Shulou(Shulou.com)06/03 Report--

This article mainly introduces "how to use Wechat local database to obtain key". In daily operation, I believe many people have doubts about how to use Wechat local database to obtain key. The editor consulted all kinds of materials and sorted out a simple and easy-to-use operation method. I hope it will be helpful to answer the doubt of "how to use Wechat local database to obtain key". Next, please follow the editor to study!

How to find the key of the local database of PC Wechat, we know that the database used by Wechat is sqlite3, and then the database is encrypted by aes, we need to find the key of aes before we can decrypt it, and then carry out database operations. The idea is that when Wechat logs in, he definitely needs to open and read the local database, if not read, how does he display the data? there is an api function called CreateFile, which is a multi-function function that can open or create files or Icano devices and return accessible handles: console, communication resources, directories (read-only open), disk drives, files, pipes. Then we first open OD, attach Wechat, and then search the function. There are two versions of this CreateFile, one is A, the other is W, and Wechat is W.

Do not log in to Wechat at first, then drop the breakpoint, then confirm the login, and then see that it has been cut off.

Then look for the information at the end of db, if not, put it over the breakpoint and keep looking. After finding it, run it step by step, and then he decrypts the function with at least two parameters or more, one is the database path and the other is the key. His key is 32-bit, so the conversion to hexadecimal is 20. After finding it, we record the address of the key and use CE to find the base address.

Then re-login, cut off in the place just marked, and then copy the key found is exactly the same as the last breakpoint found, indicating that it should be. Then use this key to decrypt the database, which is successful.

At present, most of the functions have been achieved, and the operation is stable, such as sending all kinds of messages, receiving all kinds of messages, group management, downloading files, adding friends, detecting zombie powder and so on, which can provide interfaces to facilitate secondary development and welcome technical exchanges.

At this point, the study on "how to use Wechat local database to get the key" is over. I hope to be able to solve your doubts. The collocation of theory and practice can better help you learn, go and try it! If you want to continue to learn more related knowledge, please continue to follow the website, the editor will continue to work hard to bring you more practical articles!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.