evilprogrammer's mexican

Author:
evilprogrammer

Language:
C/C++

Upload:
9:43 PM 08/25/2019

Download

Platform
Windows

Difficulty:
1.5

Quality:
4.2

Arch:
x86

Description

This is a very easy flag, i made with love for you, there are two ways to resolve it. I hope you will have fun.

Comments
Writeups

You must be logged in to post a comment

juansacco on 1:35 PM 08/28/2019: flag{M3x1c4nMl4lw4r3_pl3rro} Thanks for sharing!

kareemwalid on 6:13 AM 09/01/2019: j

kareemwalid on 6:14 AM 09/01/2019: asja

Parad0x13 on 1:29 AM 09/05/2019: flag{M3x1c4nMl4lw4r3_pl3rro} Break somewhere during normal execution then set eip to 0x401500 Then break directly after printf

totothetoro on 9:53 PM 09/10/2019: flag{M3x1c4nMl4lw4r3_pl3rr0}

qbao on 1:31 PM 09/13/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

3rr0r on 1:54 PM 09/16/2019: You can only patch this crackme and see the flag flag{M3x1c4nMl4lw4r3_pl3rro}

b1h0 on 11:14 PM 09/19/2019: Finding the flag is easy. Many people have already put it here. But it is best to patch it to see that the flag is displayed. I just uploaded my solution (the first in this reversing). Even so, I think there is an error, because the flag does not write a \ 0 at the end of the string and a memory leak appears.

0x4186 on 10:06 AM 09/21/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

meisborn on 3:44 AM 09/27/2019: thanks

karupoiss00 on 12:26 PM 09/28/2019: It's very easy :D I found flag across 5 clicks of mouse. M3x1c4nMl4lw4r3_pl3rro

X3eRo0 on 5:27 AM 10/05/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

b1h0 on 2:40 PM 10/05/2019: I see that my solution is published, but as I accompanied it with images it is perhaps not very clear. If someone is interested in seeing the whole process I have it published on Github. https://github.com/gabimarti/crackmes-solutions/blob/master/crackmes.one/evilprogrammer-mexican/b1h0-evilprogrammer-mexican.md

kosciej on 8:38 PM 10/06/2019: Thank you - My first crack from a very long time :) I have patched file to see flag on terminal :)

spencer@qvwthrows.com on 11:23 AM 10/10/2019: what is the password of the extraction though?

mucomplex on 1:20 PM 11/05/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

niros on 5:16 AM 11/12/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

Mazleg on 4:48 PM 11/12/2019: What is the password to extract the crackme?

TheSkyBaron on 7:16 PM 11/12/2019: ı enjoyed making my first patch flag{M3x1c4nMl4lw4r3_pl3rro}

Crossy1998 on 11:08 PM 11/17/2019: Flag: flag{M3x1c4nMl4lw4r3-pl3rro}

P4RS on 7:17 PM 11/20/2019: Thanx flag{M3x1c4nMl4lw4r3_pl3rro}

Andrej on 9:28 AM 11/24/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

piretrum on 11:04 PM 12/02/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

l3yam134 on 6:44 AM 12/06/2019: just array : flag{M3x1c4nMl4lw4r3_pl3rro}

l3yam134 on 6:44 AM 12/06/2019: flag{M3x1c4nMl4lw4r3_pl3rro}

ayushdosaj on 10:06 AM 12/14/2019: solved! flag{M3x1c4nMl4lw4r3_pl3rro}

mIcHyAmRaNe on 8:35 PM 12/17/2019: solved: flag{M3x1c4nMl4lw4r3_pl3rro} ... very easy :)

oznetnerd on 9:01 PM 01/02/2020: As per the FAQ (https://crackmes.one/faq) the zip password is: crackmes.one

Maksim on 5:01 PM 01/11/2020: beginning with 0x401518 - flag{M3x1c4nMl4lw4r3_pl3rro}

JonDo on 8:12 PM 01/18/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

darknessxk on 7:04 AM 01/27/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

devnull on 7:16 PM 02/04/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

n00n3 on 7:34 AM 02/08/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

yanns on 8:55 PM 02/26/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

aaniao002 on 1:23 PM 03/19/2020: 0040163A C74424 1C C1mov dword ptr ss:[esp+0x1C],0xC1 00401642 817C24 1C C1cmp dword ptr ss:[esp+0x1C],0xC1 0040164A 7E 07 jle short Untitled.00401653 is there anyway make zf=0? will the only way is modify opcode?

1@m@n00b on 2:39 PM 03/27/2020: flag{M3x1c4nMl4lw4r3_pl3rro}, my first flag... to be honest this is very smart... i did this by reversing the jle

santyk on 10:39 PM 04/26/2020: flag{M3x1c4nMl4lw4r3_pl3rro} One of the soln: Chang jle - jl bec 0C1h !

enkeyz on 4:25 PM 05/05/2020: By default the flag isn't displayed, because there's a jle before the function call that displays the flag. Just simply change jle to jne.

bahiraei on 4:32 PM 05/08/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

qtkite on 4:53 AM 05/21/2020: simple xref to printf led me to solution ^_^ flag{M3x1c4nMl4lw4r3_pl3rro}

sherlock789 on 10:33 PM 06/12/2020: My FIRST FLAG: flag{M3x1c4nMl4lw4r3_pl3rro}

crashswitch on 1:38 PM 06/24/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

n00bFox on 10:24 PM 06/25/2020: Did anyone else get a password box when extracting the files? Does anyone know it?

n00bFox on 10:25 PM 06/25/2020: ignore my comment above

Senken on 10:42 AM 07/09/2020: Flag is M3x1c4nMl4lw4r3_pl3rro

LuckyCrack on 2:29 PM 08/21/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

saheelfaldesai on 6:29 AM 09/18/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

n00bb on 9:34 PM 11/06/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

sbn on 12:45 PM 12/13/2020: flag{M3x1c4nMl4lw4r3_pl3rro}

mohammadali on 5:42 AM 12/26/2020: idk why but my windows defender detected it as Trojan:Win32/Bluteal!rfn so? ...

PjAwasthi09 on 6:00 PM 12/30/2020: flag{M3x14nMl4lw4r3_pl3rro}

CpyRe on 5:50 PM 02/26/2021: flag{M3x1c4nMl4lw4r3_pl3rro}

matheuss0xf on 11:33 PM 03/26/2021: flag{M3x1c4nMl4lw4r3_pl3rro} Very Nice!

ComputerPoision on 6:31 PM 07/27/2021: i capture my first flag{M3x1c4nMl4lw4r3_pl3rro}

suhaslingam on 11:58 AM 09/13/2021: flag{M3x1c4nMl4lw4r3_pl3rro}

Urbarce on 8:23 AM 04/18/2022: Umffhw https://bestadalafil.com/ - Cialis Jcqfyb Viagra Dopo Mangiato Pqdoqa Levitra Dolor De Cabeza buy cialis online with a prescription Buy Female Viagra Reviews cm CHAPTER Vnbtjl https://bestadalafil.com/ - Cialis Ocfvji

Selfixh on 12:43 PM 04/19/2022: pswd of winrar file??

Durgesh on 8:47 AM 05/08/2022: What is it password to extract zip file ?

vmncbb on 3:28 AM 05/09/2022: hydroxychloroquine cures https://keys-chloroquinehydro.com/

JohnWickS007 on 6:14 PM 08/06/2022: flag{M3x1c4nMl4lw4r3_pl3rro}

sbk on 2:15 AM 10/13/2022: flag{M3x1c4nMl4lw4r3_pl3rro}

INvasse on 4:06 PM 10/23/2022: lasix 10 mg TRIM3 was identified as a novel RING finger protein expressed in the rat brain, which is involved in regulating neuronal outgrowth 19, 28

ksaltik on 1:05 PM 12/19/2022: Contains virus öalware trojan remove it and careful dont download this shit

seaaaa on 6:45 PM 02/16/2023: flag{M3x1c4nMl4lw4r3_pl3rro}

karlos on 10:33 AM 06/08/2023: flag{M3x1c4nMl4lw4r3_pl3rro}

fatahhashim on 4:50 AM 07/08/2023: flag{M3x1c4nMl4lw4r3_pl3rro}

arjano on 9:11 AM 09/09/2023: My first crackme flag{M3x1c4nMl4lw4r3_pl3rro}

Melvinfem on 3:14 AM 11/11/2023: онлайн казино автоматы

haxan on 1:24 PM 12/08/2023: flag{M3x1c4nMl4lw4r3_pl3rro}

Reversing007 on 5:28 PM 04/10/2024: flag{M31c4n4l4_ml4r_4l3p4ro_l4w4r_x1c4nl34_ml4w}

9miceeee on 9:31 PM 09/07/2024: flag{M3x1c4nMl4lw4r3_pl3rro}

UNITIX on 3:59 PM 12/28/2024: flag{M3x1c4nMl4lw4r3_pl3rro}

You must be logged in to submit a writeup

Solution by 0xNinja:

Download

Solution by b1h0:
# [evilprogrammer's mexican](https://crackmes.one/crackme/5d63011533c5d46f00e2c305) ## Crackme by [b1h0](https://crackmes.one/user/b1h0) - Used **x64dbg** debbuger. - Once the **EntryPoint** is located, you can verify that at the address **0x00401500** a subroutine begins, which is the one shown in the *flag* text. We will call this subroutine: **sub_result_cracked** ![mexican_01](mexican_01.PNG "sub_result_cracked") - Then later we can find in the address **0x004013dd** a call to the address **0x0040162c** which is the subroutine that we will call **sub_compare_crackme**. We establish a breakpoint there and then continue step by step. ![](mexican_02.png) - Finally at address **0x00401642** we find a comparison of the value **0xC1** with the value 0xC1. The key is that the two values have to be different, and in particular the first one greater than the second, therefore we change the first 0xC1 for a greater value, or the second 0xC1 for a smaller value. ![](mexican_03.png) - So we change the *0xC1* value of the comparison line to a lower value. For example, **0 (zero)** ![patch](mexican_03_patch.png "patch" ) - And the flag message appears. Printed message: **flag{M3x1c4nMl4lw4r3_pl3rro}** ![patch](mexican_flag.png "flag{M3x1c4nMl4lw4r3_pl3rro}")

Download

Solution by Stingered:
Text file containing my solution and patch details. Ciao, Stingered

Download

Solution by 6C615F6C6C6F726F6E61:
With Ghidra

Download