| 1. patch .text+0x2115 (jnz .text+0x2110) to jmp .text+0x25CC,
this is to bypass his debugger protections
2. nop out .text+0x27E4 (jnz .text+0x28C4),
he does a comparison and if it fails (jnz/jump not equal) it will jump to 0x28C4 which is his fail routine.
3. patch .text+0x27ED (jz .text+0x2804) to jmp .text+0x2804,
this changes his conditional jump (jz/jump equal) to an unconditional jump meaning any input takes you to his success routine (message box "Access Granted") |
==> |