PS3-
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
Hola amigos otra vez zadow28 dando un poco ma de informacion de la actualizacion firmada::: 
ECHEN UN OJO ES MUY INTERESANTE:::
A invertido parte de la actualización de flash para la cobra dongle.
Podria estar donde lo firme (eboot) la actualización para el dispositivo de seguridad.
creo que es donde el cobraflash.exe firma la actualización eboot para el dongle.QUOTEint __userpurge sub_76EA0B39<eax>(int a1<ebp>, int a2, int a3, int a4, int a5, int a6, int a7, int a8, int a9, int a10, int a11, int a12, int a13)
{
int v13; // edx@1
int v14; // ecx@1
int v15; // ebx@1
int v16; // edi@1
int v17; // edi@13
int v18; // eax@16
int v19; // eax@20
int v20; // eax@21
int v21; // esi@28
int v22; // eax@30
int v23; // esi@34
void **v24; // eax@37
int v25; // eax@39
int v26; // esi@40
int v27; // esi@45
int v29; // eax@90
int v30; // eax@92
int v31; // eax@96
int v32; // eax@97
int v33; // eax@98
int v34; // ecx@110
int v35; // eax@113
int v36; // eax@116
int v37; // eax@117
bool v38; // eax@122
int v39; // ST84_4@122
int v40; // eax@122
int v41; // eax@124
void **v42; // eax@128
int v43; // eax@130
int v44; // eax@147
int v45; // eax@151
int v46; // eax@152
int v47; // eax@153
int *v48; // ecx@161
int *v49; // eax@164
int *v50; // edx@194
int *v51; // ecx@196
int *v52; // eax@199
int v53; // edi@203
int v54; // eax@203
int v55; // eax@215
int v56; // eax@224
void *v57; // ecx@227
int *v58; // esi@229
int *v59; // eax@232
int *v60; // eax@236
char v61; // [sp-B4h] [bp-B4h]@214
char v62; // [sp-98h] [bp-98h]@171
char v63; // [sp-64h] [bp-64h]@103
char v64; // [sp-14h] [bp-14h]@8
sub_76E8964E(dword_76EA1158, 2324);
*(_DWORD *)(a1 - 2220) = *(_DWORD *)(a1 + 16);
*(_DWORD *)(a1 - 2172) = *(_DWORD *)(a1 + 20);
*(_DWORD *)(a1 - 2236) = *(_DWORD *)(a1 + 24);
*(_DWORD *)(a1 - 2232) = *(_DWORD *)(a1 + 28);
v15 = *(_DWORD *)(a1 + 32);
v14 = *(_DWORD *)(a1 + 40);
*(_DWORD *)(a1 - 2184) = v14;
*(_DWORD *)(a1 - 2192) = *(_DWORD *)(a1 + 44);
*(_DWORD *)(a1 - 2200) = *(_DWORD *)(a1 + 48);
v13 = *(_DWORD *)(a1 + 52);
*(_DWORD *)(a1 - 2208) = v13;
*(_DWORD *)(a1 - 2204) = 0;
v16 = *(_DWORD *)(a1 + 36) & 4;
*(_DWORD *)(a1 - 2168) = v16;
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_20000 & *((_DWORD *)off_76F30334 + 7) )
{
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 33, dword_76E8AE68);
v13 = *(_DWORD *)(a1 - 2208);
v14 = *(_DWORD *)(a1 - 2184);
}
}
if ( v14 )
*(_WORD *)v14 = 0;
if ( v13 )
*(_DWORD *)v13 = -2147483648;
if ( setupapi_pSetupGetGlobalFlags() & 0x40 )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_20000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 34, dword_76E8AE68);
}
}
else
{
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, &unk_30005, "{_VERIFY_FILE_SIGNATURE}");
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, 5, (const char *)dword_76EA1128, *(_DWORD *)(a1 - 2236));
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, 5, (const char *)dword_76EA1118, *(_DWORD *)(a1 - 2232));
if ( *(_DWORD *)(a1 - 2172) )
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, 5, "Catalog = %ws", *(_DWORD *)(a1 - 2172));
*(_DWORD *)(a1 - 2224) = -1;
*(_DWORD *)(a1 - 2216) = 0;
*(_DWORD *)(a1 - 2196) = 0;
*(_DWORD *)(a1 - 2176) = 0;
*(_DWORD *)(a1 - 2180) = 0;
*(_DWORD *)(a1 - 2188) = 0;
if ( !v16 )
{
j_msvcrt_memset_2(a1 - 1636, 0, 1088);
*(_DWORD *)(a1 - 1636) = 1088;
}
*(_DWORD *)(a1 - 4) = 0;
if ( setupapi_pSetupGetGlobalFlags() & 0x100 )
{
*(_DWORD *)(a1 - 2164) = -2146762485;
goto LABEL_50;
}
v17 = *(_DWORD *)(a1 - 2220);
if ( v17 && *(_DWORD *)v17 )
{
*(_DWORD *)(a1 - 2176) = *(_DWORD *)v17;
}
else
{
off_76E81150(0);
if ( sub_76E9E7EB(a1 - 2176, &unk_76F30A98, 0) )
v18 = 0;
else
v18 = sub_76E91391();
*(_DWORD *)(a1 - 2164) = v18;
if ( v18 )
{
*(_DWORD *)(a1 - 2176) = 0;
goto LABEL_50;
}
if ( v17 )
*(_DWORD *)v17 = *(_DWORD *)(a1 - 2176);
}
off_76E81150(0);
v19 = off_76E81254(*(_DWORD *)(a1 - 2232), -2147483648, 1, 0, 3, 0, 0);
*(_DWORD *)(a1 - 2224) = v19;
if ( v19 == -1 )
v20 = sub_76E91391();
else
v20 = 0;
*(_DWORD *)(a1 - 2164) = v20;
if ( !v20 )
{
j_msvcrt_memset_2(a1 - 2288, 0, 48);
*(_DWORD *)(a1 - 2288) = 48;
*(_DWORD *)(a1 - 2276) = 2;
*(_DWORD *)(a1 - 2248) = 4224;
if ( !*(_DWORD *)(a1 - 2168) )
{
*(_DWORD *)(a1 - 1624) = 2;
*(_DWORD *)(a1 - 1620) = 6;
if ( v15 )
{
*(_DWORD *)(a1 - 572) = *(_DWORD *)v15;
*(_DWORD *)(a1 - 568) = *(_DWORD *)(v15 + 4);
}
else
{
*(_DWORD *)(a1 - 572) = 5;
*(_DWORD *)(a1 - 568) = 0;
}
*(_DWORD *)(a1 - 564) = 6;
*(_DWORD *)(a1 - 560) = 1;
*(_DWORD *)(a1 - 2284) = a1 - 1636;
*(_DWORD *)(a1 - 2260) = 3;
}
*(_DWORD *)(a1 - 2212) = 100;
while ( 1 )
{
v21 = setupapi_pSetupMalloc(*(_DWORD *)(a1 - 2212));
*(_DWORD *)(a1 - 2216) = v21;
if ( v21 )
{
off_76E81150(0);
if ( sub_76E9E7E0(*(_DWORD *)(a1 - 2224), a1 - 2212, v21, 0) )
v22 = 0;
else
v22 = sub_76E91391();
*(_DWORD *)(a1 - 2164) = v22;
if ( !v22 )
{
*(_DWORD *)(a1 - 2268) = 2;
*(_DWORD *)(a1 - 2264) = a1 - 2324;
memset((void *)(a1 - 2324), 0, 0x24u);
*(_DWORD *)(a1 - 2324) = 36;
*(_DWORD *)(a1 - 2300) = v21;
*(_DWORD *)(a1 - 2296) = *(_DWORD *)(a1 - 2212);
sub_76E91029(a1 - 548, 260, *(_DWORD *)(a1 - 2236));
off_76E81560(a1 - 548);
*(_DWORD *)(a1 - 2312) = a1 - 548;
if ( *(_DWORD *)(a1 - 2172) && *(_DWORD *)(a1 - 2172) != setupapi_pSetupGetFileTitle(*(_DWORD *)(a1 - 2172)) )
{
v23 = *(_DWORD *)(a1 - 2172);
*(_DWORD *)(a1 - 2316) = v23;
if ( *(_DWORD *)(a1 - 2168) )
sub_76E8ADD4();
if ( *(_DWORD *)(a1 - 2184) )
sub_76E91029(*(_DWORD *)(a1 - 2184), 260, v23);
v24 = &off_76F30AA8;
if ( !*(_DWORD *)(a1 - 2168) )
v24 = (void **)&unk_76F30A98;
v25 = sub_76E8AFE9(0, v24, a1 - 2288);
*(_DWORD *)(a1 - 2164) = v25;
if ( !v25 )
{
v26 = *(_DWORD *)(a1 - 2192);
if ( v26 )
sub_76E91029(v26, 260, a1 - 1096);
if ( *(_DWORD *)(a1 - 2200) )
sub_76E91029(*(_DWORD *)(a1 - 2200), 260, a1 - 1616);
if ( *(_DWORD *)(a1 - 2168) )
{
v29 = *(_DWORD *)(a1 - 2208);
if ( v29 )
*(_DWORD *)v29 = 251658240;
v30 = sub_76F1BA51(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
*(_DWORD *)(a1 - 2316),
1,
*(_DWORD *)(a1 - 2220) != 0 ? *(_DWORD *)(a1 - 2220) + 4 : 0,
a1 - 2204);
*(_DWORD *)(a1 - 2188) = v30;
if ( v30 == -536870335 || v30 == -536870334 )
{
if ( v26 )
{
v31 = sub_76F28277(*(_DWORD *)(a1 - 2204));
if ( v31 )
{
v32 = sub_76F28262(v31, 0, 0, 0);
if ( v32 )
{
v33 = sub_76F2824D(v32, 0);
if ( v33 )
off_76F300A8(*(_DWORD *)(v33 + 4), 4, 0, 0, v26, 260);
}
}
}
}
else
{
*(_DWORD *)(a1 - 2164) = v30;
}
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 36, dword_76E8AE68);
}
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
5,
*(_DWORD *)(a1 - 2188),
"Success: File is signed in Authenticode(tm) catalog.",
v63);
}
else
{
v27 = *(_DWORD *)(a1 - 2208);
if ( v27 )
*(_DWORD *)v27 = sub_76E9E636(*(_DWORD *)(a1 - 576)) != 0 ? 218103811 : 218103813;
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 37, dword_76E8AE68);
}
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, 5, "Success: File is signed in catalog.");
}
break;
}
if ( !*(_DWORD *)(a1 - 2168) )
{
if ( *(_DWORD *)(a1 - 2164) == 1151 )
*(_DWORD *)(a1 - 2164) = -536870332;
}
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
{
v34 = (int)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v34 = (int)L"(valid)";
sub_76EDBC09(
*((_DWORD *)off_76F30334 + 4),
*((_DWORD *)off_76F30334 + 5),
38,
dword_76E8AE68,
v34,
*(_DWORD *)(a1 - 2164));
}
}
v35 = (int)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v35 = (int)L"(valid)";
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"Verifying file against specific %ws catalog failed! (0x%08x)",
v35);
LABEL_88:
*(_DWORD *)(a1 - 2196) = 1;
break;
}
*(_DWORD *)(a1 - 2228) = 0;
off_76E81150(0);
v36 = sub_76EAECA7(*(_DWORD *)(a1 - 2176), v21, *(_DWORD *)(a1 - 2212), 0, a1 - 2228);
*(_DWORD *)(a1 - 2180) = v36;
if ( v36 )
v37 = 0;
else
v37 = sub_76E91391();
LABEL_119:
*(_DWORD *)(a1 - 2164) = v37;
if ( !*(_DWORD *)(a1 - 2180) )
{
LABEL_190:
if ( *(_DWORD *)(a1 - 2164) )
{
if ( !*(_DWORD *)(a1 - 2196) )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
{
v50 = *(int **)(a1 - 2172);
if ( !v50 )
v50 = &dword_76EB2DCC;
v51 = (int *)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v51 = &dword_76EB2DCC;
sub_76ED7FE4(
*((_DWORD *)off_76F30334 + 4),
*((_DWORD *)off_76F30334 + 5),
43,
dword_76E8AE68,
v51,
v50);
}
}
v52 = (int *)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v52 = &dword_76EB2DCC;
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"No installed%ws catalogs matching catalog name '%ws' were found that validated the file.",
(char)v52);
*(_DWORD *)(a1 - 2196) = 1;
}
if ( *(_BYTE *)(a1 + 36) & 5 )
{
v53 = 0;
}
else
{
*(_DWORD *)(a1 - 2268) = 1;
*(_DWORD *)(a1 - 2264) = a1 - 2340;
*(_DWORD *)(a1 - 2340) = 0;
*(_DWORD *)(a1 - 2340 + 4) = 0;
*(_DWORD *)(a1 - 2340 + 8) = 0;
*(_DWORD *)(a1 - 2340 + 12) = 0;
*(_DWORD *)(a1 - 2340) = 16;
*(_DWORD *)(a1 - 2336) = *(_DWORD *)(a1 - 2232);
v53 = 0;
v54 = sub_76E8AFE9(0, &unk_76F30A98, a1 - 2288);
*(_DWORD *)(a1 - 2164) = v54;
if ( !v54 )
{
if ( *(_DWORD *)(a1 - 2192) )
sub_76E91029(*(_DWORD *)(a1 - 2192), 260, a1 - 1096);
if ( *(_DWORD *)(a1 - 2200) )
sub_76E91029(*(_DWORD *)(a1 - 2200), 260, a1 - 1616);
}
if ( *(_DWORD *)(a1 - 576) )
{
off_76F300C0(*(_DWORD *)(a1 - 576));
*(_DWORD *)(a1 - 576) = 0;
}
if ( *(_DWORD *)(a1 - 2164) )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 44, dword_76E8AE68);
}
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"Verifying file as self-signed failed.",
v61);
*(_DWORD *)(a1 - 2196) = 1;
}
else
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 45, dword_76E8AE68);
}
sub_76E8C810(*(_DWORD *)(a1 + 8), *(_DWORD *)(a1 + 12), 32, 5, "Success: File is self-signed.");
}
}
if ( *(_DWORD *)(a1 - 2164) == v53 )
{
v56 = *(_DWORD *)(a1 - 2184);
if ( v56 != v53 )
*(_WORD *)v56 = 0;
}
}
break;
}
*(_DWORD *)(a1 - 2160) = 524;
if ( sub_76EAECBC(*(_DWORD *)(a1 - 2180), a1 - 2160, 0) )
{
if ( *(_DWORD *)(a1 - 2172) )
{
v39 = *(_DWORD *)(a1 - 2172);
v40 = setupapi_pSetupGetFileTitle(a1 - 2156);
v38 = off_76E81234(v40, v39) == 0;
}
else
{
v38 = *(_BYTE *)(a1 + 36) & 2 || (v41 = setupapi_pSetupGetFileTitle(a1 - 2156), !sub_76F1B129(v41, 1));
}
if ( v38 )
{
*(_DWORD *)(a1 - 2316) = a1 - 2156;
v42 = &off_76F30AA8;
if ( !*(_DWORD *)(a1 - 2168) )
v42 = (void **)&unk_76F30A98;
v43 = sub_76E8AFE9(0, v42, a1 - 2288);
*(_DWORD *)(a1 - 2164) = v43;
if ( v43 )
{
if ( !*(_DWORD *)(a1 - 2168) )
{
if ( v43 == 1151 )
{
if ( *(_DWORD *)(a1 - 576) )
off_76F300C0(*(_DWORD *)(a1 - 576));
j_msvcrt_memset_2(a1 - 1636, 0, 1088);
*(_DWORD *)(a1 - 1636) = 1088;
*(_DWORD *)(a1 - 2248) &= 0xFFFFFBFFu;
if ( !sub_76E8AFE9(0, &unk_76F30A98, a1 - 2288) )
*(_DWORD *)(a1 - 2164) = -536870332;
}
}
}
else
{
if ( *(_DWORD *)(a1 - 2192) )
sub_76E91029(*(_DWORD *)(a1 - 2192), 260, a1 - 1096);
if ( *(_DWORD *)(a1 - 2200) )
sub_76E91029(*(_DWORD *)(a1 - 2200), 260, a1 - 1616);
if ( *(_DWORD *)(a1 - 2208) )
{
if ( *(_DWORD *)(a1 - 2168) )
**(_DWORD **)(a1 - 2208) = 251658240;
else
**(_DWORD **)(a1 - 2208) = sub_76E9E636(*(_DWORD *)(a1 - 576)) != 0 ? 218103811 : 218103813;
}
}
if ( *(_DWORD *)(a1 - 2164) )
{
LABEL_155:
if ( !*(_DWORD *)(a1 - 2168) )
goto LABEL_156;
}
else
{
if ( *(_DWORD *)(a1 - 2168) )
{
v44 = sub_76F1BA51(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
*(_DWORD *)(a1 - 2316),
1,
*(_DWORD *)(a1 - 2220) != 0 ? *(_DWORD *)(a1 - 2220) + 4 : 0,
a1 - 2204);
*(_DWORD *)(a1 - 2188) = v44;
if ( v44 == -536870335 || v44 == -536870334 )
{
if ( *(_DWORD *)(a1 - 2192) )
{
v45 = sub_76F28277(*(_DWORD *)(a1 - 2204));
if ( v45 )
{
v46 = sub_76F28262(v45, 0, 0, 0);
if ( v46 )
{
v47 = sub_76F2824D(v46, 0);
if ( v47 )
off_76F300A8(*(_DWORD *)(v47 + 4), 4, 0, 0, *(_DWORD *)(a1 - 2192), 260);
}
}
}
}
else
{
*(_DWORD *)(a1 - 2164) = v44;
}
goto LABEL_155;
}
LABEL_156:
if ( *(_DWORD *)(a1 - 576) )
{
off_76F300C0(*(_DWORD *)(a1 - 576));
*(_DWORD *)(a1 - 576) = 0;
}
}
if ( *(_DWORD *)(a1 - 2164) )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
{
v48 = (int *)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v48 = &dword_76EB2DCC;
sub_76ED7FE4(
*((_DWORD *)off_76F30334 + 4),
*((_DWORD *)off_76F30334 + 5),
39,
dword_76E8AE68,
v48,
a1 - 2156);
}
}
v49 = (int *)L"Authenticode(tm)";
if ( !*(_DWORD *)(a1 - 2168) )
v49 = &dword_76EB2DCC;
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"Verifying against an installed%ws catalog '%ws' failed.",
(char)v49);
*(_DWORD *)(a1 - 2196) = 1;
}
else
{
if ( *(_DWORD *)(a1 - 2168) )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 40, dword_76E8AE68);
}
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
5,
*(_DWORD *)(a1 - 2188),
"Success: A valid signature was found in an installed Authenticode(tm) catalog",
v62);
}
else
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 41, dword_76E8AE68);
}
sub_76E8C810(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
5,
"Success: A valid signature was found in an installed catalog");
}
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_40000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7F77(
*((_DWORD *)off_76F30334 + 4),
*((_DWORD *)off_76F30334 + 5),
42,
dword_76E8AE68,
a1 - 2156);
}
sub_76E8C810(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
5,
(const char *)dword_76ED03D4,
a1 - 2156);
}
if ( *(_DWORD *)(a1 - 2164) )
{
if ( !*(_DWORD *)(a1 - 2172) || !*(_DWORD *)(a1 - 2184) || *(_DWORD *)(a1 - 2164) != -536870332 )
goto LABEL_187;
}
else
{
if ( !*(_DWORD *)(a1 - 2184) )
{
LABEL_187:
if ( !*(_DWORD *)(a1 - 2164) || *(_DWORD *)(a1 - 2172) )
{
sub_76E9F233(*(_DWORD *)(a1 - 2176), *(_DWORD *)(a1 - 2180), 0);
*(_DWORD *)(a1 - 2180) = 0;
goto LABEL_190;
}
goto LABEL_215;
}
}
sub_76E91029(*(_DWORD *)(a1 - 2184), 260, a1 - 2156);
goto LABEL_187;
}
}
LABEL_215:
*(_DWORD *)(a1 - 2228) = *(_DWORD *)(a1 - 2180);
off_76E81150(0);
v55 = sub_76EAECA7(*(_DWORD *)(a1 - 2176), *(_DWORD *)(a1 - 2216), *(_DWORD *)(a1 - 2212), 0, a1 - 2228);
*(_DWORD *)(a1 - 2180) = v55;
if ( v55 )
v37 = 0;
else
v37 = sub_76E91391();
goto LABEL_119;
}
}
else
{
*(_DWORD *)(a1 - 2164) = 8;
}
if ( v21 )
{
setupapi_pSetupFree(v21);
*(_DWORD *)(a1 - 2216) = 0;
}
if ( *(_DWORD *)(a1 - 2164) != 122 )
{
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 35, dword_76E8AE68);
}
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"Unable to create hash for file!",
v64);
goto LABEL_88;
}
}
}
LABEL_50:
*(_DWORD *)(a1 - 4) = -2;
if ( *(_DWORD *)(a1 - 2164) )
{
if ( !*(_DWORD *)(a1 - 2196) )
{
v57 = off_76F30334;
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&byte_10000 & *((_DWORD *)off_76F30334 + 7) )
{
v58 = (int *)L" using Authenticode(tm) policy";
if ( !*(_DWORD *)(a1 - 2168) )
v58 = &dword_76EB2DCC;
if ( *(_DWORD *)(a1 - 2172) )
{
v59 = (int *)setupapi_pSetupGetFileTitle(*(_DWORD *)(a1 - 2172));
v57 = off_76F30334;
}
else
{
v59 = &dword_76EB2DCC;
}
sub_76ED7FE4(*((_DWORD *)v57 + 4), *((_DWORD *)v57 + 5), 46, dword_76E8AE68, v59, v58);
}
}
if ( *(_DWORD *)(a1 - 2172) )
LOBYTE(v60) = setupapi_pSetupGetFileTitle(*(_DWORD *)(a1 - 2172));
else
v60 = &dword_76EB2DCC;
sub_76F25509(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
2,
*(_DWORD *)(a1 - 2164),
"Verifying file against catalog '%ws'%ws failed.",
(char)v60);
}
}
else
{
*(_DWORD *)(a1 - 2164) = *(_DWORD *)(a1 - 2188);
}
if ( *(_DWORD *)(a1 - 2204) )
sub_76F1B26D(*(_DWORD *)(a1 - 2204));
if ( *(_DWORD *)(a1 - 2224) != -1 )
off_76E8125C(*(_DWORD *)(a1 - 2224));
if ( *(_DWORD *)(a1 - 2216) )
setupapi_pSetupFree(*(_DWORD *)(a1 - 2216));
if ( !*(_DWORD *)(a1 - 2168) )
{
if ( *(_DWORD *)(a1 - 576) )
off_76F300C0(*(_DWORD *)(a1 - 576));
}
if ( *(_DWORD *)(a1 - 2180) )
sub_76E9F233(*(_DWORD *)(a1 - 2176), *(_DWORD *)(a1 - 2180), 0);
if ( !*(_DWORD *)(a1 - 2220) )
{
if ( *(_DWORD *)(a1 - 2176) )
sub_76E9D948(*(_DWORD *)(a1 - 2176), 0);
}
sub_76E8C810(
*(_DWORD *)(a1 + 8),
*(_DWORD *)(a1 + 12),
32,
327685,
"{_VERIFY_FILE_SIGNATURE exit(0x%08x)}",
*(_DWORD *)(a1 - 2164));
if ( off_76F30334 != &off_76F30334 )
{
if ( (unsigned int)&unk_20000 & *((_DWORD *)off_76F30334 + 7) )
sub_76ED7BD9(*((_DWORD *)off_76F30334 + 4), *((_DWORD *)off_76F30334 + 5), 47, dword_76E8AE68);
}
}
return sub_76E89696();
}
Un saludo esperamos mas info.
gracias
fuente zadow28 via twitter
Edited by Zrandi - 5/5/2012, 14:36. -
josiko12.
User deleted
parece buena informacion pero ke es eso de playstationnetworklink . -
doctor_m.
User deleted
the playstation video have nothing to do with this.
this is the cobraflash.exe thats use for updating the firmware for the dongle.. -
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
you are the creator of the charges?
that core?
zadow28 you?. -
josiko12.
User deleted
no jodas zadow 28 eres tu doctor_m . -
doctor_m.
User deleted
si 
Dint now friend from enemy so registert under other alias.
regards. -
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
Here you can put your progress and achievements.
if you need help do not hesitate to contact.
greetings and thanks for your confidence.
. -
doctor_m.
User deleted
thx . -
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
cobraflhas new??? . -
doctor_m.
User deleted
have fakes the upgrade packege that writes the firmware to the dongle, so the upgrade is looking for the usb busses.
www.youtube.com/watch?feature=player_embedded&v=XPIht6_o4yw
still looking .
just wanted to share
. -
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
ok, thank you very much, I also look a lot hehe. 
greetings
. -
doctor_m.
User deleted
here is some info of how to use the plugin i uses.
its brilliant http://marcoramilli.blogspot.com/2012/02/n...ct-packers.html. -
.
Lo que empiezo, lo termino.
- Group
- FUNDaDoR
- Posts
- 12,533
- Location
- En algún lugar del Espacio
- Status
- Offline
WAU!
I look at it.
packaging looks very interesting tool.
cobraflash_sign_file by zadow28 |