I have a windows exe application that is used to send packets to a server in a box. This application (lets call it a client application) is certainly close to the source, but some smart hacker did the editing of the binary file and made it send packets that are scrambled.
Now, obviously, these packets are scrambled in such a way that it is decipherable (otherwise the server will not be able to understand it), but I would like to write an emulator that emulates this binary application, sending the same packets to the server and the ability to cancel the response (if it is scrambled) .
To work with the hexadecimal client, an additional dll is required to run, which the old client did not have. I assume that somehow the client with the hexadecimal client managed to load this DLL (client.dll will call it), and the function of this DLL is to implement scrambling / decryption by connecting to some api windows that redirected all packets sent from the client. exe.
If there is anyone who can guide me on how to even get started on how it all works, and how I can reprogram the scrambling, that would really be appreciated.
I have no idea what information to provide, but if there is a flaw, just answer and I will post with more detailed information, and if someone wants to use binary files, I gladly provided it.
binary download :
http://dl.getdropbox.com/u/46623/client.dll
http://dl.getdropbox.com/u/46623/newClient.exe
http://dl.getdropbox.com/u/46623/originalClient.exe
- , - 3 , . =), , , DLL...