QUICK AND DIRTY WAY TO PATCH SILKROAD MULTICLIENT Author: superkhung 4VN Group, VNSecurity Greetings: Mikado 4VN

VN Group, VNSecurity Rd_ - VNSecurity, THC, HERT ComputerAngel 4VN Group, REAOnline Lanlv 4VN Group BlueMood 4VN Group Dx 4VN Group JunBaJo 4VN Group Tools: OllyDBG http://www.ollydbg.de/ Notice: Make sure you have a backup version for files that you want to patch.

1. Patch sro_client.exe:
Run OllyDBG, load sro_client into Olly:

Right-click on CPU window, choose Search for/All referenced text strings

Scroll up to top line, right-click and choose Search for text

Uncheck Case sensitive and type in Silkroad.exe then click Ok

You will land here

Double-click on the line that have string "Please Execute the "Silkroad.exe."" You will land here

Look a few line upper, you will see a condition jump: 006D445C |. /75 1F JNZ SHORT SRO_Clie.006D447D

Double-click on this line and change JNZ to JMP then click Assemble to change

The code is now look like this

Now scroll up abit and you will see another check

Theres another condition jump here: 006D43F0 |. /75 47 JNZ SHORT SRO_Clie.006D4439

Double-click on this line and change JNZ to JMP then click Assemble again

Now lets search for the last check.

Go back to the Referenced text strings window and search for text Silkroad (Make sure youve checked Case sensitive in this search)

Press Ok then keep pressing Alt+L until you land here

Double click on the line that have string Silkroad, you will land here

Look at few lines above, you will see another condition jump: 006E506E |. /75 6B JNZ SHORT SRO_Clie.006E50DB

Double-click on this line and change JNZ to JMP then click Assemble

The code is now look like this

Now youve patched all the check in sro_client, lets save it now Right-click on CPU window, choose Copy to executable/All modifications

Click Copy all button

Another dialog like this will appear

Right-click in this dialog and choose Save file

Now type in filename you want to write (Default will be sro_client.exe), click Save and choose Yes to overwrite it. (You can save in anothername if you want) Now all the work for sro_client.exe is now finish. Lets do the second part for Silkroad.exe now

2.Patch Silkroad.exe:
Load Silkroad.exe into Olly and Search for this referenced text strings: Silkroad is already executed!!

You will land here

Double-click on this line and you will land here in CPU window

You see that theres 2 check here, the first one is check for running sro_client.exe and the second one is check for Silkroad.exe. You just need to patch for the first one (the second one mean nothing cuz you dont mind to run 2 Silkroad.exe :-D ) Patch this condition: 00437AF0 . /75 5E JNZ SHORT silkroad.00437B50

Double-click on this line and change JNZ to JMP then press Assemble

Now save your work by right-click in CPU window, choose Copy to executable/All modifications, click Copy all An dialog will pop-up again, right-click in it and choose Save file Leave the default value here (Silkroad.exe), click Save then Yes to overwrite it. CongratZ, all your work for Silkroad multi-client is now finish. You can run it to test your work now. 3.My last words: I wrote this tutorials for ppls who need to make a multi-client by themselves but dont know how to debug a binary or just start to learn debugging. This tutorial is just a blind step-by-step guide on how to make Silkroad multi-client patch. I didnt explain in each step and asm code, if you can follow and success but dont understand how it work, try to Google and learn it by yourself. Happy cracking ! The 4VN Group.