¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡ OkStart Cracking Tutorials No. 15 °Å¿ø Á¦Æ®¿Àµð¿À Version 4.01 & 4.02 Trial »ç¿ë±â°£Á¦ÇÑ & »õ¾Ù¹ü ¸Å´º ÆÐÄ¡ H O M E : http://www.cowon.co.kr D O W N : ftp://ftp.bora.net/pub/sw/jet-audio/jad402te.exe USING Tools : Numega Soft-Ice Version 3.24 ¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡¦¡ À̹ø¿¡´Â Á¦Æ® ¿Àµð¿À 4.01 ÆÇÀ» Çغ¸°Ú½À´Ï´Ù. ÀÌ ÇÁ·Î±×·¥ÀÇ »ç¿ë±â°£ Á¦ÇÑÀº Àü¿¡ ¸¹ÀÌ Çغ¸¾Ò±â ¶§¹®¿¡ º°·Î ¾î·Á¿î°ÍÀÌ ¾ø½À´Ï´Ù ¶Ç ¸Å´º ºÎºÐÀº ±×³É ¾Æ·¡¸¦ Âü°í ÇÏ½Ã¸é °¢ÀÚ ´Ù ÇÏ½Ç ¼ö ÀÖÀ» °Í ÀÔ´Ï´Ù. ±×·³ Part ·Î ³ª´©¾î¼­ ¼³¸í ÇÕ´Ï´Ù. -- Part # 1 »ç¿ë±â°£ Á¦ÇÑ ÆÐÄ¡Çϱâ.. -------------------------------- Àü¿¡µµ Çغ¸¾ÒÁö¸¸.. »ç¿ëÇÏ´Â ºêÆ÷´Â... ºêÆ÷´Â CreateDialogIndirectParamA ¸¦ »ç¿ëÇÕ´Ï´Ù.. P ret ¸¦ ´©¸£¸é¼­ ¾Æ·¡ÀÇ Äڵ带 ã¾Æ º¸½Ê½Ã¿À! ÁÖ¼®¸¸ º¸¸é ´Ù ¾Ë °ÍÀÓ.. :0042D2FB 0F85ED000000 jne 0042D3EE :0042D301 8BCE mov ecx, esi :0042D303 E8F8210000 call 0042F500 <- P RET ·Î ºüÁ®³ª¿À¸é ÀÌ °÷À¸·Î ºüÁ® ³ª¿É´Ï´Ù. P RET ¸¦ µÎ¹ø ´©¸£½Ã¸é À§ÀÇ ºÎºÐÀÌ ³ª¿É´Ï´Ù.. <= È®ÀÎÇϽöó! ¾È¿¡¼­ ¼öÁ¤ÇÏ½Ã¸é ¾ÈµË´Ï´Ù.. ####### ¾È¿¡¼­ ¼öÁ¤ÇϽøé Album ±â´ÉÀÌ µÇÁö ¾Ê½À´Ï´Ù. À§ÀÇ CALL ºÎºÐÀ» »èÁ¦ ÇϽʽÿÀ! nop ·Î.. ±×·¯¸é »ç¿ë±â°£ Á¦ÇÑÀÌ ¾ø¾î Áý´Ï´Ù... <- ¾Æ´Ï¸é mov eax,1 À̶ó°í º¯°æÇϽôøÁö¿©!!?? :0042D308 85C0 test eax, eax :0042D30A 0F8EDE000000 jle 0042D3EE ####### Version 4.02 À϶§¿¡´Â :426A33 mov eax,1 <=- CALL ºÎºÐÀ» ¿ä·¸°Ô ¼öÁ¤ÇÏ½Ã¸é µË´Ï´Ù.. :426A38 test eax,eax :426A3A jle 00426b1e Version 4.01 À̳ª Version 4.02 À̳ª.. ´Ù ¸¶Âù°¡ÁöÀÔ´Ï´Ù. ¹öÀüÀÌ 0.01 ¿Ã¶ó °¬´Ù°í.. º¯ÇÏ°Ú½À´Ï±î??? ÀÌ Áú¹®À» ÇϽźÐÀº ¾ÆÁ÷ Àͼ÷Ä¡ ¾ÊÀ¸½ÅºÐ °°±º¿©.. È®ÀÎÇغ» °á°ú.. ¾ÆÁÖ ¶È°°±º¿©!! :0042D310 8B86C4000000 mov eax, dword ptr [esi+000000C4] :0042D316 50 push eax :0042D317 E8D4180100 call 0043EBF0 :0042D31C 83C404 add esp, 00000004 :0042D31F 8B86E4000000 mov eax, dword ptr [esi+000000E4] :0042D325 48 dec eax :0042D326 83F804 cmp eax, 00000004 :0042D329 777F ja 0042D3AA :0042D32B FF24850CD44200 jmp dword ptr [4*eax+0042D40C] --------------------------------------------------------------³¡-------- -- Part # 2 »õ ¾Ù¹ü Á¦ÇѸ޴º ÆÐÄ¡Çϱâ ---------------------------------- ÇÁ·Î±×·¥À» ½ÇÇà½ÃÅ°°í³ª¼­ »õ ¾Ù¹ü À» ¼±ÅÃÇϸé.. ¸Þ¼¼Áö°¡ ³ª¿É´Ï´Ù.. ¹¹ 1°³¸¸ »ç¿ëÇÒ ¼ö ÀÖ´Ù³ª?? ±×·±µ¥ ÀÌ ÇÁ·Î±×·¥Àº »õ ¾Ù¹ü ¸»±¸ ±× ¹Ø¿¡ »õ À̸§À¸·Î ÀúÀåÀ» ´­¸£¸é ºêÆ÷´Â MessageBoxA ¸¦ »ç¿ëÇÕ´Ï´Ù.. ±×·±´ÙÀ½ P ret ·Î ºüÁ® ³ª¿À´Ù º¸¸é.. ¾Æ·¡ÀÇ Äڵ带 º¼ ¼ö ÀÖ½À´Ï´Ù. :00481200 8B4D08 mov ecx, dword ptr [ebp+08] :00481203 FF5514 call [ebp+14] <- ÀÌ ºÎºÐÀ» ãÀ¸½Ê½Ã¿À! ÀÌ ºÎºÐÀº [ebp+14] ÀÌ °ÍÀº Áö±Ý ¼±ÅÃµÈ ¸Þ´º °ª¿¡ µû¶ó ´Ù¸¥ °÷À¸·Î Jump ÇÏ°Ô µË´Ï´Ù. ±×·¯´Ï±î.. ÀÌ ºÎºÐ¿¡ ºêÆ÷¸¦ °É±¸ ´Ù¸¥ ¸Þ´º ±×·¯´Ï±î.. »õ ¾Ù¹ü À» ¼±ÅÃÇϱ¸. ¶Ç. ´Ù¸¥À̸§À¸·Î ÀúÀåÀ» ¼±ÅÃÇϱ¸ ¾Æ·¡¸¦ º¸½Ê½Ã¿À! :00481206 E997000000 jmp 004812A2 - ´Ù¸¥À̸§À¸·Î ÀúÀå ·çƾ.. :004549C0 64A100000000 mov eax, dword ptr fs:[00000000] :004549C6 55 push ebp :004549C7 8BEC mov ebp, esp :004549C9 6AFF push FFFFFFFF :004549CB 68734C4500 push 00454C73 :004549D0 50 push eax :004549D1 64892500000000 mov dword ptr fs:[00000000], esp :004549D8 81EC44010000 sub esp, 00000144 :004549DE 53 push ebx - »õ ¾Ù¹ü ·çƾ.. :004548D0 64A100000000 mov eax, dword ptr fs:[00000000] <- ±×³É ½ÃÀÛ ºÎºÐ¿¡¼­ À§ ´Ù¸¥À̸§À¸·Î ÀúÀå·çƾÀ¸·Î Jump ½ÃÄÑ ¹ö¸®¸é µË´Ï´Ù. ¹¹½Ã±â³Ä Çϸé.. À§ÀÇ Äڵ带 jmp 4549c0 ÀÌ·±½ÄÀ¸·Î ¼öÁ¤ÇØ ÁÖ½Ã¸é µË´Ï´Ù. À½. °£´ÜÇÏÁ®.. :004548D6 55 push ebp :004548D7 8BEC mov ebp, esp :004548D9 6AFF push FFFFFFFF :004548DB 68AB494500 push 004549AB :004548E0 50 push eax :004548E1 64892500000000 mov dword ptr fs:[00000000], esp :004548E8 81EC3C010000 sub esp, 0000013C :004548EE 56 push esi ------------------------------------------------³¡------------ À½. ÀÌ ÇÁ·Î±×·¥Àº ÀÌ·±½ÄÀ¸·Î ÆÐÄ¡ ÇßÁö¸¸. ´Ù¸¥ ÇÁ·Î±×·¥µéÀº ¶Ç ´Ù¸¥½Ä À¸·Î ÇÏ¸é µË´Ï´Ù. ¹¹½Ã±â³Ä Çϸé.. º¸Åë Save ºÎºÐÀ» ½ÇÇàÇÏÁö ¸øÇϵµ·Ï ´Ù¸¥ ÁÖ¼Ò·Î ºüÁöµµ·Ï Jmp ½ÃÄÑ ¹ö¸³´Ï´Ù. ÀÌ ºÎºÐÀ» nop ·Î ¹Ù²Ù´øÁö ÀÌ·±½ÄÀ¸·Î Çϸé Save ·çƾÀ» ½ÇÇàÇÏ°Ô µË´Ï´Ù. ±× Save ·çƾÀ» Áö¿ìÁú ¾Ê°í ±×³É ÇÁ·Î±×·¥ ¼Ó¿¡ ³²°Ü µÎ±â ¶§¹®¿¡.. À§ÀÇ ¹æ¹ýÀ¸·Î ÆÐÄ¡°¡ °¡´É ÇÕ´Ï´Ù. ±×¸®°í º¸Åë ÀÌ·± ¹æ¹ýÀ¸·Î µÇ¾î Àֱ⠶§¹®¿¡ ¾î·Á¿î °ÍÀÌ ¾Æ´Õ´Ï´Ù.. ´Ù¸¥ ÇÁ·Î±×·¥ÀÌ ÀÖ´Ù¸é ã¾Æ º¸½Ê½Ã¿À! À½.. ³¡..