![]() Then output encrypted public key with format "%s%d%s%d%s". But char strings and immediate values are highly possible to be found.Īt file offset +0x01A12090 in libcc.dll, stored as char string: "D75125B70767B94145B47C1CB3C0755EĪt file offset +0x0059D799 in libcc.dll, stored as immediate value in a instruction: 0xFE 0圎A 0xBC 0x01Īt file offset +0x01A11DA0 in libcc.dll, stored as char string: "E1CED09B9C2186BF71A70C0FE2F1E0AEĪt file offset +0x0059D77F in libcc.dll, stored as immediate value in a instruction: 0x59 0x08 0x01 0x00Īt file offset + 0x1A11D8C in libcc.dll, stored as char string: "92933" ![]() I DO NOT guarantee that offset values are absolutely correct in other versions. ![]() The following content is discovered from libcc.dll of Navicat Premium 圆4 12.0.25 Simplified Chinese version. To avoid being replaced easily, the public key is split into 5 parts: Instead, the public key is stored in libcc.dll and has been encrypted. Start from Navicat Premium 12.0.25, Navicat do not load this public key from resource in navicat.exe. I would be very appreciated for your generous. If you have the corresponding private key, you can tell me. WPH6rvChGl1IRKrxMtqLielsvajUjyrgOC6NmymYMvZNER3htFEtL1eQbCyTfDmt R0QgZFbRnU0frj34fiVmgYiLuZSAmIbs8ZxiHPdp1oD4tUpvsFci4QJtYNjNnGU2 QdW9M2dIdh3jG9yPcmLnmJiGpBF4E9VHSMGe8oPAy2kJDmdNt4BcEygvssEfginvĪ5t5jm352UAoDosUJkTXGQhpAWMF4fBmBpO3EedG62rOsqMBgmSdAyxCSPBRJIOF MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1dqF3SkCaAAmMzs889I ![]() You can see it by a software called Resource Hacker. It is stored in navicat.exe as a kind of resource called RCData. It is a RSA-2048 public key that Navicat used to encrypt or decrypt offline activation information.
0 Comments
Leave a Reply. |