首页
社区
课程
招聘
问答 CTF 排行榜 知识库 工具下载 峰会 看雪商城 证书查询
  1. 社区
  2. 付费问答
    3. 发新帖
[旧帖] [求助]请问这个delphi程序断点要怎么断 0.00雪花
发表于: 2008-3-28 19:16 5224

[旧帖] [求助]请问这个delphi程序断点要怎么断 0.00雪花

咖啡凉了 活跃值
2008-3-28 19:16
5224
DeDe分析的
Button1_Click过程

想做一个内存注册机,不知道要断在哪

试过451FC1,结果是这样的


文件在这里:ac2K9s2c8@1M7q4)9K6b7g2)9J5c8W2)9J5c8Y4u0S2M7r3W2V1M7$3S2S2M7X3g2Q4x3X3g2V1k6g2)9J5c8X3k6A6L8r3g2K6i4K6u0r3x3K6R3&6y4e0l9#2x3e0N6Q4x3V1j5I4i4K6u0W2y4%4A6Q4x3X3g2Z5N6r3#2D9

00451EC8   55                     push    ebp
00451EC9   8BEC                   mov     ebp, esp
00451ECB   B909000000             mov     ecx, $00000009
00451ED0   6A00                   push    $00
00451ED2   6A00                   push    $00
00451ED4   49                     dec     ecx
00451ED5   75F9                   jnz     00451ED0
00451ED7   53                     push    ebx
00451ED8   8BD8                   mov     ebx, eax
00451EDA   33C0                   xor     eax, eax
00451EDC   55                     push    ebp
00451EDD   6809204500             push    $00452009

***** TRY
|
00451EE2   64FF30                 push    dword ptr fs:[eax]
00451EE5   648920                 mov     fs:[eax], esp
00451EE8   B8E8030000             mov     eax, $000003E8

|
00451EED   E8C6FFFFFF             call    00451EB8
00451EF2   8D45F4                 lea     eax, [ebp-$0C]
00451EF5   50                     push    eax
00451EF6   8D45F0                 lea     eax, [ebp-$10]
00451EF9   50                     push    eax
00451EFA   8D45EC                 lea     eax, [ebp-$14]
00451EFD   50                     push    eax
00451EFE   8D45E4                 lea     eax, [ebp-$1C]
00451F01   50                     push    eax
00451F02   8D4DF8                 lea     ecx, [ebp-$08]
00451F05   8D55FC                 lea     edx, [ebp-$04]
00451F08   B063                   mov     al, $63

|
00451F0A   E849F8FFFF             call    00451758
00451F0F   FF75F8                 push    dword ptr [ebp-$08]
00451F12   8D55C8                 lea     edx, [ebp-$38]
00451F15   B801000000             mov     eax, $00000001

|
00451F1A   E8BDF7FFFF             call    004516DC
00451F1F   8D45C8                 lea     eax, [ebp-$38]

* Possible String Reference to: 'explorer.exe'
|
00451F22   BA20204500             mov     edx, $00452020

* Reference to: System.@LStrCat;
|
00451F27   E8F822FBFF             call    00404224
00451F2C   8B45C8                 mov     eax, [ebp-$38]
00451F2F   33D2                   xor     edx, edx

|
00451F31   E81AFDFFFF             call    00451C50
00451F36   83C4F8                 add     esp, -$08
00451F39   DD1C24                 fstp    qword ptr [esp]
00451F3C   9B                     wait
00451F3D   8D45CC                 lea     eax, [ebp-$34]

|
00451F40   E8FB83FBFF             call    0040A340
00451F45   FF75CC                 push    dword ptr [ebp-$34]
00451F48   8D45C4                 lea     eax, [ebp-$3C]

|
00451F4B   E864FAFFFF             call    004519B4
00451F50   FF75C4                 push    dword ptr [ebp-$3C]
00451F53   8D45D0                 lea     eax, [ebp-$30]
00451F56   BA03000000             mov     edx, $00000003

* Reference to: System.@LStrCatN;
|
00451F5B   E87C23FBFF             call    004042DC
00451F60   8B45D0                 mov     eax, [ebp-$30]
00451F63   8D55D4                 lea     edx, [ebp-$2C]

|
00451F66   E831FCFFFF             call    00451B9C
00451F6B   8B45D4                 mov     eax, [ebp-$2C]
00451F6E   8D55D8                 lea     edx, [ebp-$28]

* Reference to: SysUtils.LowerCase(AnsiString):AnsiString;
|
00451F71   E8025BFBFF             call    00407A78
00451F76   8B45D8                 mov     eax, [ebp-$28]
00451F79   8D55DC                 lea     edx, [ebp-$24]

|
00451F7C   E81BFCFFFF             call    00451B9C
00451F81   8B45DC                 mov     eax, [ebp-$24]
00451F84   8D55E0                 lea     edx, [ebp-$20]

* Reference to: SysUtils.LowerCase(AnsiString):AnsiString;
|
00451F87   E8EC5AFBFF             call    00407A78
00451F8C   8B45E0                 mov     eax, [ebp-$20]
00451F8F   8D55E8                 lea     edx, [ebp-$18]

|
00451F92   E805FCFFFF             call    00451B9C
00451F97   8D55B8                 lea     edx, [ebp-$48]

* Reference to control Edit5 : TEdit
|
00451F9A   8B8300030000           mov     eax, [ebx+$0300]

* Reference to: Controls.TControl.GetText(TControl):TCaption;
|
00451FA0   E82BE9FDFF             call    004308D0
00451FA5   8B45B8                 mov     eax, [ebp-$48]
00451FA8   8D55BC                 lea     edx, [ebp-$44]

* Reference to: SysUtils.LowerCase(AnsiString):AnsiString;
|
00451FAB   E8C85AFBFF             call    00407A78
00451FB0   8B45BC                 mov     eax, [ebp-$44]
00451FB3   8D55C0                 lea     edx, [ebp-$40]

|
00451FB6   E8E1FBFFFF             call    00451B9C
00451FBB   8B45C0                 mov     eax, [ebp-$40]
00451FBE   8B55E8                 mov     edx, [ebp-$18]

* Reference to: System.@LStrCmp;
|
00451FC1   E8A223FBFF             call    00404368
00451FC6   751E                   jnz     00451FE6
00451FC8   6893120000             push    $00001293

|
00451FCD   E8FAF6FFFF             call    004516CC
00451FD2   84C0                   test    al, al
00451FD4   7410                   jz      00451FE6

* Possible String Reference to: '完成,进入游戏F8'
|
00451FD6   BA38204500             mov     edx, $00452038

* Reference to control Button1 : TButton
|
00451FDB   8B83F8020000           mov     eax, [ebx+$02F8]

* Reference to: Controls.TControl.SetText(TControl;TCaption);
|
00451FE1   E81AE9FDFF             call    00430900
00451FE6   33C0                   xor     eax, eax
00451FE8   5A                     pop     edx
00451FE9   59                     pop     ecx
00451FEA   59                     pop     ecx
00451FEB   648910                 mov     fs:[eax], edx

****** FINALLY
|

* Possible String Reference to: '[嬪]?
|
00451FEE   6810204500             push    $00452010
00451FF3   8D45B8                 lea     eax, [ebp-$48]

* Reference to: System.@LStrClr(void;void);
|
00451FF6   E8611FFBFF             call    00403F5C
00451FFB   8D45BC                 lea     eax, [ebp-$44]
00451FFE   BA11000000             mov     edx, $00000011

* Reference to: System.@LStrArrayClr(void;void;Integer);
|
00452003   E8781FFBFF             call    00403F80
00452008   C3                     ret


* Reference to: System.@HandleFinally;
|
00452009   E95219FBFF             jmp     00403960
0045200E   EBE3                   jmp     00451FF3

****** END
|
00452010   5B                     pop     ebx
00452011   8BE5                   mov     esp, ebp
00452013   5D                     pop     ebp
00452014   C3                     ret

[培训]科锐逆向工程师培训第53期2025年7月8日开班!

收藏
免费 0
支持
分享
最新回复 (6)
咖啡凉了
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
2
有谁可以帮我一下么
2008-3-28 19:30
0
我是瑶瑶
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
3
你贴出的代码只是DEDE里的代码,这个软件我用OD无法载入

Shift+F9直接就退出了
这个问题你是怎么解决的?
2008-3-28 19:46
0
咖啡凉了
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
4
用OD只能载未脱壳的main.exe
脱壳后od就这样了...
2008-3-28 19:48
0
我是瑶瑶
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
5
未脱壳的和脱了壳的我都是这种情况,如果能载入未脱壳的还能带壳调试,现在是一点办法都没有.
2008-3-28 19:50
0
咖啡凉了
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
6
我这没这种情况丫......
2008-3-28 19:57
0
咖啡凉了
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
私信
7


2008-3-28 20:06
0
游客
登录 | 注册 方可回帖
回帖 表情 雪币赚取及消费
高级回复
返回