[C++]Protect DLL based HWID | Ebith.id
Home » , » [C++]Protect DLL based HWID

[C++]Protect DLL based HWID

Posted by Unknown Posted on 08.27 with No comments
Dalam tutorial kali ini saya akan memberitahu bagaimana menggunakan proteksi berdasarkan HWID.
Jalankan file "Get Hardware Identifier.exe" lalu akan muncul angka HWID komputer anda.

Dan ini kode untuk memanfaatkan HWID untuk memproteksi DLL

// coded by drache
// modified by rcd
#include <windows.h>
//include header dari protector
//#include "ThemidaSDK.h"

UCHAR
szFileSys[255],
szVolNameBuff[255];

DWORD
dwMFL,
dwSysFlags,
dwSerial;
#define My_HWID (1289182852)

VOID CheckValidHardwareID()
{
                /* WEAK POINT */
                /*
                 LAKUKAN PERLINDUNGAN TERHADAP FUNGSI CheckValidHardwareID()
                 karena jika CheckValidHardwareID() di patch dengan RET maka CheckValidHardwareID()
                 tidak akan dipanggil dan dll berjalan tanpa pengecekan HWID !
                 kamu bisa gunakan CodeVirtualizer, Themida Code Replace, atau Enigma Protector untuk melindungi fungsi CheckValidHardwareID()
                */
        //CODEREPLACE_START // CODE REPLACE EXAMPLE
        //VIRTUALIZER_START // VIRTUALIZER EXAMPLE
        //#include "vm_begin.inc" // ENIGMA PROTECTOR EXAMPLE
        GetVolumeInformation("C:\\",(LPTSTR)szVolNameBuff,255,&dwSerial, &dwMFL,&dwSysFlags,(LPTSTR)szFileSys,255);
        if (dwSerial == My_HWID) // Lakukan perbandingan dengan hwid yang baru diambil dengan My_HWID
        {
                MessageBox(0,"VALID HARDWARE ID","INFORMATION",MB_OK | MB_ICONINFORMATION);
                // Serial valid
        }
        else // Jika serial tersebut tidak cocok
        {
                MessageBox(0,"VALID HARDWARE ID","INFORMATION",MB_OK | MB_IConerror);
                ExitProcess(1); // Force Exit
                // Invalid Serial
        }
        //CODEREPLACE_END // CODE REPLACE EXAMPLE
        //VIRTUALIZER_END // VIRTUALIZER EXAMPLE
        //#include "vm_end.inc" // ENIGMA PROTECTOR EXAMPLE
}
BOOL WINAPI DllMain ( HMODULE hDll, DWORD dwReason, LPVOID lpReserved )
{
        if (dwReason == DLL_PROCESS_ATTACH)
        {
                DisableThreadLibraryCalls(hDll);
        //CODEREPLACE_START // CODE REPLACE EXAMPLE
        //VIRTUALIZER_START // VIRTUALIZER EXAMPLE
        //#include "vm_begin.inc" // ENIGMA PROTECTOR EXAMPLE
                /* WEAK POINT */
                /*
                 LAKUKAN PERLINDUNGAN TERHADAP PEMANGGILAN FUNGSI CheckValidHardwareID()
                 karena jika CheckValidHardwareID() di patch dengan RET maka CheckValidHardwareID()
                 tidak akan dipanggil dan dll berjalan tanpa pengecekan HWID !
                 kamu bisa gunakan CodeVirtualizer, Themida Code Replace untuk melindungi fungsi CheckValidHardwareID()
                */
                CheckValidHardwareID();
        //CODEREPLACE_END // CODE REPLACE EXAMPLE
        //VIRTUALIZER_END // VIRTUALIZER EXAMPLE
        //#include "vm_end.inc" // ENIGMA PROTECTOR EXAMPLE
        }
        return TRUE;
}
[warning]Perlu diperhatikan bahwa function CheckValidHardware() harus anda proteksi dengan aplikasi protector (Themida, Virtualizer, dll..) agar tidak mudah dibypass[/warning]

Spoiler Virus Total

Antivirus results
AhnLab-V3 - 2011.04.25.02 - 2011.04.25 - -
AntiVir - 7.11.7.7 - 2011.04.25 - -
Antiy-AVL - 2.0.3.7 - 2011.04.25 - -
Avast - 4.8.1351.0 - 2011.04.25 - -
Avast5 - 5.0.677.0 - 2011.04.25 - -
AVG - 10.0.0.1190 - 2011.04.25 - -
BitDefender - 7.2 - 2011.04.25 - -
CAT-QuickHeal - 11.00 - 2011.04.25 - -
ClamAV - 0.97.0.0 - 2011.04.25 - -
Commtouch - 5.3.2.6 - 2011.04.25 - -
Comodo - 8470 - 2011.04.25 - -
DrWeb - 5.0.2.03300 - 2011.04.25 - -
eSafe - 7.0.17.0 - 2011.04.24 - -
eTrust-Vet - 36.1.8289 - 2011.04.25 - -
F-Prot - 4.6.2.117 - 2011.04.25 - -
F-Secure - 9.0.16440.0 - 2011.04.25 - -
Fortinet - 4.2.257.0 - 2011.04.25 - -
GData - 22 - 2011.04.25 - -
Ikarus - T3.1.1.103.0 - 2011.04.25 - -
Jiangmin - 13.0.900 - 2011.04.25 - -
K7AntiVirus - 9.98.4470 - 2011.04.25 - -
Kaspersky - 9.0.0.837 - 2011.04.25 - -
McAfee - 5.400.0.1158 - 2011.04.25 - -
McAfee-GW-Edition - 2010.1D - 2011.04.25 - -
Microsoft - 1.6802 - 2011.04.25 - -
NOD32 - 6069 - 2011.04.25 - -
Norman - 6.07.07 - 2011.04.25 - -
Panda - 10.0.3.5 - 2011.04.24 - -
PCTools - 7.0.3.5 - 2011.04.21 - -
Prevx - 3.0 - 2011.04.25 - -
Rising - 23.55.00.05 - 2011.04.25 - -
Sophos - 4.64.0 - 2011.04.25 - -
SUPERAntiSpyware - 4.40.0.1006 - 2011.04.25 - -
Symantec - 20101.3.2.89 - 2011.04.25 - -
TheHacker - 6.7.0.1.182 - 2011.04.24 - -
TrendMicro - 9.200.0.1012 - 2011.04.25 - -
TrendMicro-HouseCall - 9.200.0.1012 - 2011.04.25 - -
VBA32 - 3.12.16.0 - 2011.04.25 - -
VIPRE - 9114 - 2011.04.25 - -
ViRobot - 2011.4.25.4428 - 2011.04.25 - -
VirusBuster - 13.6.319.2 - 2011.04.24 - -
File info:
MD5: 197f3138c9d9f104c90e94625d71e7c0
SHA1: 492c06bd7a883c725d3248ebdbfef4626c29ec53
SHA256: 4da5722f76daef1cb5499997d1a44096e224d6b0b7fad99dc1116d0b3d6f1624
File size: 24576 bytes
Scan date: 2011-04-25 13:55:15 (UTC)
VirusTotal

Download Link :

File Terlampir  HardwareIDProject.zip   2.07K   1450 Jumlah Unduhan
File Terlampir  Get Hardware Identifier.zip   5.91K   1676 Jumlah Unduhan
Label: ,

0 komentar:

Posting Komentar