a project to show how to crack a alpharom protected game
check test/quick-start
first we need to know the game that protected by alpharom uses themida protection, at game's exe startup use winapi VirtualAlloc to allocate memory used to load a dll from memory instead of loading from dll file, and this dll named sarcheck.dll. alpharom's validation algorithm is placed in sarcheck.dll, so alpharom is actually a dll named sarcheck.dll, the reason why we don't see sarcheck.dll file in game directory is because it's using themida to bind the dll in to game's exe and load this dll at startup from memory.
So if we can prevent the loading of sarcheck.dll we can bypass alpharom,or just modify the dll to disable alpharom's checker.
Run game.exe with compiled version.dll
, then use Magicmida to unpack the execuatable.
Example video
- Optional: You can shrink the executable back to smaller size after unpacking.
- パサージュ! ~passage of life~
- Kajiri Kamui Kagura Akebono no Hikari
- Aonatsu Line