【xtrap】不正プロテクトの回避や解析方法【npro】
初心者向け超簡単非同期nPro解除、ゲームによって多少の差異はある
//CreateProcessA GameGuard.des わざと失敗させる
0063E06C |. FF15 1CC26600 CALL DWORD PTR DS:[66C21C]
0063E072 |. 85C0 TEST EAX,EAX
0063E074 |. 75 1C JNZ SHORT so3d.0063E092
0063E076 |. 8D8424 C0020000 LEA EAX,DWORD PTR SS:[ESP+2C0]
0063E07D |. 50 PUSH EAX
0063E07E |. FF15 C4C16600 CALL DWORD PTR DS:[66C1C4]
0063E084 |. 8D8C24 C0010000 LEA ECX,DWORD PTR SS:[ESP+1C0]
0063E08B |. 50 PUSH EAX
0063E08C |. 51 PUSH ECX
//失敗なのでココでジャンプ
0063E08D |. E9 92090000 JMP so3d.0063EA24
0063E092 |> 68 104C6F00 PUSH so3d.006F4C10
0063EA24 |> 68 68496F00 PUSH so3d.006F4968
0063EA29 |> E8 92630000 CALL so3d.00644DC0
0063EA2E |. 83C4 04 ADD ESP,4
0063EA31 |. 50 PUSH EAX
0063EA32 |. 55 PUSH EBP
0063EA33 |. E8 A8050000 CALL so3d.0063EFE0
0063EA38 |. 83C4 14 ADD ESP,14
0063EA3B |. B8 AA000000 MOV EAX,0AA //戻り値を成功の0x755に変更
0063EA40 |. 5F POP EDI
0063EA41 |. 5E POP ESI
0063EA42 |. 5D POP EBP
0063EA43 |. 5B POP EBX
0063EA44 |. 81C4 B4100000 ADD ESP,10B4
0063EA4A |. C2 0400 RETN 4
//CreateProcessA GameGuard.des わざと失敗させる
0063E06C |. FF15 1CC26600 CALL DWORD PTR DS:[66C21C]
0063E072 |. 85C0 TEST EAX,EAX
0063E074 |. 75 1C JNZ SHORT so3d.0063E092
0063E076 |. 8D8424 C0020000 LEA EAX,DWORD PTR SS:[ESP+2C0]
0063E07D |. 50 PUSH EAX
0063E07E |. FF15 C4C16600 CALL DWORD PTR DS:[66C1C4]
0063E084 |. 8D8C24 C0010000 LEA ECX,DWORD PTR SS:[ESP+1C0]
0063E08B |. 50 PUSH EAX
0063E08C |. 51 PUSH ECX
//失敗なのでココでジャンプ
0063E08D |. E9 92090000 JMP so3d.0063EA24
0063E092 |> 68 104C6F00 PUSH so3d.006F4C10
0063EA24 |> 68 68496F00 PUSH so3d.006F4968
0063EA29 |> E8 92630000 CALL so3d.00644DC0
0063EA2E |. 83C4 04 ADD ESP,4
0063EA31 |. 50 PUSH EAX
0063EA32 |. 55 PUSH EBP
0063EA33 |. E8 A8050000 CALL so3d.0063EFE0
0063EA38 |. 83C4 14 ADD ESP,14
0063EA3B |. B8 AA000000 MOV EAX,0AA //戻り値を成功の0x755に変更
0063EA40 |. 5F POP EDI
0063EA41 |. 5E POP ESI
0063EA42 |. 5D POP EBP
0063EA43 |. 5B POP EBX
0063EA44 |. 81C4 B4100000 ADD ESP,10B4
0063EA4A |. C2 0400 RETN 4
|
|
|