DBReader 1.68Æƽâ³õ²½·ÖÎö--ÎÒÓëMD5µÄµÚÒ»´Î(ʧ°Ü)
newlaos[CCG][DFCG]
Èí¼þÓïÑÔ£º¼òÌåÖÐÎÄ
Èí¼þÀà±ð£º¹ú²úÈí¼þ/¹²Ïí°æ/±à³Ì¹¤¾ß
ÔËÐл·¾³£ºWin9x/Me/NT/2000/XP
¼ÓÈëʱ¼ä£º2003-6-5
7:08:38
Èí¼þ½éÉÜ£ºDBReader ÊÇÒ»¸öÊý¾Ý¿â¹ÜÀí¹¤¾ß,ͨ¹ýADOÄܹ»Á¬½Óµ½¶àÖÖÊý¾Ý¿â.
ͨ¹ý¶ÔÊý¾Ý¿âµÄ·Ö²ã´ÎÏÔʾ,¿ÉÒÔä¯ÀÀ,±à¼¸÷ÖÖÊý¾Ý¶ÔÏó.DBReader¿ÉÒÔ: 1.ʹÓÃADOͨ¹ýOLE DB Provider»òÕßODBCÁ¬½Óµ½¶àÖÖÊý¾Ý¿â.
2.ä¯ÀÀºÍ±à¼¸÷ÖÖÊý¾Ý¿â¶ÔÏó,°üÀ¨±í,ÊÓͼ,×Ö¶Î,Ë÷Òý,ÒÔ¼°´æ´¢¶ÔÏó¶¨Òå(ÏÖÔÚ½ösqlserver).
3.ÏÔʾ±í»òÊÓͼÏà¹ØµÄÖ÷¼ü,Íâ¼ü,Ë÷Òý.ÏÔʾ×ֶεÄÀàÐÍ,³¤¶È,¿É·ñΪnull,µÈµÈ. 4.Ê÷×´ÏÔʾÊý¾Ý¿âµÄ½á¹¹(±í,ÊÓͼ,×Ö¶Î,Ë÷Òý,´æ´¢¹ý³Ì,µÈµÈ).
5.ÊäÈëSQLÃüÁî²éѯÊý¾Ý¿â,²úÉú¿É±à¼µÄÊý¾Ý¼¯. 6.²é¿´BLOBÐÍ×Ö¶Î(plain text,RTF,image).
7.ÔËÐв»ÏÞ³¤¶ÈµÄsql½Å±¾,¿ÉÒÔ´ÓÎļþÔØÈësql½Å±¾,Ò²¿É½«sql½Å±¾´æÈëÎļþ. 8.µ÷ÓÃϵͳµÄODBC¹ÜÀí¹¦ÄÜ,ÅäÖÃODBC DSN(Data Source
Name).
¼ÓÃÜ·½Ê½£º×¢²áÂë
¹¦ÄÜÏÞÖÆ£º´ÎÊýÏÞÖÆ
PJ¹¤¾ß£ºTRW20001.23×¢²á°æ¡¢W32Dasm8.93»Æ½ð°æ£¬FI2.5£¬AspackDie
1.41
ºº»¯°æ
PJÈÕÆÚ£º2003-06-06
×÷ÕßnewlaosÉêÃ÷£ºÖ»ÊÇѧϰ£¬Çë²»ÓÃÓÚÉÌÒµÓÃ;»òÊǽ«±¾ÎÄ·½·¨ÖÆ×÷µÄ×¢²á»úÈÎÒâ´«²¥£¬Ôì³Éºó¹û£¬±¾ÈËÒ»¸Å²»¸º¡£
1¡¢ÏÈÓÃFI2.5¿´Ò»ÏÂÖ÷Îļþ¡°DBReader.exe¡±£¬¼ÓÁËASPACK2.12¿Ç£¬ÓÃAspackDie 1.41 ºº»¯°æÇáËɸ㶨£¬µ±È»ÊÖ¶¯Ò²²»ÄÑ£¬Éú³ÉÍÑ¿ÇÎļþUNPACKED.EXE
2¡¢ÓÃW32Dasm8.93»Æ½ð°æ¶ÔUNPACKED.EXE½øÐо²Ì¬·´»ã±à£¬ÔÙÓô®Ê½Êý¾Ý²Î¿¼£¬ÕÒµ½"Invalid user/serial"£¬Ë«»÷À´µ½ÏÂÃæ´úÂë¶Î¡£
3¡¢ÔÙÓÃTRW20001.23×¢²á°æ½øÐж¯Ì¬¸ú×Ù£¬Ï¶ÏBPX
004D1C9E(ͨ³£ÔÚ×¢²á³É¹¦Óë·ñµÄÇ°ÃæһЩ϶ϣ¬ÕâÑù£¬²ÅÄÜÕÒµ½¹Ø¼ü²¿·Ö)£¬
ÏÈÊäÈë×¢²áÃû£ºnewlaos
¼ÙÂë:
78787878
.......
.......
.......
.......
:004D1C9E 8B1560125300
mov edx, dword ptr
[00531260]
:004D1CA4 8B12
mov edx, dword ptr [edx]
:004D1CA6 E8992AF3FF
call 00404744
:004D1CAB 751A
jne 004D1CC7
<===ÕâÀïÒªÌø×ß
:004D1CAD 6A00
push 00000000
:004D1CAF 668B0DE41D4D00
mov cx, word ptr [004D1DE4]
:004D1CB6 B202
mov dl, 02
* Possible StringData Ref from Code Obj ->"Input your username"
|
:004D1CB8 B8F01D4D00
mov eax, 004D1DF0 <===ûÊäÈë×¢²áÃû
:004D1CBD
E8DA5FF6FF call
00437C9C
:004D1CC2 E9DE000000
jmp 004D1DA5
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1CAB(C)
|
:004D1CC7 8D55F0
lea edx, dword ptr [ebp-10]
:004D1CCA
8B8310030000 mov eax, dword ptr
[ebx+00000310]
:004D1CD0 E83B03FAFF
call 00472010
:004D1CD5 8B45F0
mov eax, dword ptr [ebp-10]
:004D1CD8 8D55F4
lea edx, dword ptr
[ebp-0C]
:004D1CDB E82C6FF3FF
call 00408C0C
:004D1CE0 8B45F4
mov eax, dword ptr [ebp-0C]
:004D1CE3 8B1560125300
mov edx, dword ptr
[00531260]
:004D1CE9 8B12
mov edx, dword ptr [edx]
:004D1CEB E8542AF3FF
call 00404744
:004D1CF0 751A
jne 004D1D0C
<===ÕâÀïÒªÌø×ß
:004D1CF2 6A00
push 00000000
:004D1CF4 668B0DE41D4D00
mov cx, word ptr [004D1DE4]
:004D1CFB B202
mov dl, 02
* Possible StringData Ref from Code Obj ->"Input your serial"
|
:004D1CFD B80C1E4D00
mov eax, 004D1E0C <===ûÊäÈëÐòÁкÅ
:004D1D02
E8955FF6FF call
00437C9C
:004D1D07 E999000000
jmp 004D1DA5
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1CF0(C)
|
:004D1D0C 8D55EC
lea edx, dword ptr [ebp-14]
:004D1D0F
8B8310030000 mov eax, dword ptr
[ebx+00000310]
:004D1D15 E8F602FAFF
call 00472010
:004D1D1A 8B45EC
mov eax, dword ptr [ebp-14]
<===EAX=78787878
:004D1D1D 50
push eax
:004D1D1E 8D55E8
lea edx, dword ptr [ebp-18]
:004D1D21 8B830C030000 mov eax,
dword ptr [ebx+0000030C]
:004D1D27 E8E402FAFF
call 00472010
:004D1D2C 8B55E8
mov edx, dword ptr [ebp-18]
<===EDX=newlaos
:004D1D2F 8B8318030000
mov eax, dword ptr [ebx+00000318]
:004D1D35 59
pop ecx
:004D1D36
E859FEFFFF call 004D1B94
<===ÕâÀïÊǹؼüµÄCALL,F8¸ú½ø
:004D1D3B 84C0
test al, al
<===ÒªÏëÕýÈ·×¢²á£¬ÔòAL²»ÄÜΪ0
:004D1D3D 750C
jne 004D1D4B <===¹Ø¼üÌøתÁË
* Possible StringData Ref from Code Obj ->"Invalid user/serial"
|
:004D1D3F B8281E4D00
mov eax, 004D1E28 <===ÎÞЧµÄ×¢²áÃû»òÃÜÂë
:004D1D44
E84B60F6FF call
00437D94
:004D1D49 EB5A
jmp 004D1DA5
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1D3D(C)
|
:004D1D4B 8D55E4
lea edx, dword ptr [ebp-1C]
:004D1D4E
8B830C030000 mov eax, dword ptr
[ebx+0000030C]
:004D1D54 E8B702FAFF
call 00472010
:004D1D59 8B4DE4
mov ecx, dword ptr [ebp-1C]
* Possible StringData Ref from Code Obj ->"user"
|
:004D1D5C BA441E4D00
mov edx, 004D1E44
:004D1D61 8B8318030000
mov eax, dword ptr [ebx+00000318]
:004D1D67 E800FBFFFF
call 004D186C
:004D1D6C
8D55E0 lea edx,
dword ptr [ebp-20]
:004D1D6F 8B8310030000
mov eax, dword ptr [ebx+00000310]
:004D1D75 E89602FAFF
call 00472010
:004D1D7A 8B4DE0
mov ecx, dword ptr
[ebp-20]
* Possible StringData Ref from Code Obj ->"serial"
|
:004D1D7D BA541E4D00
mov edx, 004D1E54
:004D1D82 8B8318030000
mov eax, dword ptr [ebx+00000318]
:004D1D88 E8DFFAFFFF
call 004D186C
* Possible StringData Ref from Code Obj ->"Register success"
|
:004D1D8D B8641E4D00
mov eax, 004D1E64 <===×¢²á³É¹¦
:004D1D92 E8FD5FF6FF
call 00437D94
:004D1D97
C6831C03000001 mov byte ptr [ebx+0000031C],
01
:004D1D9E 8BC3
mov eax, ebx
:004D1DA0 E80FCCFBFF
call
0048E9B4
.......
.......
-----------------:004D1D36 call 004D1B94
¹Ø¼üµÄCALL,F8¸ú½ø------------------
:004D1B94 55
push ebp
:004D1B95 8BEC
mov ebp,
esp
:004D1B97 6A00
push 00000000
:004D1B99 6A00
push 00000000
:004D1B9B 6A00
push
00000000
:004D1B9D 6A00
push 00000000
:004D1B9F 6A00
push 00000000
:004D1BA1 53
push
ebx
:004D1BA2 56
push esi
:004D1BA3 894DF8
mov dword ptr [ebp-08], ecx
:004D1BA6
8955FC mov dword
ptr [ebp-04], edx
:004D1BA9 8BF0
mov esi, eax
:004D1BAB 8B45FC
mov eax, dword ptr
[ebp-04]
:004D1BAE E8352CF3FF
call 004047E8
:004D1BB3 8B45F8
mov eax, dword ptr [ebp-08]
:004D1BB6 E82D2CF3FF
call 004047E8
:004D1BBB 33C0
xor eax,
eax
:004D1BBD 55
push ebp
:004D1BBE 68241C4D00
push 004D1C24
:004D1BC3 64FF30
push dword ptr fs:[eax]
:004D1BC6
648920 mov dword
ptr fs:[eax], esp
:004D1BC9 33DB
xor ebx, ebx
:004D1BCB 8D55F4
lea edx, dword ptr
[ebp-0C]
:004D1BCE 8B45FC
mov eax, dword ptr [ebp-04] <===EAX=newlaos
:004D1BD1
E83670F3FF call 00408C0C
<===Ëã³ö×¢²áÃûµÄ³¤¶ÈΪ7
:004D1BD6 837DF400
cmp dword ptr [ebp-0C], 00000000
:004D1BDA 742D
je 004D1C09
<===Èç¹û×¢²áÃûûÊäÈ룬ÕâÀï¾ÍÌøÏòOVERÁË
:004D1BDC 8D55F0
lea edx, dword ptr [ebp-10]
:004D1BDF
8B45F8 mov eax,
dword ptr [ebp-08] <===EAX=78787878
:004D1BE2 E82570F3FF
call 00408C0C
<===Ëã³ö×¢²áÂëµÄ³¤¶È
:004D1BE7 837DF000
cmp dword ptr [ebp-10], 00000000
:004D1BEB 741C
je 004D1C09
<===Èç¹û×¢²áÂëûÊäÈ룬ÕâÀï¾ÍÌøÏòOVERÁË
:004D1BED 8D4DEC
lea ecx, dword ptr [ebp-14]
:004D1BF0
8B55FC mov edx,
dword ptr [ebp-04] <===EDX=newlaos
:004D1BF3 8BC6
mov eax, esi
:004D1BF5
E8CEFEFFFF call 004D1AC8
<===Õâ¸ö¾ÍËã·¨CALLÁË£¬F8¸ú½ø
:004D1BFA 8B55EC
mov edx, dword ptr [ebp-14]
<===EDX¾Í³öÀ´ÁË×¢²áÂëb577a94d731ÁË
:004D1BFD 8B45F8
mov eax, dword ptr [ebp-08]
<===EAX=78787878ÎÒÃÇÊäÈëµÄ¼ÙÂë
:004D1C00 E83F2BF3FF
call 00404744 <===ÄÃÕæÂëºÍ¼Ù×÷¶Ô±È
:004D1C05 7502
jne 004D1C09
<===Èç¹û²»¶Ô¾ÍÌøÏòOVERÁË
:004D1C07 B301
mov bl,
01
.......
.......
------------:004D1BF5 call 004D1AC8
Ëã·¨CALLÁË£¬F8¸ú½ø------------------
:004D1AC8 55
push ebp
:004D1AC9 8BEC
mov ebp,
esp
:004D1ACB 83C4E0
add esp, FFFFFFE0
:004D1ACE 53
push ebx
:004D1ACF 56
push
esi
:004D1AD0 57
push edi
:004D1AD1 33DB
xor ebx, ebx
:004D1AD3 895DE0
mov dword ptr [ebp-20],
ebx
:004D1AD6 895DF8
mov dword ptr [ebp-08], ebx
:004D1AD9 895DF4
mov dword ptr [ebp-0C],
ebx
:004D1ADC 8BF9
mov edi, ecx
:004D1ADE 8955FC
mov dword ptr [ebp-04], edx
:004D1AE1 8B45FC
mov eax, dword ptr
[ebp-04]
:004D1AE4 E8FF2CF3FF
call 004047E8
:004D1AE9 33C0
xor eax, eax
:004D1AEB 55
push ebp
:004D1AEC
68841B4D00 push
004D1B84
:004D1AF1 64FF30
push dword ptr fs:[eax]
:004D1AF4 648920
mov dword ptr fs:[eax],
esp
:004D1AF7 8D45F4
lea eax, dword ptr [ebp-0C]
:004D1AFA E83928F3FF
call 00404338
:004D1AFF 8D55E4
lea edx, dword ptr
[ebp-1C]
:004D1B02 8B45FC
mov eax, dword ptr [ebp-04] <===EAX=newlaos
:004D1B05
E846F5FFFF call 004D1050
<===Õâ¸ö¾ÍÊǹؼüµÄCALLÁË£¬F8¸ú½ø
:004D1B0A 8D45E4
lea eax, dword ptr [ebp-1C]
:004D1B0D 8D55F8
lea edx, dword ptr
[ebp-08]
:004D1B10 E8AFF5FFFF
call 004D10C4 <===Õâ¸öCALL£¬Ö»Êǽ«ÉÏÃæµÄCALLµÄÊýֵתΪע²áÂëµÄ³õÐÎ(Ò²¾ÍÊÇMD5ÂëµÄÖµÁË)
:004D1B15
8B45F8 mov eax,
dword ptr [ebp-08] <===EAX=bc581765755a299334dfd8376d3be1a9
:004D1B18
E8DB2AF3FF call
004045F8
:004D1B1D 8BF0
mov esi, eax
:004D1B1F 4E
dec esi
:004D1B20 85F6
test esi,
esi
:004D1B22 7C33
jl 004D1B57
:004D1B24 46
inc esi
:004D1B25 33DB
xor ebx, ebx
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1B55(C)
|
:004D1B27 8BC3
mov eax, ebx
:004D1B29 B903000000
mov ecx, 00000003
:004D1B2E
99
cdq
:004D1B2F F7F9
idiv ecx
:004D1B31 85D2
test edx, edx
:004D1B33 751E
jne
004D1B53
:004D1B35 8D45E0
lea eax, dword ptr [ebp-20]
:004D1B38 50
push eax
:004D1B39
B901000000 mov ecx,
00000001
:004D1B3E 8BD3
mov edx, ebx
:004D1B40 8B45F8
mov eax, dword ptr [ebp-08]
<===EAX=bc581765755a299334dfd8376d3be1a9
:004D1B43 E8102DF3FF
call 00404858
:004D1B48 8B55E0
mov edx, dword ptr
[ebp-20]
:004D1B4B 8D45F4
lea eax, dword ptr [ebp-0C]
:004D1B4E E8AD2AF3FF
call 00404600
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1B33(C)
|
:004D1B53 43
inc ebx
:004D1B54 4E
dec
esi
:004D1B55 75D0
jne 004D1B27
<===ÏòÉÏÌø¹¹³ÉÑ»·½á¹¹,Ö»´ÓµÚÒ»¸öҪȡ£¬Ö®ºó£¬¾ÍÊÇ3¸öÕû³ýλȡֵ¹¹³É×îºó×¢²áÂë¡£Ò²¾ÍÊÇb577a94d731
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1B22(C)
|
:004D1B57 8BC7
mov eax, edi
:004D1B59 8B55F4
mov edx, dword ptr
[ebp-0C]
.......
.......
--------:004D1B05 call 004D1050
¹Ø¼üµÄCALLÁË£¬F8¸ú½ø-------
:004D1050 55
push ebp
:004D1051 8BEC
mov ebp, esp
:004D1053
83C4A4 add esp,
FFFFFFA4
:004D1056 53
push ebx
:004D1057 8BDA
mov ebx, edx
:004D1059 8945FC
mov dword ptr [ebp-04],
eax
:004D105C 8B45FC
mov eax, dword ptr [ebp-04]
:004D105F E88437F3FF
call 004047E8
:004D1064 33C0
xor eax, eax
:004D1066 55
push
ebp
:004D1067 68B6104D00 push
004D10B6
:004D106C 64FF30
push dword ptr fs:[eax]
:004D106F 648920
mov dword ptr fs:[eax],
esp
:004D1072 8D45A4
lea eax, dword ptr [ebp-5C]
:004D1075 E8AEFEFFFF
call 004D0F28
:004D107A 8B45FC
mov eax, dword ptr [ebp-04]
<===EAX=newlaos
:004D107D E87635F3FF
call 004045F8 <===Ëã³ö³¤¶ÈEAX=7
:004D1082 50
push
eax
:004D1083 8B45FC
mov eax, dword ptr [ebp-04]
:004D1086 E86D37F3FF
call 004047F8
:004D108B 8BD0
mov edx, eax
:004D108D 8D45A4
lea eax, dword ptr
[ebp-5C]
<===ÕâÀïµÄÖµÊÇ(±ê×¼µÄMD5¼ÓÃÜËã·¨µÄ³õʼÊýÖµ)£¬µ«Ëƺõ×÷ÕßÓÖ×öÒ²Ð޸ģ¿£¿£¿
A=0x01234567
--->A=0x12345678
B=0x89abcdef --->B=0x89abcdef
C=0xfedcba98
--->C=0xfedcba98
D=0x76543210 --->D=0x87654321
:004D1090 59
pop ecx <===Ϊע²áÃûµÄ³¤¶ÈECX=7
:004D1091 E8C6FEFFFF
call 004D0F5C
<===½«×¢²áÂëµÄASCÖµ×é³ÉÒ»¸ö´óÊý×Ö6E65776C616F73
:004D1096 8BD3
mov edx, ebx
:004D1098 8D45A4
lea eax, dword ptr
[ebp-5C]
:004D109B E83CFFFFFF
call 004D0FDC <===Ëã·¨CALLÁË£¬F8ÔÙ¸ú½ø(ÔΣ¬¾¹È»ÊÇMD5µÄ¼ÓÃÜËã·¨)
:004D10A0 33C0
xor eax,
eax
:004D10A2 5A
pop edx
:004D10A3 59
pop ecx
:004D10A4 59
pop
ecx
:004D10A5 648910
mov dword ptr fs:[eax], edx
:004D10A8 68BD104D00
push 004D10BD
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D10BB(U)
|
:004D10AD 8D45FC
lea eax, dword ptr [ebp-04]
:004D10B0
E88332F3FF call
00404338
:004D10B5 C3
ret
.......
.......
------------:004D109B call
004D0FDC Ëã·¨CALLÁË£¬F8ÔÙ¸ú½ø--------
:004D0FDC 53
push ebx
:004D0FDD 56
push
esi
:004D0FDE 83C4F8
add esp, FFFFFFF8
:004D0FE1 8BF2
mov esi, edx
:004D0FE3 8BD8
mov ebx, eax
:004D0FE5
8BD4 mov
edx, esp
:004D0FE7 8D4310
lea eax, dword ptr [ebx+10]
:004D0FEA B902000000
mov ecx, 00000002
:004D0FEF E8C8F7FFFF
call 004D07BC
<===ÊÇÕâÀïËã³öÀ´µÄ0x38
:004D0FF4 8B4310
mov eax, dword ptr [ebx+10]
<===EAX=0x38(³ÌÐòÄÚ¶¨£¿)
:004D0FF7 C1E803
shr eax, 03
:004D0FFA 83E03F
and eax, 0000003F
:004D0FFD 83F838
cmp eax,
00000038
:004D1000 730B
jnb 004D100D
:004D1002 BA38000000
mov edx, 00000038
:004D1007 2BD0
sub edx, eax
:004D1009
8BC2 mov
eax, edx
:004D100B EB09
jmp 004D1016 <===ÕâÀïÌø×ß
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D1000(C)
|
:004D100D BA78000000
mov edx, 00000078
:004D1012 2BD0
sub edx, eax
:004D1014
8BC2 mov
eax, edx
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D100B(U)
|
* Possible StringData Ref from Data Obj ->"€"
|
:004D1016 BA74FA5200
mov edx, 0052FA74
:004D101B 8BCB
mov ecx, ebx
:004D101D 91
xchg
eax,ecx
:004D101E E839FFFFFF
call 004D0F5C
:004D1023 8BD4
mov edx, esp
:004D1025 8BC3
mov eax, ebx
:004D1027
B908000000 mov ecx,
00000008
:004D102C E82BFFFFFF
call 004D0F5C <===µ½ÕâÀï¾ÍËã³öÀ´ÁË,F8ÔÙ¸ú½ø
:004D1031 8BD6
mov edx, esi
:004D1033
8BC3 mov
eax, ebx
:004D1035 B904000000
mov ecx, 00000004
:004D103A E87DF7FFFF
call 004D07BC
:004D103F 8BC3
mov eax, ebx
:004D1041 BA58000000
mov edx, 00000058
:004D1046
E80D66F3FF call
00407658
:004D104B 59
pop ecx
:004D104C 5A
pop edx
:004D104D 5E
pop
esi
:004D104E 5B
pop ebx
:004D104F C3
ret
.......
.......
--------------:004D102C call 004D0F5C
µ½ÕâÀï¾ÍËã³öÀ´ÁË,F8ÔÙ¸ú½ø---------
:004D0F5C 53
push ebx
:004D0F5D 56
push
esi
:004D0F5E 57
push edi
:004D0F5F 55
push ebp
:004D0F60 8BF9
mov edi,
ecx
:004D0F62 8BEA
mov ebp, edx
:004D0F64 8BF0
mov esi, eax
:004D0F66 8B4610
mov eax, dword ptr
[esi+10]
:004D0F69 C1E803
shr eax, 03
:004D0F6C 83E03F
and eax, 0000003F
:004D0F6F 8BD7
mov edx, edi
:004D0F71
C1E203 shl edx,
03
:004D0F74 015610
add dword ptr [esi+10], edx
:004D0F77 3B5610
cmp edx, dword ptr
[esi+10]
:004D0F7A 7603
jbe 004D0F7F
:004D0F7C FF4614
inc [esi+14]
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D0F7A(C)
|
:004D0F7F 8BD7
mov edx, edi
:004D0F81 C1EA1D
shr edx, 1D
:004D0F84
015614 add dword
ptr [esi+14], edx
:004D0F87 BB40000000
mov ebx, 00000040
:004D0F8C 2BD8
sub ebx, eax
:004D0F8E 3BDF
cmp ebx,
edi
:004D0F90 7732
ja 004D0FC4
:004D0F92 8D440618
lea eax, dword ptr [esi+eax+18]
:004D0F96 8BCB
mov ecx,
ebx
:004D0F98 8BD5
mov edx, ebp
:004D0F9A E8B166F3FF
call 00407650
:004D0F9F 8BD6
mov edx, esi
<===EDX¾ÍÊÇMD5µÄ³õʼֵ
:004D0FA1 8D4618
lea eax, dword ptr [esi+18]
<===EAXÖ¸ÏòµÄ¾ÍÊÇ6E65776C616F7380(×¢£ººóÃæ¼ÓÁ˸ö80)
:004D0FA4 E84FF8FFFF
call 004D07F8
<===ºÇºÇ£¬¾ÍÊÇËüÁË£¬ÎÊÌâÊÇÔõô»áÊÇÕâÑùÄØ£¿Ö»ÓÐF8ÔÙ¸ú½øÁË
:004D0FA9 EB0E
jmp 004D0FB9
* Referenced by a (U)nconditional or (C)onditional Jump at
Address:
|:004D0FBE(C)
|
:......
.......
------------:004D0FA4
call 004D07F8 Ö»ÓÐF8ÔÙ¸ú½øÁË-----------
4¡¢ÓÃKEYMAKE1.73ÖÆ×÷ÄÚ´æ×¢²á»ú£º
϶ϣº004D1BFD
¶Ï´ÎÊý£º1
Ö¸Á¶È£º
3
Ö¸ÁîÊ××Ö£º8B
±£´æÄڴ棺EDX¾Í¿ÉÒÔÁË
5¡¢ËµÃ÷£º
ºÜËæ±ãµØÄÃÀ´ÆƵÄÒ»¸öÈí¼þ£¬¿ªÊ¼¿´µ½ÊÇÃ÷Âë±È½Ï£¬ÒÔΪ¿ÉÒԺܿì¸ã¶¨£¬ËÖªÈÃÎÒµÚÒ»´Îʧ°ÜÔÚMD5¼ÓÃÜÀï(ÒÔÇ°ÊÇûÓÐÓöµ½¹ý)£¬²Òѽ!±Ï¾¹¶ÔMD5µÄʵÏÖ²»Ã÷°×£¬Ö»ÄÜ×ö³ö¸öÄÚ´æ×¢²á»úÀ´¡£----ʧ°Ü!
ÄÄλÐÖµÜÓÐÐËȤҲ¿´¿´°É