azukame on 2021-06-07 16:01:
Very simple crackme which is perfect for beginners.
Luxiferr on 2021-06-11 22:10:
Very good for beginners, simple and easy to do Tip:
Breakpoint on test eax,eax and look at ECX :)
GeneralBison on 2021-06-15 15:37:
I've figured out the solution, but I can't quite figure out *why* based on my decompiler. I'm still getting used to static analysis, I'm trying to get to the point where I don't just ignore elements of the decompilation because I don't understand it.
GeneralBison on 2021-06-15 15:39:
Okay, looking at azukame's IDA decompilation, it makes much more sense than mine through Ghidra, not sure what's produced my erroneous results.
bob123 on 2021-06-29 17:22:
Nice, i was first wondering why it did not make sense what i got via looking statically, i guess i forgot about endianness :D
asdqwezc on 2021-07-18 16:28:
[Click to reveal]DO NOT DOWNLOAD THIS IS A VIRUS!!!!!
https://imgur.com/a/80DQGop (virustotal result)
asdqwezc on 2021-07-18 16:30:
[Click to reveal]DO NOT DOWNLOAD!! ITS A VIRUS TROJAN!!!
https://www.virustotal.com/gui/file/22159f1bb8e727c69930beabbe06094b9b9ec7a6a6e216d3b1c3754287251589/detection
sry im dumb and shouldve just posted this link instead of pic b4
tynkute on 2021-08-01 10:17:
[Click to reveal]malware
KellytRE on 2021-08-02 07:27:
Thanks for the very-beginner challenge :)
hamolicious on 2021-09-21 08:54:
Very simple, easy and great for beginers
th3h3d on 2021-11-24 23:05:
[Click to reveal]the password is "07/10/97"
StefanCicos on 2021-11-25 07:19:
[Click to reveal]I tried solving the crackme but I just couldn't look away from all those win api calls :p
Jokes aside this is MALWARE. Please don't run it
Powoli on 2022-03-09 19:14:
[Click to reveal]Virus.
PinkDraconian on 2022-03-17 20:41:
[Click to reveal]This challenge contains malware. Do not run this!
PinkDraconian on 2022-03-17 23:31:
After looking into this for a bit longer, and discussing with some others, this most likely is not a virus.
All changes being made to the registry seem to be to measure performance and not of malicious intent.
Don't take my entire word for it, but I think it's a fun exercise to try and reverse it!
trungkientran on 2022-07-15 08:08:
nice first program :)
mr.penis on 2024-08-09 13:59:
[Click to reveal]strcpy(Str2, "07/10/97");
jeffli6789 on 2025-04-13 05:21:
This is not a malware. Some contributing factors for the false positive are 1) The file is an .exe compiled with GCC, 2) it carries large resources in the .rsrc section, but mainly it is just the pacman icon
jeffli6789 on 2026-01-04 06:25:
This crackme had been reviewed when it was originally approved and is likely safe.
Crackmes often get flagged by antivirus software, EDR systems, or VirusTotal because they may use the same protection techniques found in malware (packers, anti-debugging, self-modifying code, etc.), or simply a false positive. This does NOT mean the crackme is actually malicious.
The only way to confirm whether something is truly malware is to reverse engineer it and find proof of malicious code and/or malicious behavior.
If you still believe this is actual malware, please report it to us via email: crackmesone@gmail.com.
**We encourage everyone to run crackmes in a VM (virtual machine) and exercise caution when executing unknown binaries.**
*Disclaimer: We do our best to review submissions, but mistakes can happen. The administrators and crackmes.one cannot be held liable for any damages or losses resulting from the use of files downloaded from this site. Always exercise caution and use a sandboxed environment.*