cracking Botsmall bot / themida unpacker

01/02/2008 17:40 luckyjol#1
Hey guys i have just found the encrypted file of gamemon.des
I have also add a very nice Themida unpacker!

gamemon.des:
[Only registered and activated users can see links. Click Here To Register...]

okdodo's themida unpacker:
[Only registered and activated users can see links. Click Here To Register...]
01/02/2008 17:50 Sillyrabbit#2
so what are your plans?

have you unpacked it and got it working?





(p.s. this has been out for a while now)
01/02/2008 17:58 luckyjol#3
jap but not for public and maybe are here some creative heads ;)
i was planing to work with the packets which i get at connecting the auth server but i need the packets of somebody who got a working acc.. maybe i can add there some lines that it should catch another file where the packets are written and replace the packets which do not work.. but there are some who think they're better because they are in the ug rofl.. (onlyk1) or how he calls..
01/02/2008 18:01 Sillyrabbit#4
Quote:
Originally Posted by luckyjol View Post
jap but not for public and maybe are here some creative heads ;)
i was planing to work with the packets which i get at connecting the auth server but i need the packets of somebody who got a working acc.. maybe i can add there some lines that it should catch another file where the packets are written and replace the packets which do not work.. but there are some who think they're better because they are in the ug rofl.. (onlyk1) or how he calls..
here is a tip, open winhex, and load the unpacked version of the des file and search for the word

fail



it will take you ro the line where the verifications take place.
01/02/2008 19:54 luckyjol#5
yes i know but i cant work with that.. not enought knowledge for this =/
01/03/2008 12:24 »STORM«#6
can anyone explain how this works. is the file provided the botsmall bot? if so do i just change the value fail to true?
01/06/2008 20:24 ceh430#7
Quote:
Originally Posted by namek303 View Post
here is a tip, open winhex, and load the unpacked version of the des file and search for the word

fail



it will take you ro the line where the verifications take place.
do you mean that? :)
Code:
ÂňÂôÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ČÎÎńÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ˛Öżâ´ćȡģʽ˛»ÄÜ˝»ŇףˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ĐŢÁ·ÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ÇëÁ¬Ď߳ɹ¦şóÔŮ˝»ŇףˇŁˇŁˇ     ˛˘˝řĐĐÎďĆ·ÂňÂô  ˛˘˝řĐĐ×é¶Ó  ˛˘˝řĐĐ˝»Ň× transfer to the position local with     µ±Ç°łˇľłÎޱŁąÜÎďĆ·NPCŁˇŁˇŁˇ żŞĘĽŇƶŻµ˝   ˛˘´ňżŞ˛Öżâ ĘÇ·ńŇƶŻµ˝  ÂňÂôÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ČÎÎńÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ˝»Ň×ÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ĐŢÁ·ÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ÇëÁ¬Ď߳ɹ¦şóÔŮ´ňżŞ˛ÖżâŁˇŁˇŁˇ    throw away this item?   ÇëĘäČëąşÂň   µÄĘýÁż ÇëĘäČëȡłö  ÇëĘäČëȡłö˝đ¶î  ÇëĘäČ뱣ąÜ˝đ¶î  ÇëĘäČë˝»Ň×˝đ¶î  ČÎÎńÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ´ňżŞ˛ÖżâÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ˝»Ň×ÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ČČŃŞ˝*şţżÍ»§¶ËĆô¶ŻĘ§°Ü  Fail to connect DK_Login server )   -   (   Connection manually terminated  .Map    InfoMap   %d,%d,%d,%d
    infoItemAttack.txt    rt  login retry after %d sec    %d,%[^,],%d

   [COLOR="Red"] LoginServer.txt Connectting verification server......   ertertu7ikjhjgfjilutjkjkml  fdgfdgretrtertretrtrertetr  9jewr7fsdfljnmdsfsdfsdfhdfh vcxvdfgrgfggfdgfgfdgfdgfdggf    gfdgfdgfdgfdgfgggfdgfdgfdg  cvbvcbvcbcvbvcbvcbdffddfdf  cvbvcbbbbbbbbbbvcbvcbvcb    bvcvbvcbcvbvcbvcbcvbcvb gfdgdfgdfgdfgdfgfdgdfgfdg   dfgdfgfgddgfdgdfgdfgfggfddg shdhsajdhw8e8wq7ewejhjh adslqtfllin-E639ABAD22B4F4691EB69486772CDB4C4BD462B7F9A7C4B4    %02X%02X%02X%02X    
204.13.66.146   Failure verification    Fail to connectting verification server 4vŞ$”ąŁ
Ó˜č¶O˝Ś    ghtrk7e4r4456570782332454424    %d
 Server.ini  wt  connecting game server......    lkhfd   gfds    1569    Successful verification [/COLOR]
224456  hgghkkuhk   &@@ %32.32s%s%8.8s%32.32s   %08X%08x    8U43534U5nvfeldfjds9u00dsfdsfu933   
  127.0.0.1,3134,±ľµŘ,˛ĘÔĆ×·Ô    Addr.txt    Client  1000yCyzy   Path    Fail to connect DK_Game server  ĘýľÝ°üŇ쳣  ËůÓĐÖ¸Áî    <=%08X                                          2568    żÍ·˘Ö¸Áî    =>%02X%02X%02X%02X%02X%02X  %06d  %d                µô°ü    ÎďĆ·Ŕ¸żŐĽä˛»×ăÎŢ·¨µĂµ˝  µöµ˝ÎďĆ·    ´íÎ󹥻÷ĽĽÄÜ    ąÖĘŢ
01/06/2008 20:39 Sillyrabbit#8
Quote:
Originally Posted by ceh430 View Post
do you mean that? :)
Code:
ÂňÂôÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ČÎÎńÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ˛Öżâ´ćȡģʽ˛»ÄÜ˝»ŇףˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ĐŢÁ·ÄŁĘ˝˛»ÄÜ˝»ŇףˇŁˇŁˇ  ÇëÁ¬Ď߳ɹ¦şóÔŮ˝»ŇףˇŁˇŁˇ     ˛˘˝řĐĐÎďĆ·ÂňÂô  ˛˘˝řĐĐ×é¶Ó  ˛˘˝řĐĐ˝»Ň× transfer to the position local with     µ±Ç°łˇľłÎޱŁąÜÎďĆ·NPCŁˇŁˇŁˇ żŞĘĽŇƶŻµ˝   ˛˘´ňżŞ˛Öżâ ĘÇ·ńŇƶŻµ˝  ÂňÂôÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ČÎÎńÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ˝»Ň×ÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ĐŢÁ·ÄŁĘ˝˛»ÄÜ´ňżŞ˛ÖżâŁˇŁˇŁˇ  ÇëÁ¬Ď߳ɹ¦şóÔŮ´ňżŞ˛ÖżâŁˇŁˇŁˇ    throw away this item?   ÇëĘäČëąşÂň   µÄĘýÁż ÇëĘäČëȡłö  ÇëĘäČëȡłö˝đ¶î  ÇëĘäČ뱣ąÜ˝đ¶î  ÇëĘäČë˝»Ň×˝đ¶î  ČÎÎńÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ´ňżŞ˛ÖżâÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  żŞµęÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ˝»Ň×ÄŁĘ˝˛»ÄÜ˝řĐĐĐŢÁ·ŁˇŁˇŁˇ  ČČŃŞ˝*şţżÍ»§¶ËĆô¶ŻĘ§°Ü  Fail to connect DK_Login server )   -   (   Connection manually terminated  .Map    InfoMap   %d,%d,%d,%d
    infoItemAttack.txt    rt  login retry after %d sec    %d,%[^,],%d

   [COLOR="Red"] LoginServer.txt Connectting verification server......   ertertu7ikjhjgfjilutjkjkml  fdgfdgretrtertretrtrertetr  9jewr7fsdfljnmdsfsdfsdfhdfh vcxvdfgrgfggfdgfgfdgfdgfdggf    gfdgfdgfdgfdgfgggfdgfdgfdg  cvbvcbvcbcvbvcbvcbdffddfdf  cvbvcbbbbbbbbbbvcbvcbvcb    bvcvbvcbcvbvcbvcbcvbcvb gfdgdfgdfgdfgdfgfdgdfgfdg   dfgdfgfgddgfdgdfgdfgfggfddg shdhsajdhw8e8wq7ewejhjh adslqtfllin-E639ABAD22B4F4691EB69486772CDB4C4BD462B7F9A7C4B4    %02X%02X%02X%02X    
204.13.66.146   Failure verification    Fail to connectting verification server 4vŞąŁ
Ó˜č¶O˝Ś    ghtrk7e4r4456570782332454424    %d
 Server.ini  wt  connecting game server......    lkhfd   gfds    1569    Successful verification [/COLOR]
224456  hgghkkuhk   &@@ %32.32s%s%8.8s%32.32s   %08X%08x    8U43534U5nvfeldfjds9u00dsfdsfu933   
  127.0.0.1,3134,±ľµŘ,˛ĘÔĆ×·Ô    Addr.txt    Client  1000yCyzy   Path    Fail to connect DK_Game server  ĘýľÝ°üŇ쳣  ËůÓĐÖ¸Áî    <=%08X                                          2568    żÍ·˘Ö¸Áî    =>%02X%02X%02X%02X%02X%02X  %06d  %d                µô°ü    ÎďĆ·Ŕ¸żŐĽä˛»×ăÎŢ·¨µĂµ˝  µöµ˝ÎďĆ·    ´íÎ󹥻÷ĽĽÄÜ    ąÖĘŢ

yeah, but you also forgot make red the text that says "fail to connect DK_Game server"
02/23/2008 23:46 dolob#9
hi all i'm new with you and i wanna carry up this subject! i did what u mean on koxp before. but i heard that this bot sends some different if/checks to server in certain time interval. and if it get wrong answer or can't get answer it closes the connection. now i just need unpacker for themida "okdodo's themida unpacker", UnThemida, unThemnet etc. dosnt works for final version of the bot. (1.86e) i tried some other ways to unpack it (disassemblers, debuggers...) and it turns again same result! i've the working packages but just the login answers (not sended just first recived) when i succeed i'll get the other if/check datas then i HOPE =) it'll work fine ;) just like koxp.. Best Regards and Have a nice gamming dudes..
02/24/2008 00:28 Matt.dk#10
You would be much better off just bypassing the connecting to auth server part, or emulating the login server for the bot with a simple login on the host computer.
02/24/2008 02:43 Sillyrabbit#11
no point messing with this bot, its not working at the moment.
02/24/2008 20:41 fierce213#12
so your saying the botmsall bot thats cracked atm is not working anymore? or are you stating the obvious that the non cracxked versions works nomore?
02/24/2008 22:35 Sillyrabbit#13
yes, botsmall's bot stopped working during the December patch if i'm not mistaken. If you go to their site you will see that.
02/24/2008 22:41 fierce213#14
Quote:
Originally Posted by namek303 View Post
yes, botsmall's bot stopped working during the December patch if i'm not mistaken. If you go to their site you will see that.
Yes it stopped working through botsmall but there are working cracks for it or a way to manipulate it so that it can still be used.. which hopefully i can come across this some how cause this grinding bit sure is getting boring lol
03/08/2008 02:49 bryllemu#15
thanks for the unpacker this a breakthrough for my 2nd part of my crack on Isrobot, ive done the first part which deletes silk.dll and create another silk.dll

// 2nd edit
btw theres a new version of unthemida