÕ´Ï´Ù. ±×·±´ÙÀ½ ºñ±³¸¦ ÇÏÁö¿ä!!! :0044A316 85C0 test eax, eax :0044A318 7508 jne 0044A322 -> eax = 0 À̸é No Jump <- À§¿¡¼­ ¼öÁ¤ ÇÏ¿´´Ù¸é eax = 1 <- ±×¸®°í Jump :0044A31A 33C0 xor eax, eax -> eax = 0 À¸·Î ¸¸µë :0044A31C 5F pop edi :0044A31D 5E pop esi :0044A31E 8BE5 mov esp, ebp :0044A320 5D pop ebp :0044A321 C3 ret -> ºüÁ®³ª°¨ <- ÃÖÁ¾ ÀûÀ¸·Î eax=1 ÀÌ µÇ¼­ ºüÁ®³ª°¡¾ß ÇÏ°Ô ¶§¹®¿¡ ÀÌ °÷¿¡¼­ ³ª°¡¸é ²Î! :0044A322 8B3D5C394B00 mov edi, dword ptr [004B395C] :0044A328 8D45E0 lea eax, dword ptr [ebp-20] :0044A32B 50 push eax :0044A32C 47 inc edi :0044A32D 6828374B00 push 004B3728 :0044A332 6860214900 push 00492160 :0044A337 893D5C394B00 mov dword ptr [004B395C], edi :0044A33D E85E67FFFF call 00440AA0 :0044A342 83C40C add esp, 0000000C :0044A345 B908000000 mov ecx, 00000008 :0044A34A 8D7DE0 lea edi, dword ptr [ebp-20] :0044A34D BE9C394B00 mov esi, 004B399C :0044A352 33D2 xor edx, edx :0044A354 F3 repz :0044A355 A6 cmpsb :0044A356 8BC2 mov eax, edx :0044A358 5F pop edi ********** :0044A359 0F94C0 sete al <- eax = 0 <- eax = 1 ·Î ³ª°¡¾ß Çϱ⠶«½Ã..!! <- ÀÌ ºÎºÐÀ» ¹Ù²Ù¾î ÁØ´Ù.. <- xor eax,eax <- inc eax <- ¿ä·¸°Ô ¹Ù²Ù¾î ÁÖ¸é eax = 1 :0044A35C 5E pop esi :0044A35D 8BE5 mov esp, ebp :0044A35F 5D pop ebp :0044A360 C3 ret -> 1 ·Î ºüÁ® ³ª°¨ !! --(1) End-------------------------------------------------------------------- --(2) Start------------------------------------------------------------------ :0044A3A0 A150394B00 mov eax, dword ptr [004B3950] :0044A3A5 33C9 xor ecx, ecx :0044A3A7 0576ABFFFF add eax, FFFFAB76 :0044A3AC 83F81E cmp eax, 0000001E <- eax ¿Í 30 À» ºñ±³ :0044A3AF 0F9EC1 setle cl <- ÀÌ ºÎºÐ¿¡¼­´Â ecx ¸¦ ÀÌ¿ë ÇÕ´Ï´Ù. <- ÀÌ ºÎºÐµµ ¸¶Âú°¡Áö·Î ÀÌ·¸°Ô ¹Ù²Ù¾î ÁÝ´Ï´Ù. <- xor ecx,ecx <- inc ecx <- ecx = 1 ÀÌ µÇ°í [004b3724] = 1 ÀÌ µÈ´Ù´Â ¶æ.. :0044A3B2 890D24374B00 mov dword ptr [004B3724], ecx <- [4b3724] = ecx <- À§¸¦ ¼öÁ¤ ÇÏ¿´´Ù¸é ecx = 1 :0044A3B8 E843FFFFFF call 0044A300 <- (1) ¹øÀ» ºÎ¸§.. :0044A3BD 85C0 test eax, eax :0044A3BF 740D je 0044A3CE <- Jump :0044A3C1 C70524374B0019000000 mov dword ptr [004B3724], 00000019 :0044A3CB 33C0 xor eax, eax :0044A3CD C3 ret :0044A3CE 8B0D50394B00 mov ecx, dword ptr [004B3950] :0044A3D4 33C0 xor eax, eax :0044A3D6 85C9 test ecx, ecx :0044A3D8 0F94C0 sete al <- eax = 0 :0044A3DB C3 ret <- ºüÁ® ³ª°¨!! <- [4b3724] = 1 <- eax = 0 --(2) End------------------------------------------------------------------- ÀÌ·¸°Ô ½ÃÀÛ ÇÒ ¶§¿¡ 30ȸ°¡ Áö³µÀ» ¶§¿¡ ±×¸²À» º¸À̵µ·Ï ÇÏ°í..!! ¶Ç ½ÃÀÛÇÒ ¶§¿¡ ³×±× ½ºÅ©¸°À» º¸¿© ÁÖÁú ¾Ê°í..!! ´Ù ÇßÁö¿ä!! ÀÌÁ¨ ¸¶Áö¸·À¸·Î ÇÁ·Î±×·¥À» Á¾·á ÇÒ ¶§¿¡ ³×±× ½ºÅ©¸°Àº ¿©·¯ºÐµéÀÌ ÇØ º¸½Ê½Ã¿ä ±× ºÎºÐ¿¡¼­´Â ´Ù ÇÊ¿ä ¾øÁö¿ä.. ±×³É ³×±× ½ºÅ©¸° Àâ´Â ºêÆ÷ Çϳª °É±¸.. Æ®·£½Ì ÇÏ¿© Jump & No Jump ¸¸ ¸¸Á®ÁÖ¸é µË´Ï´Ù. ÇÁ·Î±×·¥ÀÌ Á¾·á½Ã¿¡´Â ¹¹ ±×¸²ÀÌ º¸ÀÏ ÇÊ¿ä°¡ ¾øÀ¸´Ï±î.. ±×³É ³×±× ½ºÅ©¸°¸¸ ¾ø¾Ö ÁÖ¸é µË´Ï´Ù.. ÈÞ!! Èûµå¼¼¿ä.. Â÷±ÙÂ÷±Ù ÁÖ¼®À» Àß º¸¸é¼­(ÇÁ¸°Æ® Çؼ­) µû¶ó ÇØ º¸½Ã±â ¹Ù¶ø´Ï´Ù. ÀÌ ÇÁ·Î±×·¥¿¡¼­´Â ´Ù¸¥ °ÍÀº ¸ô¶óµµ µÇ°í! ±×³É ÇÁ·Î±×·¥ÀÌ ¾î¶»°Ô µ¹¾Æ°¡³ª.. ¸Þ¸ð¸®¿¡ ¹¹°¡ ÀúÀåÀÌ µÇ³ª.. ÀÌ·± °£´ÜÇÑ °Í ¸¸ ÀÌÇØ Çϵµ·Ï ÇϽʽÿä. Çѹø ¼º°ø Çß´Ù°í ¹Ð¾î µÎÁö ¸¶½Ã°í °è¼Ó ¹Ýº¹Çؼ­ Çغ¸¼¼¿ä..!! ±×·³ À̸¸..!! ³¡.