DarkBlizz

Quote from: Cybertox on July 22, 2010, 11:52:36 AM

Quote from: HolyPants on July 22, 2010, 11:10:45 AM
quote author=Cybertox link=topic=2040.msg19323#msg19323 date=1279794546]Digital download has the same price as the retail version WTF?


You aren't paying for the manual.

Digital Version include:
Key
Retail Version include:
Disk
Manual
Box
Price same?Is that normal?
I didnt knew that i can a disk manual and a box for free.

Disks, Manuals, & Boxes costs pennies since they are bought and made in bulks sizes. The other thing you have to think about is that the Retail Version includes...Taxes!

Quote from: Kernel64 on July 19, 2010, 08:31:02 PM
Hmm.. There must be something in the beta files that are encrypted which gets decrypted the same way.

Nothing in the beta is encrypted with the same thing as this is the problem, there is not a single encryption in the beta. However with the Digital Download the important stuff is encrypted with the key that is going to be available on the blizzard servers on the 27th. Once the 27th rolls around there will be no need for a crack since you could install freely and without a battle.net account.

Quote from: darkrei9n on July 19, 2010, 02:04:22 PM
This is where the authentication key is checked, if anyone can do anything with this.

Code Select Expand

cé


; int __stdcall sub_4447E0(HINSTANCE hInstance, HWND hWndParent, int, char, int, int)
sub_4447E0 proc near

hInstance= dword ptr  4
hWndParent= dword ptr  8
arg_8= dword ptr  0Ch
arg_C= byte ptr  10h
arg_10= dword ptr  14h
arg_14= dword ptr  18h

mov     eax, [esp+arg_8]
mov     edx, [esp+arg_10]
push    ebx
mov     [ecx], eax
mov     al, [esp+4+arg_C]
xor     ebx, ebx
push    ebx             ; dwInitParam
mov     [ecx+26h], al
mov     eax, [esp+8+hWndParent]
push    offset sub_4440A0 ; lpDialogFunc
mov     [ecx+4], edx
mov     edx, [esp+0Ch+arg_14]
push    eax             ; hWndParent
mov     [ecx+24h], bl
mov     [ecx+25h], bl
mov     [ecx+28h], edx
mov     ecx, [esp+10h+hInstance]
push    87h             ; lpTemplateName
push    ecx             ; hInstance
call    ds:DialogBoxParamW
cmp     eax, 1
mov     al, 1
jz      short loc_444828


There is nothing to do here, if the authentication code is a valid format then it moves on and tries to decrypt the files using it. There is only 1 valid code that will decrypt the files, it is only stored on the blizzard servers.

Quote from: Cybertox on July 19, 2010, 01:17:21 PM

Quote from: obliviron on July 19, 2010, 01:11:05 PM

Ok, to the people who are trying to crack Blizzard's SC2 - read the following.


MPQ - MoPaQ file archive format in which the files are compressed to decrease space and enhance ease of use.
MPQE - MoPaQ files first used by Blizzard. These files are encrypted.

After playing around with PeID and several plugins I found MPQE files to be encrypted in two ways. One - is a simple crc & header corruption which is easily reversible.

The other, however is a Salsa20 or ChaCha encryption, BOTH of which are as hard to decrypt as Themida 2.x. This encryption requires a 256-bit key which Blizzard DID NOT RELEASE. It is possible to try to crack the key if you have enough knowledge on the subject, but cracking the key could take months or more.

The Sc2 installer WILL DEPROTECT the files WHEN it has the key. So basically, even if you do modify the program so that it will accept any authorization key, the decryption will still require the 256-bit key that BLIZZARD HAS.

Vernam claims he cracked the program in a maximum of 3 days. He also said that he used an emulator server to help him with the cracking.

Why the hell would you need an emulation server if everything except the encryption-key can be accessed locally?

Finally, Blizzard wouldn't release a game before the actual release date with such weak protection that it can be cracked in less then a week!

Also, Vernam, I have 8 years of experience in C mask and psuedo code, not to mention a doctorate in computer science. I am currently taking classes in electric engineering, so denying my argument by calling me a script kiddie (Which is what you say to all logical arguments) will just make you an idiot.
IN SHORT - SC2 CANNOT BE CRACKED BEFORE THE RELEASE DATE!

Everything can be cracked!
This is the first time i see a guy that have 8 years experience and cannot hack a game calling its protection weak xD

He never said that the protection was weak, he said Blizzard would never release a game before release with weak protection. He is indeed saying the opposite and that the protection is great.

Yes, everything can be cracked if you had time. But trying to brute force a key in less than a week is pure impossible.

The problem Vernam7 is the fact that you have yet to provide a lick of true evidence that you have bypassed the Digital Download security. You have shown us two pictures which we are able to reproduce in a matter of seconds saying that is all the proof that we need. I also kind of find it funny how people who do this normally or even on a professional level are stumped on how to hack there way past the securities and you expect us to believe that you managed to get past it so easily and in a matter of a day?

I have ripped the installer to shreds and ran it up and down wall to rip the secrets it contains, which for the matter of fact it has not a single secret on how to decrypt the .MPQE files. It does contain the code to decrypt it but it doesn't have the key stored inside of it, it uses the key it gets from the internet to decrypt those files. Brute forcing such a key would take over one thousand years with modern technology.

Also, as a side note releasing your crack after the game is released proves nothing since by that time there will be no point to it and it would take a matter of a minute to make a crack at the point since we would have the key needed.