76 lines
4.9 KiB
Markdown
76 lines
4.9 KiB
Markdown
# Ethereal crack
|
|
[Precompiled download](https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/assets/Ethereal.zip)
|
|
## Additional downloads
|
|
[Decompiled launcher source code](https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/assets/LauncherSource.zip)
|
|
<br/>
|
|
[Human menu source code which they used as base](https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/assets/hbase.zip)
|
|
<br/>
|
|
[Asset files for human menu](https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/assets/hbase-cdrive.zip)
|
|
<br/>
|
|
[Maintained open source menu based on human menu](https://github.com/sinfail/Windbreaker)
|
|
## The story
|
|
#### read the story and watch the proofs before telling me that im lying and deciding which side is right.
|
|
The Ethereal team falsely accused me of ratting people after a reseller of them got ratted and his keys got leaked to the public. At the beginning i tried to talk to Jaguar(Admin at Ethereal) peacefully but he didnt believe me and kept trash talking so I had enough of it. I cracked the menu in around 2 hours of work. The auth of them is basically a function which returns a bool which is highly virtualised and mutated. VMProtect and its sdk is used for the main protection. There are two methods of cracking it: One by returning true in the part where the Macro of VMP in the source is placed(which was found by timiostimio and is the method used in this source because its easier to use and stabler) or by setting the rax register to 1 before the original return after the vm.(which is shown in the et.1337 x64dbg patchfile) But lets continue with the story: After i released the crack Jaguar started shittalking me again and released an announcement where he tried to save his ass by saying that the crack is outdated, infected with a rat or just crashes very often, which is not true as only the auth function that only gets called one time gets patched. Jaguar also borrowed around 800 dollars to protect a crash from Jack the Ripper and never paid it back, Jack was kicked from the team instead. They also used the leaked source from human menu which was coded by huangmo for most of their stuff. They are also collecting a lot of information about the users pc that is not used to determine the hwid of a user for "Support reasons". Last but not least Jaguar is accusing me of having something to hide because i packed the Ethereal crack with themida(it was not packed) and provides a screenshot of assembler code that loads a dll as proof.
|
|
|
|
## Screenshots and proofs
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/falseaccuse.png">
|
|
</p>
|
|
Ethereal falsely accusing me of ratting people
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/noratong.png">
|
|
</p>
|
|
Proof that i didnt rat the reseller, the person who ratted him admitted it
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/aftercrack.png">
|
|
</p>
|
|
Ethereal falsely accusing me again after releasing the crack
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/proof1.png">
|
|
</p>
|
|
Proof that the version was up to date at the moment of release, comparing it with the latest posted changelog(Read the source of the crack to convince yourself that its no rat too <3)
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/scam.png">
|
|
</p>
|
|
800 dollar scam for protecting a crash
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/humanbasemoment.png">
|
|
</p>
|
|
References to human base in the menu because g3log saves information about files and functions at compile time to generate stacktraces
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/collectedinfo.png">
|
|
</p>
|
|
Collected data by Ethereal
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/usedinfo.png">
|
|
</p>
|
|
Data that is actually used and not just sent to them(computername, volume ids)
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/supportreasons.png">
|
|
</p>
|
|
Jaguar saying that they are collecting this data for "Support reasons"
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/omgitsthemida.png">
|
|
</p>
|
|
Jaguar trying to prove that im using themida to hide something and destroying his own argument with this proof
|
|
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/noknowledge1.jpg">
|
|
</p>
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/noknowledge2.jpg">
|
|
</p>
|
|
<p align="center">
|
|
<img src="https://raw.githubusercontent.com/EinTim23/ethereal-crack/master/imgs/noknowledge3.png">
|
|
</p>
|
|
Jaguar just talking bullshit
|