PEID査壳:ORiEN v2.11 - 2.12 -> Fisun Alexander *
脱壳:OD载入来到0064A000,F8两次到0064A163。
ESP定律:hr esp后f9一次,一直F8后看到jmp
int
sti特征代吗
F8来到OEP:00460331,Lordpe脱壳,ImpREC修复
破解:
OD载入修复后的,来到00460331
插件-查找字符串;银钻会员:00401a30
00401A30 |. 68 F42E4D00 push 修复_.004D2EF4 ; 银砖会员
00401A35 |. 68 04000080 push 80000004
00401A3A |. 6A 00 push 0
00401A3C |. 8B45 F4 mov eax,[local.3]
00401A3F |. 85C0 test eax,eax
00401A41 |. 75 05 jnz short 修复_.00401A48
00401A43 |. B8 8A514800 mov eax,修复_.0048518A
00401A48 |> 50 push eax
00401A49 |. 68 04000000 push 4
00401A4E |. BB E0454000 mov ebx,修复_.004045E0
00401A53 |. E8 7E260000 call 修复_.004040D6
00401A58 |. 83C4 34 add esp,34
00401A5B |. 8945 EC mov [local.5],eax
00401A5E |. 837D EC FF cmp [local.5],-1
00401A62 |. 0F84 52000000 je 修复_.00401ABA ;这个不能跳 nop
00401A68 |. 6A 00 push 0
00401A6A |. 6A 00 push 0
00401A6C |. 6A 00 push 0
00401A6E |. 68 01030080 push 80000301
00401A73 |. 6A 00 push 0
00401A75 |. 68 00000000 push 0
00401A7A |. 68 04000080 push 80000004
00401A7F |. 6A 00 push 0
00401A81 |. 68 FD2E4D00 push 修复_.004D2EFD ; 登陆成功!
00401A86 |. 68 03000000 push 3
00401A8B |. BB 904F4000 mov ebx,修复_.00404F90
00401A90 |. E8 41260000 call 修复_.004040D6
00401A95 |. 83C4 28 add esp,28
00401A98 |. 6A 00 push 0
00401A9A |. 68 3B2E4D00 push 修复_.004D2E3B ; 1
00401A9F |. 6A FF push -1
00401AA1 |. 6A 08 push 8
00401AA3 |. 68 FE000116 push 160100FE
00401AA8 |. 68 0A000152 push 5201000A
00401AAD |. E8 18260000 call 修复_.004040CA
00401AB2 |. 83C4 18 add esp,18
00401AB5 |. E9 30000000 jmp 修复_.00401AEA
00401ABA |> 6A 00 push 0
00401ABC |. 6A 00 push 0
00401ABE |. 6A 00 push 0
00401AC0 |. 68 01030080 push 80000301
00401AC5 |. 6A 00 push 0
00401AC7 |. 68 00000000 push 0
00401ACC |. 68 04000080 push 80000004
00401AD1 |. 6A 00 push 0
00401AD3 |. 68 072F4D00 push 修复_.004D2F07 ; 登陆失败!
00401AD8 |. 68 03000000 push 3
00401ADD |. BB 904F4000 mov ebx,修复_.00404F90
00401AE2 |. E8 EF250000 call 修复_.004040D6
00401AE7 |. 83C4 28 add esp,28
00401AEA |> 8B5D FC mov ebx,[local.1]
00401AED |. 85DB test ebx,ebx
00401AEF |. 74 09 je short 修复_.00401AFA
00401AF1 |. 53 push ebx
00401AF2 |. E8 CD250000 call 修复_.004040C4
00401AF7 |. 83C4 04 add esp,4
00401AFA |> 8B5D F8 mov ebx,[local.2]
00401AFD |. 85DB test ebx,ebx
00401AFF |. 74 09 je short 修复_.00401B0A
00401B01 |. 53 push ebx
00401B02 |. E8 BD250000 call 修复_.004040C4
00401B07 |. 83C4 04 add esp,4
00401B0A |> 8B5D F4 mov ebx,[local.3]
00401B0D |. 85DB test ebx,ebx
00401B0F |. 74 09 je short 修复_.00401B1A
00401B11 |. 53 push ebx
如果你真想要,去。祝你玩得愉快!