小白飘过,挺简单的,明码,但爆破被检测了,再去看看,不知道这样有没有cb
00401170/.55 PUSH EBP ;按钮事件
00401171|.8BEC MOV EBP, ESP
00401173|.81EC 1C000000 SUB ESP, 0x1C
00401179|.833D B8634B00>CMP DWORD PTR DS:, 0x1 ;检测调试器
00401180|.0F84 D6020000 JE 0040145C
00401186|.68 01030080 PUSH 0x80000301
0040118B|.6A 00 PUSH 0x0
0040118D|.FF35 B8634B00 PUSH DWORD PTR DS:
00401193|.68 01000000 PUSH 0x1
00401198|.BB 80764000 MOV EBX, 00407680
0040119D|.E8 1E5B0000 CALL 00406CC0
004011A2|.83C4 10 ADD ESP, 0x10
004011A5|.8945 FC MOV DWORD PTR SS:, EAX
004011A8|.6A FF PUSH -0x1
004011AA|.6A 08 PUSH 0x8
004011AC|.68 11020116 PUSH 0x16010211
004011B1|.68 01000152 PUSH 0x52010001
004011B6|.E8 0B5B0000 CALL 00406CC6 ;机器吗
004011BB|.83C4 10 ADD ESP, 0x10
004011BE|.8945 F8 MOV DWORD PTR SS:, EAX
004011C1|.FF75 FC PUSH DWORD PTR SS:
004011C4|.FF75 F8 PUSH DWORD PTR SS:
004011C7|.B9 02000000 MOV ECX, 0x2
004011CC|.E8 9EFEFFFF CALL 0040106F
004011D1|.83C4 08 ADD ESP, 0x8
004011D4|.8945 F4 MOV DWORD PTR SS:, EAX
004011D7|.8B5D F8 MOV EBX, DWORD PTR SS:
004011DA|.85DB TEST EBX, EBX
004011DC|.74 09 JE SHORT 004011E7
004011DE|.53 PUSH EBX
004011DF|.E8 D05A0000 CALL 00406CB4
004011E4|.83C4 04 ADD ESP, 0x4
004011E7|>8B5D FC MOV EBX, DWORD PTR SS:
004011EA|.85DB TEST EBX, EBX
004011EC|.74 09 JE SHORT 004011F7
004011EE|.53 PUSH EBX
004011EF|.E8 C05A0000 CALL 00406CB4
004011F4|.83C4 04 ADD ESP, 0x4
004011F7|>68 04000080 PUSH 0x80000004
004011FC|.6A 00 PUSH 0x0
004011FE|.8B45 F4 MOV EAX, DWORD PTR SS:
00401201|.85C0 TEST EAX, EAX
00401203|.75 05 JNZ SHORT 0040120A
00401205|.B8 3CF54800 MOV EAX, 0048F53C ;ā
0040120A|>50 PUSH EAX
0040120B|.68 01000000 PUSH 0x1
00401210|.BB D0744000 MOV EBX, 004074D0
00401215|.E8 A65A0000 CALL 00406CC0
0040121A|.83C4 10 ADD ESP, 0x10
0040121D|.8945 F0 MOV DWORD PTR SS:, EAX
00401220|.8B5D F4 MOV EBX, DWORD PTR SS:
00401223|.85DB TEST EBX, EBX
00401225|.74 09 JE SHORT 00401230
00401227|.53 PUSH EBX
00401228|.E8 875A0000 CALL 00406CB4
0040122D|.83C4 04 ADD ESP, 0x4
00401230|>68 05000080 PUSH 0x80000005
00401235|.6A 00 PUSH 0x0
00401237|.8B45 F0 MOV EAX, DWORD PTR SS:
0040123A|.85C0 TEST EAX, EAX
0040123C|.75 05 JNZ SHORT 00401243
0040123E|.B8 3DF54800 MOV EAX, 0048F53D
00401243|>50 PUSH EAX
00401244|.68 01000000 PUSH 0x1
00401249|.B8 01000000 MOV EAX, 0x1
0040124E|.BB 50464600 MOV EBX, 00464650
00401253|.E8 745A0000 CALL 00406CCC
00401258|.83C4 10 ADD ESP, 0x10
0040125B|.8945 EC MOV DWORD PTR SS:, EAX ;出现一些东西
0040125E|.8B5D F0 MOV EBX, DWORD PTR SS: ;495598a08c56f7cd6bdd5bc5b0e3b454
00401261|.85DB TEST EBX, EBX
00401263|.74 09 JE SHORT 0040126E
00401265|.53 PUSH EBX
00401266|.E8 495A0000 CALL 00406CB4
0040126B|.83C4 04 ADD ESP, 0x4
0040126E|>6A FF PUSH -0x1
00401270|.6A 08 PUSH 0x8
00401272|.68 14020116 PUSH 0x16010214
00401277|.68 01000152 PUSH 0x52010001
0040127C|.E8 455A0000 CALL 00406CC6
00401281|.83C4 10 ADD ESP, 0x10
00401284|.8945 E8 MOV DWORD PTR SS:, EAX ;出现假码
00401287|.8B45 EC MOV EAX, DWORD PTR SS:
0040128A|.50 PUSH EAX
0040128B|.FF75 E8 PUSH DWORD PTR SS:
0040128E|.E8 38FEFFFF CALL 004010CB ;真假码对比
00401293|.83C4 08 ADD ESP, 0x8
00401296|.83F8 00 CMP EAX, 0x0
00401299|.B8 00000000 MOV EAX, 0x0
0040129E|.0F94C0 SETE AL
004012A1|.8945 E4 MOV DWORD PTR SS:, EAX
004012A4|.8B5D E8 MOV EBX, DWORD PTR SS:
004012A7|.85DB TEST EBX, EBX
004012A9|.74 09 JE SHORT 004012B4
004012AB|.53 PUSH EBX
004012AC|.E8 035A0000 CALL 00406CB4
004012B1|.83C4 04 ADD ESP, 0x4
004012B4|>8B5D EC MOV EBX, DWORD PTR SS:
004012B7|.85DB TEST EBX, EBX
004012B9|.74 09 JE SHORT 004012C4
004012BB|.53 PUSH EBX
004012BC|.E8 F3590000 CALL 00406CB4
004012C1|.83C4 04 ADD ESP, 0x4
004012C4|>837D E4 00 CMP DWORD PTR SS:, 0x0
004012C8 90 NOP
004012C9 90 NOP
004012CA 90 NOP
004012CB 90 NOP
004012CC 90 NOP
004012CD 90 NOP
004012CE|.68 010100A0 PUSH 0xA0000101
004012D3|.6A 00 PUSH 0x0
004012D5|.68 45F54800 PUSH 0048F545
004012DA|.68 01000000 PUSH 0x1
004012DF|.BB 80764000 MOV EBX, 00407680
004012E4|.E8 D7590000 CALL 00406CC0 ;被发现了
004012E9|.83C4 10 ADD ESP, 0x10
004012EC|.8945 FC MOV DWORD PTR SS:, EAX
004012EF|.FF75 FC PUSH DWORD PTR SS:
004012F2|.68 5BF54800 PUSH 0048F55B ;恭喜你爆破成功!
004012F7|.B9 02000000 MOV ECX, 0x2
004012FC|.E8 6EFDFFFF CALL 0040106F
00401301|.83C4 08 ADD ESP, 0x8
00401304|.8945 F8 MOV DWORD PTR SS:, EAX
00401307|.8B5D FC MOV EBX, DWORD PTR SS:
0040130A|.85DB TEST EBX, EBX
0040130C|.74 09 JE SHORT 00401317
0040130E|.53 PUSH EBX
0040130F|.E8 A0590000 CALL 00406CB4
00401314|.83C4 04 ADD ESP, 0x4
00401317|>8B45 F8 MOV EAX, DWORD PTR SS:
0040131A|.50 PUSH EAX
0040131B|.8B1D BC634B00 MOV EBX, DWORD PTR DS:
00401321|.85DB TEST EBX, EBX
00401323 EB 09 JMP SHORT 0040132E
00401325|.53 PUSH EBX
00401326|.E8 89590000 CALL 00406CB4 ;发现调试工具
0040132B|.83C4 04 ADD ESP, 0x4
0040132E|>58 POP EAX ;003C6318
0040132F|.A3 BC634B00 MOV DWORD PTR DS:, EAX
00401334|.833D B8634B00>CMP DWORD PTR DS:, 0x1
签名看得我头晕恶心......小白表示你这并不太白 我还要多学学
签名看得我头晕恶心......小白表示你这并不太白 我还要多学学 真小白表示6666666 感觉很厉害,支持楼主
页:
[1]
2