************************************************
************************************************

Unfortunately, this site has restricted functionality as this browser does not support the HTML button formaction attribute.

Unfortunately, this site has restricted functionality as this browser has HTML web storage turned off.

4 of 8 files martik
  • Text / Community drama
7 items in the archive
  • MART!K/
  • MART!K/lamer.png
  • MART!K/ripped.png
  • MART!K/rippedAT4RE.png
  • MART!K/Thumbs.db
  • FILE_ID.DIZ
  • RED.nfo
[+] Configuration Copy text
/\ //\\ // \\ //// /\ \\\\ //////\/\\//\/\\\\\\ //////// / \/ \ \\\\\\\\ _________/ /\ /\ \_________ /\ /___ ______/ \/ \______ ___\ /\ //\\// // /\ /\ \\ \\//\\ // \/ _// \ \ / / \\_ \/ \\ // __ \_____/\ \ \/ / /\_____/ __ \\ / \____/ /__ ___\ \ / /___ __\ \____/ \ \__________ \ / / \ \/ / \ \ / __________/ / / / _ \ //\/\\ / _ \ \ \ / / /_//_///\ /\\\_\\_\ \ \ /\ / \ \\___// /\/\ \\___// / \ /\ / / / __ \/ \ _/\/ /\ \/\_ / \/ __ \ \ \ / / /\ / ///\ \__\\ \ \/ / //__/ /\\\ \ /\ \ \ / / / \ / /// /\____ \ / /\ \ / ____/\ \\\ \ / \ \ \ / / / / / \\\ \____ \ \\//\\// / ____/ /// \ \ \ \ \ \/ / \ \ \\\__ \ \ \/ \/ / / __/// / / \ \/ \ __/ / \\_ \__/\ \_ _/ /\__/ _// \ \__ / \ \_____ _/ \ \____/ / /\ \ \____/ / \_ _____/ / \ \ ___/ / \ \___ / / \_____ __ ______/ / _/ \_ \ \______ __ _____/ // // \__ / \__ /\ __/ \ __/ \\ \\ // // _/ / // \\ \ \_ \\ \\ // // / /______// /\ \\______\ \ \\ \\ ___________//__\\_____/ \/ \/ \_____//__\\__________ | ____ \\ _//_ ________ |_ | |__/ // \_ | | | | | // ___|| |_______| | | ___// / | | | \__/ /_____| _| |_______/\_______________ _______________________| __________ ___ \ / ___ __________ \ _____ \/ / / /\ \ \ \/ _____ / / \ \ \/ / \ \/ / / \ \ / \ / ______ / /\ \ ______ \ / \ / /\\//\ \__ \ / // //\\ \\ \ / __/ /\\//\ /\\ \/ \ \ \/ // ///\\\ \\ \/ / / \/ //\ \ \\ /\ \__ \__/\ / \ \\/\// / \ /\__/ __/ /\ // / \ \\/ \__ \______ \//\ \ \/\/ / /\\/ ______/ __/ \// / \/ \_ _//_ \ \ \\ \ \ / / // / / _\\_ _/ \/ \\ \_\ \__ \\ \ \/\/ / // __/ /_/ // __________________\\__\\_ \ \\ \ /\ / // / _//__//_________________ / _____________________ \ \ \\// \\// / / ____________________ \ \/ \__ \ \ \/ /\ \/ / / __/ \/ / \ \ / \ / / \ \_ ______________/ \___/ \___/ \_____________ _/ / \________/ \________/ \ \ ________ RELEASE iNFOS ________ / /\/ \_______________________________________________/ \/\ / \ ┌───────────────────────────────────────────────────────────────────┐ │ RED CREW PROUDLY PRESENTS ANOTHER FiNE RELEASE CALLED │ └───────────────────────────────────────────────────────────────────┘ EXPOSING LAMERS: MART!K Cracked by...........: n/a Protection...........: n/a Operating System.....: n/a Web site.............: http://martik-scorp.blogspot.com/ Release date.........: 25/11/2010 Release type.........: n/a \_ _______________________________________________ _/ / \________/ \________/ \ \ ________ DESCRiPTiON ________ / /\/ \_______________________________________________/ \/\ / \ So i heard the Faster Universal Unpacker project was recompiled, string edited and released by someone called MART!K. After i visited his website, i was pretty sure this guy was an unpack/res-edit/repack and release lamer :) I have seen many of this in the past, i thought those were disapearing. So i randomly took his "Winzip 15 keygen". I didn't expect him to be able to reverse engineer. His leet blog full of ripped software: http://martik-scorp.blogspot.com/2010/11/winzip-15-keygen.html File was packed by PE Compact 2. Big deal. after 2 seconds it was unpacked (manually, i didn't use his stolen ++unpacking engine ;) and then just a quick look in the strings, i saw something interesting: 004021E7 . A2 F2604000 MOV BYTE PTR DS:[4060F2],AL 004021EC . C605 F4604000 >MOV BYTE PTR DS:[4060F4],0 004021F3 . 68 EE604000 PUSH WinZip_1.004060EE ; /StringToAdd = "-HiDDLZ0" 004021F8 . 68 D8654000 PUSH WinZip_1.004065D8 ; |ConcatString = "" 004021FD . E8 D8020000 CALL WinZip_1.004024DA ; \lstrcatA oh oh oh LZ0 ? this sounds like a cracking group. Cracking groups always put markers in their keygen to catch lamers generating serials and distributing them with their keygens. MART!K probably has no idea about how to write a keygen, let alone stealing protection. So i searched for Winzip 15 keygen by LZ0, and sure enough, i found one. That one was packed with UPX. This is why MART!K could unpack it and do his lame job. Let's examine the original keygen and have a look at the exact virtual address: .text:004021E7 mov byte ptr aHiddlz0+4, al .text:004021EC mov byte ptr aHiddlz0+6, 0 .text:004021F3 push offset aHiddlz0 ; "-HiDDLZ0" .text:004021F8 push offset String1 ; lpString1 .text:004021FD call lstrcatA .text:00402202 call sub_401A64 .text:00402207 push offset String1 ; lpString .text:0040220C call lstrlenA What a surprise :-) Exact match. Let's compare entry point of both keygen. From MART!K's: .text:00401E1C start proc near .text:00401E1C 6A 00 push 0 ; lpModuleName .text:00401E1E E8 AB 06 00 00 call GetModuleHandleA .text:00401E23 A3 4C 64 40 00 mov hInstance, eax .text:00401E28 6A 00 push 0 ; color .text:00401E2A E8 C3 06 00 00 call CreateSolidBrush .text:00401E2F A3 50 64 40 00 mov dword_406450, eax .text:00401E34 6A 00 push 0 ; dwInitParam .text:00401E36 68 58 1E 40 00 push offset DialogFunc ; lpDialogFunc .text:00401E3B 6A 00 push 0 ; hWndParent .text:00401E3D 68 E8 03 00 00 push 3E8h ; lpTemplateName .text:00401E42 FF 35 4C 64 40 00 push hInstance ; hInstance .text:00401E48 E8 51 06 00 00 call DialogBoxParamA .text:00401E4D 50 push eax ; uExitCode .text:00401E4E E8 75 06 00 00 call ExitProcess .text:00401E4E start endp From LZ0 original keygen (inside Olly): 00401E1C >/$ 6A 00 PUSH 0 ; /pModule = NULL 00401E1E |. E8 AB060000 CALL WinZip_1.004024CE ; \GetModuleHandleA 00401E23 |. A3 4C644000 MOV DWORD PTR DS:[40644C],EAX 00401E28 |. 6A 00 PUSH 0 ; /Color = 00401E2A |. E8 C3060000 CALL WinZip_1.004024F2 ; \CreateSolidBrush 00401E2F |. A3 50644000 MOV DWORD PTR DS:[406450],EAX 00401E34 |. 6A 00 PUSH 0 ; /lParam = NULL 00401E36 |. 68 581E4000 PUSH WinZip_1.00401E58 ; |DlgProc = WinZip_1.00401E58 00401E3B |. 6A 00 PUSH 0 ; |hOwner = NULL 00401E3D |. 68 E8030000 PUSH 3E8 ; |pTemplate = 3E8 00401E42 |. FF35 4C644000 PUSH DWORD PTR DS:[40644C] ; |hInst = NULL 00401E48 |. E8 51060000 CALL WinZip_1.0040249E ; \DialogBoxParamA 00401E4D |. 50 PUSH EAX ; /ExitCode 00401E4E \. E8 75060000 CALL WinZip_1.004024C8 ; \ExitProcess Not enough? ok, let's have a look at the keygen features :) LZ0 keygen supports "Winzip Pro and Standart" Nice typo in the original keygen. notice standarT instead of standarD. Let's have a look in the stolen keygen from Mart!k now. It does not offer the choice of licences to generate. No drop down menu like the LZ0 release. However, if you look into the code (disassembly is from MART!K and keygen is from LZ0), you will find it : [lamer.png] Notice the same typo. standarT altho there is no mention of that standarT anywhere in his stolen keygen. He has code for options he ripped off his keygen. don't tell me it's a coincidence :) You may want to check all the available programs doing same thing as yours. He may as well use your product with a hacked GUI :-) ------------- http://omgwtfhax.org/ can we says more... about the FUU project by +NCR (http://fuuproject.wordpress.com/) A ripped version was available here: http://martik-scorp.blogspot.com/2010/11/martk-unpacker.html Mart!k will surely remove this page so see this image: [ripped.png] hmm what's wrong now ? from LZ0 he have not only ripped winzip, but also acelogix system tuneup (armadilloed app, keygen by LZ0) Thoses release was added to the package if you want see... Now the return of FUU: http://guandedio.no-ip.org/fuumenu/novedadesfuu/88-plagio-del-fuu.html EximiousSoft GIF Creator 5.80 & 5.xx Patch by MART!K Ripped release, original was made by Under SEH Team. Wondershare Products Keygen Patch by MART!K Ripped release, original was made by AT4RE. [rippedAT4RE.png] The whole stuff from Mart!k was ripped. And... http://www.brothersoft.com/publisher/martik-panosian.html huh?! Guys the time come to stop your bullshit. \_ _______________________________________________ _/ / \________/ \________/ \ \ ________ iNSTALLATiONS ________ / /\/ \_______________________________________________/ \/\ / \ n/a \_ _______________________________________________ _/ / \________/ \________/ \ \ ________ TEAM NEWS ________ / /\/ \_______________________________________________/ \/\ / \ ┌──────────────────────────────────────────────────────────────┐ │ │ │ │ │ RED CREW IS LOOKING FOR SKILLED: │ │ │ │ - Crackers who are able to keygen and/or crack different │ │ applications (RSA, MD5, AES...) │ │ - Unpackers who are able to unpack different │ │ protections (Armadillo, ASProtect, Themida, EXECryptor...) │ │ - Coders who are able to code some usefull tools │ │ for the team (ASM, C/C++,Delphi) │ │ │ │ │ │ IF YOU THINK THAT YOU HAVE ONE OF THESE SKILLS │ │ YOU ARE THE WELCOME IN DA TEAM │ │ │ │ │ └──────────────────────────────────────────────────────────────┘ \_ _______________________________________________ _/ / \________/ \________/ \ \ ________ CONTACTS ________ / /\/ \_______________________________________________/ \/\ / \ EMAiL ...............: Check it on our site ! SiTE ................: http://redcrew.astalavista.ms/ FORUM ...............: http://redcrew.astalavista.ms/board/ DiSTRO ..............: https://www.prs-distro.com/index.php?dir=RED/ IRC .................: N/A \_ _______________________________________________ _/ / \________/ \________/ \ \ ________ GREETINGS ________ / /\/ \_______________________________________________/ \/\ / \ Greetz goes to: ARTEAM, AT4RE, SND, CiM, FFF, RAiD, iCWT, REVENGE iNFECTiON, TSRH, RESSURECTION, And all who keep the scene alive. __ __ /_/\ /\_\ \_\/ \/_/ \_________ _________/ _\ REVERSE ENGINEER'S DREAM-MAERD S'REENIGNE ESREVER /_ \______________ _______________/ __________ ___ \ / ___ __________ \ _____ \/ / / /\ \ \ \/ _____ / / \ \ \/ / \ \/ / / \ \ / \ / ______ / /\ \ ______ \ / \ / /\\//\ \__ \ / // //\\ \\ \ / __/ /\\//\ /\\ \/ \ \ \/ // ///\\\ \\ \/ / / \/ //\ \ \\ /\ \__ \__/\ / \ \\/\// / \ /\__/ __/ /\ // / \ \\/ \__ \______ \//\ \ \/\/ / /\\/ ______/ __/ \// / \/ \_ _//_ \ \ \\ \ \ / / // / / _\\_ _/ \/ \\ \_\ \__ \\ \ \/\/ / // __/ /_/ // Xsp!d3r _\\__\\_ \ \\ \ /\ / // / _//__//_ \____ \ \ \\// \\// / / ____/ \__ \ \ \/ /\ \/ / / __/ \ \ \ //\\ / / / \ \_ \// \\/ _/ / //\ \_/ /\ \_/ /\\ _\\ \ \_//\\_/ / //_ / _\\/ /_/\/\_\ \//_ \ \ \ \ /_\ /_\ / / / \ \ \ \_//\\_/ / / / \_\ \/ \\// \/ /_/ \__/\ /\/\ /\__/ \_\\ //_/ \\// \/
RED.nfo 99x306 Font
99