30 Mar 2017

Infinity Box Plateform Detector (PDT) (Review And Analysis)

Hi Friends,
Today we gonna talk about a new tool from Infinity Box team named Infinity Box plateform detector(PDT). This is a new simple tool that provide us information about phones. Basically it detects phones processor. We all know that many new Chinese phones are coming in the market some phones are MTK some are SPD some are RDA and Qualcomm. So the tool handle it easily just plug your phone with pressing volume up and down button and it will detect automatically the processor of the phone. It is very useful for mobile technicians like me, Actually I don't like to search on Google and get information about phone I want to do all things offline. This tool helped me a lot in these few days. 

Let me tell you a story, Yesterday a mobile phone locked with pattern came to my shop, customer told me that he forgot his pattern lock last night after changing his pattern. So I told him that I will charge ₹150 for unlocking, he agreed. When I tried to connect the phone with my computer it not detected with my computer. I told to customer that the Charging connector must be damage it is not detecting with my computer ,he told that phone is taking charging so he doesn't wanna change the connector, I told him to come back in 1 hours. Now, I opened the phone and solder 4 wires of a USB cable and tried to connect with my pc and tried to connect Miracle Box software. I tried SPD plateform and MTK too It doesn't detecting with both of them. It made me frustrated. So, I thought it might be another processor but I don't know which one. I have downloaded this great tool last night. So, I give it a try. I run this tool and connect my phone with my computer, Bingo!! Phone detected with it and It is RDA cpu. Now, I formatted it with Miracle Box and the pattern lock goes out. Actually I can't even imagine that the phone has RDA CPU, but it is. So, it saves my time to finding the CPU.


Hope it will help you too to find plateform of phones. Never forget to say thanks to Infinity Box team. They are making phone repairing easier.

Download Links :

Regards,
GauramGreat
CrackingGSM team

9 Mar 2017

Borland C++ Builder 6.0 Full (With Serial) (Updated)

Hi Friends,
This is time to update our Programming Tools section. It is Borland C++ Builder 6. As we all know creating GUI application in C++ is quite difficult but Borland C++ gives you power to create GUI applications in C++ easily. C++ is object-oriented programming language. Here I am attaching the links of some tutorial sites that will definitely help you in learning C++ and building great applications using Borland C++ builder.


If you have any problem while installing it, You can tell me in comment section and I will try my best to help you. Some links and tutorial links are given below. Hope for the best. 

PS : Fixed the link of Serial Number.
PS : There is a keygen folder inside setup. Generate serial number using that keygen.

Links 

Tutorials

7 Mar 2017

VMProtect CRC Handling (CRC Checks) Part 1

Hello Friends,
Today I am gonna share a trick for bypassing the CRC checks of VMProtect. VMProtect is using a hash system to verify the checksum of file. Here I have a file protected by VMProtect. I patched a byte and now It is showing a Message Box.


This is the MessageBox that will appear if we modify the Original file. Our goal is bypass the check and make the file working.


For bypassing CRC checks. Firstly we gonna set a HWBP on execution on api CreateFileW and then HWBP on CreateFileMappingW and then MapViewOfFile. Our last bp is MapViewOfFile.


Once the last HWBP executed clear all the Breakpoints and press CTRL+F4 and we will reached at the end of the function. Now we can see that the EAX holds the VA of our file. In my case VA is 01AC0000

Now lets find the VA 01AC0000 in memory and set memory breakpoint on access and execute the target. 

After execution we reached at
 00630A5E   3202             XOR AL,BYTE PTR DS:[EDX]                 ; crc function break


Lets investigate this function. Press F7 and see whats happening. I analysed the function and found some values.

0062FB53   D0ED             SHR CH,1                                 ; loop start
0062FB55   89C1             MOV ECX,EAX
0062FB57   51               PUSH ECX
0062FB58   60               PUSHAD
0062FB59   E8 3D150000      CALL VMProtec.0063109B
0063109B   C1E0 07          SHL EAX,0x7
0063109E   66:0FA3DB        BT BX,BX
006310A2   9C               PUSHFD
006310A3   C1E9 19          SHR ECX,0x19
006310A6   F9               STC
006310A7  ^E9 AAF9FFFF      JMP VMProtec.00630A56
00630A56   F9               STC
00630A57   09C8             OR EAX,ECX
00630A59   F9               STC
00630A5A   0FBAE5 15        BT EBP,0x15
00630A5E   3202             XOR AL,BYTE PTR DS:[EDX]                 ; crc function break
00630A60  ^E9 ACE3FFFF      JMP VMProtec.0062EE11
0062EE11   66:C74424 08 030>MOV WORD PTR SS:[ESP+0x8],0x503
0062EE18   42               INC EDX
0062EE19   68 D7988109      PUSH 0x98198D7
0062EE1E   891C24           MOV DWORD PTR SS:[ESP],EBX
0062EE21   68 E8F9D11A      PUSH 0x1AD1F9E8
0062EE26   E9 3F1F0000      JMP VMProtec.00630D6A
00630D6A   FF4D 00          DEC DWORD PTR SS:[EBP]                   ; length of bytes
00630D6D   53               PUSH EBX
00630D6E   E8 52DDFFFF      CALL VMProtec.0062EAC5
0062EAC5   8D6424 3C        LEA ESP,DWORD PTR SS:[ESP+0x3C]
0062EAC9   0F85 84100000    JNZ VMProtec.0062FB53                    ; loop jump
0062EACF   68 6D5A4433      PUSH 0x33445A6D
0062EAD4   8945 00          MOV DWORD PTR SS:[EBP],EAX               ; final hash
0062EAD7   51               PUSH ECX
0062EAD8   9C               PUSHFD
0062EAD9   60               PUSHAD
0062EADA   8D6424 2C        LEA ESP,DWORD PTR SS:[ESP+0x2C]
After some analysis I found that there is a loop function which is creating a hash for a fixed size of bytes. I posted the whole function above. I removed the mem bp and put a soft bp at VA 0062EAD4 because this is the first write after loop. Now run the target. EAX holds a hash in my case hash is 99FE991A

Now I decided to compare the hash with original file. So I fire up olly and load the Original target and do the same procedure above after stop at VA 0062EAD4 I saw that EAX holds different hash. Now copy the eax and put it at our target and try to run. Bingo! the file run without any error. It means we need to write an inline patch for bypassing it purely. We will do it in next part.

Hopefully this will helps for bypassing VMP CRC.

PS : My English is not so good but I think people can understand my feelings. :D. If you have any questions regarding this please let me know.

27 Feb 2017

Validate IMEI in Different Programming Languages (Delphi, C++, C#)

Hi Friends,
Our new topic is for verifying IMEIs with its checksum. Almost every person know the fact that IMEI number is using an algorithm that is called Luhn Algorithm in short form it is same like an checksum procedure. Some time we missed a digit from IMEI while we are writing it to phone and the whole IMEI is not working this is the main reason behind it the checksum.

So lets start our topic, and Firstly we do it into Delphi. as you all know I love Delphi. Here we go,

Borland Delphi



It is not quite difficult in Delphi just use this function that I posted below.

function IMEIChecksum(imei : string): string;
var
  a : Integer;
  sum : Integer;
  i : Integer;
  d : string;
  ds : Integer;
begin
  a := 0;
  sum := 0;
  for i := 0 to Length(imei)-1 do
  begin
    d := Copy(imei, Length(imei)-i, 1);
    ds := StrToInt(d);
    if a mod 2 = 0 then
      ds := ds * 2;
    if ds > 9 then
      ds := ds - 9;
    sum := sum + ds;
    a := a + 1;
  end;
  sum := sum mod 10;
  Result := IntToStr(10 - sum);
end;
Copy the above function and paste it into Delphi IDE. Call it through any button. as shown in picture.
This function requires only 14 digits of IMEI, the last digit will be generated and returned. You can use it to show IMEI in any editbox or memo.

Checksum Function

Button on click function

C++

Our second target is making Luhn Algorithm in C++. C++ is most famous language used by so many developers around the world. I have managed to create a same function like Delphi in C++. So the function is given below.
String IMEIChecksum(String g)
{
  String imei = g;
  int a = 0;
  int sum = 0;
  for(int i = 0; i < imei.Length(); i++)
  {
    int d = StrToInt(imei.SubString(imei.Length() - i, 1));
    if(a % 2 == 0)
      d = d * 2;
    if(d > 9)
      d -= 9;
    sum += d;
    a++;
  }
  int j = 10 - (sum % 10);
  return IntToStr(j);
}

I have coded this algorithm in Borland C++. It will work on every C++ compiler. Check this and post your feedback in comment section. 

Microsoft Visual C#

Our third target is to create the same function in C#. It is same as C++ but somethings are changed in C#. It is quite easy for me to create function same like Delphi in C#. I used Microsoft Visual C# 2010. So the function is given below.
public static string IMEIChecksum(string imei)
{
int a = 0;
int sum = 0;
for (int i = 0; i < imei.Length; i++)
  {
    int d = Convert.ToInt32(imei.Substring(imei.Length - 1 - i, 1));
    if (a % 2 == 0)
        d = d * 2;
    if (d > 9)
        d -= 9;
    sum += d;
    a++;
  }
int j = 10 - (sum % 10);
return j.ToString();
}

It is the last compiler that I use. You can also clone these function to create the same function in Python, PHP and Java. But these languages are difficult for me as I am not started working on them.

Hope these functions will work good on your projects. This is just for fun purpose don't use it for doing any illegal work. I am not responsible for any illegal work done by these functions.

Regards,
GautamGreat
CrackingGSM Team 

20 Feb 2017

GSMFlasher FRP Tool Pro cracked CrackingGSM Team

Hi Friends,
Its time to upload new crack of GSM Flasher FRP tool pro. It is good and paid software but I want to make it free for all. So here we go,


Too much people are saying that it is fake that why I also uploaded a Video on Youtube. YouTube link is Given below. This is payback of cracking my softwares. Now they will feel the power of Indians. Next time make your protection better before publishing it in public.

  1. Download Setup from Given Link
  2. Run software click on any function.
  3. It will ask for key. Key is given below.

Thanks RAHUL BHUTANI bro for supporting me.


Serial  Number : EVERYCATISNOTGRFIELD



Regards,
GautamGreat
CrackingGSM Team

18 Feb 2017

Infinity Samsung Module v0.70 Cracked (Bug fixed)

Hi Friends,
Hope you all are using old cracks released by CrackingGSM Team. So, our next release is Infinity Samsung Module. It is not well protected by Infinity Team and It is working same as Odin nothing new there that's why I decided to release it for every single visitor of our blog.

How to use Loader

There is no rocked science in downloading and using this loader. All links are given below.
  1. First of all download and install Infinity SM module setup from given link.
  2. Download the loader and paste it into C:\InfinityBox\SM\
  3. Double click on Loader Infinity SM.exe 
  4. Then click on Rock the Loader and a new window will open. 

Download Links :

Download Loader
Setup Download

Update 1:
 Old download link has been updated now, It should work on every pc.

New Download Link



PS : This program is cracked by Psycho GSM Destroyer. He is busy in his business that's why I posted it.

Regards,
CrackingGSM Team


14 Feb 2017

How to install ComPort library in Delphi 7

Hello Friends,
This tutorial is about installing comports in Delphi 7. Actually this idea come to mind when I am creating a application for MTK FRP. So it is pretty easy to install comports in Delphi and start sending commands over serial ports. Delphi is very interesting for creating GUI applications and comports are so useful for Delphi.

Here we go, First of all we have to download the Comport Library file for Delphi 7. Download link is given below :
  • After downloading above file extract it in a folder and rename it to Comport.
  • Now open Delphi and Goto Tools -> Environment Option
  • After clicking on Environment option, A new window will open on that click on Library tab.
  • Click on browse button of Library path then a new window will open. On that window click on (...) three dot button and select your Comport folder that created on first step
  • After selecting directory. click on OK close all window. Goto File - Close All and then goto File - Open. and browse your comport folder and select CPortLib7.dpk file as shown in picture.


  • On Next window click on Compile and Install, Now again Goto File - Close All then again goto File - Open and browse for DsgnCport7.dpk from Comport Folder
  • Again click on Compile and Install. That's all Comport Library is installed in your PC. Now you check it in Toolbar option as shown in picture.




Now you can use it very simply. Just drag it in your form and enjoy using it.
Hope this helps you.


PS : Images are copied from internet with full respect of its owner

Regards,
GautamGreat
CrackingGSM Team