ZenHAX

Free Game Research Forum | Official QuickBMS support | twitter @zenhax | SSL HTTPS://zenhax.com
It is currently Fri Sep 20, 2019 12:13 pm

All times are UTC




Post new topic  Reply to topic  [ 1 post ] 
Author Message
PostPosted: Sat Aug 24, 2019 5:58 pm 

Joined: Sat Aug 24, 2019 5:52 pm
Posts: 1
Hi,

Recently, I've done some experiments to this old game, but seems like they've updated the algorithm to have another password layer. Using the guide to retrieve password, I still can't find the key. Here is the link to the previous BMS file: http://aluigi.altervista.org/bms/bandmaster_online.bms

New updated file: https://drive.google.com/file/d/12wpDxE-XcdMKX4zWmeqVv0O85cXcCA7k/view?usp=sharing

I've attached with the result I ran from signsrch in case you need it.
Code:
  offset   num  description [bits.endian.size]
  --------------------------------------------
  0043e383 2610 RNG [32.le.8&]
  006dd518 1036 SHA1 / SHA0 / RIPEMD-160 initialization [32.le.20&]
  006dd52d 2053 RIPEMD-128 InitState [32.le.16&]
  0072d46e 1299 classical random incrementer 0x343FD 0x269EC3 [32.le.8&]
  00aea0c0 1996 rfc3548 Base 64 Encoding with URL and Filename Safe Alphabet [..62]
  00aea0c0 2005 B64EncodeTable [..64]
  00aea133 2660 base64 map [..80]
  00aeaadd 2417 MBC2 [32.le.248&]
  00aeaae0 2418 MBC2 [32.be.248&]
  00dba6a8 3048 DMC compression [32.le.16&]
  0138c898 1037 SHA1 / SHA0 / RIPEMD-160 initialization [32.be.20&]
  0138c8ad 2054 RIPEMD-128 InitState [32.be.16&]
  0138cfe8 1018 MD5 digest [32.le.272&]
  013904b4 877  SHA256 Initial hash value H (0x6a09e667UL) [32.be.32&]
  013adb2c 2545 anti-debug: IsDebuggerPresent [..17]
  01440ee0 2574 anti-debug: Softice \\.\NTICE [..10]
  01440eec 2573 anti-debug: Softice \\.\SICE [..9]
  0146e590 917  SSH RSA id-sha1 OBJ.ID. oiw(14) secsig(3) algorithms(2) 26 [..15]
  0146e5a0 2317 PKCS_DigestDecoration_RIPEMD160 [..15]
  0146e5b0 2315 PKCS_DigestDecoration_MD2 [..18]
  0146e5c4 2316 PKCS_DigestDecoration_MD5 [..18]
  0146e5d8 2319 PKCS_DigestDecoration_SHA256 [..19]
  0146e5ec 2320 PKCS_DigestDecoration_SHA384 [..19]
  0146e600 2321 PKCS_DigestDecoration_SHA512 [..19]
  0146e614 1012 MD2 MD2_INT S [..256]
  0146e714 894  AES Rijndael S / ARIA S1 [..256]
  0146e7f4 2233 RIJNDAEL1_DS [..33]
  0146f814 915  Rijndael rcon [32.be.40]
  0146f82d 2414 Noekeon Nessie round [32.be.68]
  0146f830 2413 Noekeon Nessie round [32.le.68]
  0147088c 897  Rijndael Te0 (0xc66363a5U) [32.be.1024]
  01470c8c 899  Rijndael Te1 (0xa5c66363U) [32.be.1024]
  0147108c 901  Rijndael Te2 (0x63a5c663U) [32.be.1024]
  0147148c 903  Rijndael Te3 (0x6363a5c6U) [32.be.1024]
  0147188c 906  Rijndael Td0 (0x51f4a750U) [32.be.1024]
  01471c8c 908  Rijndael Td1 (0x5051f4a7U) [32.be.1024]
  0147208c 910  Rijndael Td2 (0xa75051f4U) [32.be.1024]
  0147248c 912  Rijndael Td3 (0xf4a75051U) [32.be.1024]
  014742b4 641  CRC-32-IEEE 802.3 [crc32.0x04c11db7 le rev int_min.1024]
  014742b4 648  CRC-32-IEEE 802.3 [crc32.0xedb88320 lenorev 1.1024]
  0147ea40 1809 libdjvu GPixmap dither table [..256]
  0147eb4c 1115 Jpeg dct 14 bit aanscales [16.le.128]
  0147ebcc 1119 Jpeg dct AA&N scale factor [double.le.64]
  0147ef97 2875 libavcodec ff_mjpeg_val_ac_luminance [..162]
  0147f04a 2876 libavcodec ff_mjpeg_val_ac_chrominance [..162]
  0147fd2c 2289 zinflate_lengthStarts [16.le.58]
  0147fda8 2296 zinflate_distanceStarts [16.le.60]
  0147fe58 2294 zinflate_lengthExtraBits [32.le.116]
  0147fec9 2304 zinflate_distanceExtraBits [32.be.120]
  0147fecc 2303 zinflate_distanceExtraBits [32.le.120]
  01480488 1089 Zlib base_length [32.le.116]
  014804fc 1091 Zlib base_dist [32.le.120]
  014805c3 1086 Zlib dist_code [..512]
  014807c3 1087 Zlib length_code [..256]
  01480ccc 129  Adler CRC32 (0x191b3141) [32.le.1024]
  014810cc 131  Adler CRC32 (0x01c26a37) [32.le.1024]
  014814cc 133  Adler CRC32 (0xb8bc6765) [32.le.1024]
  014818cc 645  CRC-32-IEEE 802.3 [crc32.0x04c11db7 be rev int_min.1024]
  014818cc 652  CRC-32-IEEE 802.3 [crc32.0xedb88320 benorev 1.1024]
  01481ccc 130  Adler CRC32 (0x191b3141) [32.be.1024]
  014820cc 132  Adler CRC32 (0x01c26a37) [32.be.1024]
  014824cc 134  Adler CRC32 (0xb8bc6765) [32.be.1024]
  01490d7c 2361 Boucher randgen5 [32.le.24&]
  014b43d9 3051 compression algorithm seen in the game DreamKiller [32.be.12&]
  014b43dc 3050 compression algorithm seen in the game DreamKiller [32.le.12&]


Top
   
Display posts from previous:  Sort by  
Post new topic  Reply to topic  [ 1 post ] 

All times are UTC


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Powered by phpBB® Forum Software © phpBB Limited