EvilZone

Programming and Scripting => C - C++ => : zendk October 07, 2015, 08:07:29 PM

: What does this code
: zendk October 07, 2015, 08:07:29 PM

Hi!
I am trying to crack the program. The point is that when you run creates shared memory area, and is written to some information. It is necessary to know what is written there.

There is only .exe
With the help of IDA I have translated the program in pseudo-code, but now I can not fully understand what the code does.

I am hope for your help :)

: Re: What does this code
: Trevor October 07, 2015, 08:30:46 PM

From a glance, it looks like that you need to stop the infinite while loop.

There is no break statement, so you need to resort to other ways.
My guess is that you need  to exploit that memcpy somehow.

Unfortunately, I cannot help you further unless you provide more information about what exactly you are trying to achieve.

: Re: What does this code
: zendk October 07, 2015, 08:45:30 PM

Thank you for your feedback!

All I need is to understand what makes this program.

There was a suspicion that it simply records the number 32 into the variable DstBuf, but it turned out that this is not the right answer.

P.S. By the way, if something goes wrong in the program and stop the cycle, it will print to the console any appropriate inscription.
P.P.S. As I understand the cycle stops every 1600 seconds ...wath line 100

: Re: What does this code
: chris_kzn October 08, 2015, 01:56:03 AM

Are you new to C++ programming?

: Re: What does this code
: xor October 08, 2015, 06:44:27 AM

They created a file mapping called WhatTheFile.
You can take advantage of any language and map to that same file to read or write what's in it.

The function that you're probably trying to cause an exception in is itoa(v3, DstBuf, 10);
This puts the number in v3 (1) into DstBuf and converts it to a string in Base 10 format.

The file mapping to CreateFileMapping is only accessing 256 bytes.
If you map to the file and write past this, you will overwrite the value of v3, which means you can put a string in it and make it crash on itoa.

: Re: What does this code
: zendk October 08, 2015, 01:36:00 PM

: chris_kzn  October 08, 2015, 01:56:03 AM

Are you new to C++ programming?

Yes.

: xor  October 08, 2015, 06:44:27 AM

They created a file mapping called WhatTheFile.
You can take advantage of any language and map to that same file to read or write what's in it.

The function that you're probably trying to cause an exception in is itoa(v3, DstBuf, 10);
This puts the number in v3 (1) into DstBuf and converts it to a string in Base 10 format.

The file mapping to CreateFileMapping is only accessing 256 bytes.
If you map to the file and write past this, you will overwrite the value of v3, which means you can put a string in it and make it crash on itoa.

Thank you very much for your time. And still - WHAT is written in this file? And if i can map to that same file to read or write, how can this be done?

Thanks for the help! :)