Welcome!

By registering with us, you'll be able to discuss, share and private message with other members of our community.

SignUp Now!

nanovim

newbie
EliteGhost
Joined
Jul 12, 2021
Messages
717
Reaction score
9,213
DragonCoin
1,020,556
Eagle
Ancient Piranha
Ulat Gonggok Gergasi
Salam

I'm back with another challenge and its making keygen for this time.
Like always, submit your POC to me for 3x in your own way and you might get the chance to get my Simple Malware Analysis Class for FREE

Your Objectives:

Find your login name, find the number of characters needed for the serial key and make a keygen with it (can easily be done with python script)

Peringatan:
Tolong run file dan debug dalam VMware / Vbox untuk mengelakkan anda terkena malware.
Saya tak letak apa-apa malicious code, boleh semak di Hash berikut untuk integriti file

Zip Pass: infected


.7z [ 14.78 KB ]
MD5: e3d2ec997abb339924634f876cb9cd6e
SHA-256: 70f921249264282422f04f0a8993a61efed521dff099a2152e548573e25af2f1
VT: [ 0/68] -- VirusTotal Link 7z
1650180705842.png

keygenme.exe [ 41.48 KB ]
MD5: adc8dcd26213c1da4af6f59c13ac10e8
SHA-256: 7cc5ecc452509ff36126879fdffede6e16fc6390261f2f36c55115da8ec376d4
VT : [ 9/68 ] -- VirusTotal Link .exe
1650180737517.png

Anti-Virus vendors flag dia as malicious sebab bila dia check Import Address Table (IAT) dalam program ni ada yang biasa diguna pakai dekat malware, contohnya macam "CreateFileA()" yang ada juga pada malware. Tapi in this code, insyaAllah selamat; nak tengok source code boleh PM



Goodluck!
 
Last edited:

fafau

Recruit
DFM Member
Joined
Apr 15, 2022
Messages
2
Reaction score
16
DragonCoin
525
1. Basically program takes username of the current user of windows
1650271302134.png

2. Then dia compare length of the input with the length of username of the current user
1650271422524.png

3. Then dia compare the first character of input string with the first character of username of the current user punya string
1650271648755.png

4. Then dia minta for any random key with length of 8 and ascii value below than 559
1650271714149.png
1650272422017.png

6. If betul got the success message
1650271949191.png
1650272057291.png
 
Last edited:

nanovim

newbie
EliteGhost
Joined
Jul 12, 2021
Messages
717
Reaction score
9,213
DragonCoin
1,020,556
Eagle
Ancient Piranha
Ulat Gonggok Gergasi
1. Basically program takes username of the current user of windows
View attachment 21573

2. Then dia compare length of the input with the length of username of the current user
View attachment 21576

3. Then dia compare the first character of input string with the first character of username of the current user punya string
View attachment 21578

4. Then dia minta for any random key with length of 8 and ascii value below than 559
View attachment 21580
View attachment 21583

6. If betul got the success message
View attachment 21581
View attachment 21582

Ini jarang tak manthul punya orang, hebat πŸ‘πŸΌπŸ‘πŸΌπŸ‘πŸΌ
 
Top