Unity FurryVNE [2024-11-09] [FurryVNE Team]

3.90 star(s) 9 Votes
Discussion Reviews (9)
npomme

npomme

Member
Nov 20, 2020
431
666
SodaSoda said:
What has your process been? I've extracted some info to deobfuscate the functions in IDA and I've gotten promising results, I'll look more into it tomorrow.
Click to expand...
i used IL2CPPDumper to get metada and struct used the py script in my ida but that is the easy part i dont think i need tu make a tutorial for that ;p



then i made a 404 auto responder with fiddle and identified a function that has 2 UnitiWebRequest check the first verify if the status is 200 and the seconds verify if the status isnt 403 then i used Fiddler and created an autoresponder on the Yl2Cloud/verify to respond always 200 to these request an located an other function that wasnt called before "YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH" this function is doing some ciphering also taking password, key and some data from the previous request i tryed to bypass this by i dont know how much try and methods but alway get to crash or new error some related to empty variable inside arrays other because array seem to go out of bound so are cbc error wich are all handled thats what i find very strange and also i'm a bit worried that there some encryption going on the game file as the a direct check for !decrypted 1707713348835.png
that go to some error handeling

i also tried to be more violent an directly replace the jumpcall by the switch the the skytemple scene but go exactly the same behavior as the one you get with unity explorer when manually switching the scene also good to note that when you do that unity explorer error out some missing files

and also i was tired that the code jumped in all the direction so i have breakpoint all the function and just numbered them so now i dont need to run the program to know when and were they are called but this only helped to locate YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH after this i got stuck because it seem that the last call that is interesing after diving into garbage generated by bee and getting back to the login screen wich restart the loop or if you patch YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH create new error that sometimes i find funny

if you figure this out you nee to explain to me because i'm so frustrated right now i want to understand what i'm missing because i know i'm close to find the solution or the thing that said uncrackable because need some complicated backend or donwload file from authentified server
 
Depesonalization

Depesonalization

Member
Jun 4, 2019
149
242
npomme said:
i used IL2CPPDumper to get metada and struct used the py script in my ida but that is the easy part i dont think i need tu make a tutorial for that ;p



then i made a 404 auto responder with fiddle and identified a function that has 2 UnitiWebRequest check the first verify if the status is 200 and the seconds verify if the status isnt 403 then i used Fiddler and created an autoresponder on the Yl2Cloud/verify to respond always 200 to these request an located an other function that wasnt called before "YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH" this function is doing some ciphering also taking password, key and some data from the previous request i tryed to bypass this by i dont know how much try and methods but alway get to crash or new error some related to empty variable inside arrays other because array seem to go out of bound so are cbc error wich are all handled thats what i find very strange and also i'm a bit worried that there some encryption going on the game file as the a direct check for !decrypted View attachment 3347658
that go to some error handeling

i also tried to be more violent an directly replace the jumpcall by the switch the the skytemple scene but go exactly the same behavior as the one you get with unity explorer when manually switching the scene also good to note that when you do that unity explorer error out some missing files

and also i was tired that the code jumped in all the direction so i have breakpoint all the function and just numbered them so now i dont need to run the program to know when and were they are called but this only helped to locate YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH after this i got stuck because it seem that the last call that is interesing after diving into garbage generated by bee and getting back to the login screen wich restart the loop or if you patch YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH create new error that sometimes i find funny

if you figure this out you nee to explain to me because i'm so frustrated right now i want to understand what i'm missing because i know i'm close to find the solution or the thing that said uncrackable because need some complicated backend or donwload file from authentified server
Click to expand...
Remember my friend. Nothing is uncrackable ;)
 
npomme

npomme

Member
Nov 20, 2020
431
666
Depesonalization said:
Remember my friend. Nothing is uncrackable ;)
Click to expand...
Yeah but sometimes there system that need so much work thats not worth it or like denuvo that need total genius to hack it the kind of genius that is not that common i doubt that this is one of these case i think i'm missing something and i really want someone to slap it in my face :ROFLMAO: because i'm frustrated like crazy
 
  • Like
Reactions: aknomas
Placebo00

Placebo00

Member
Jan 3, 2019
283
250
Man, they certainly took their time. And oh, look, it's DRM'd to hell and back, precisely by the time the animtools is out.

Called it, didnt i? Like, years ago...

Best of luck npomme, and others. This'll be a constant fight between the devs, and dudes trying to crack down on the system, im guessing. It'll be a while until then...I highly doubt the devs would let up at any point, by this stage
 
  • Like
Reactions: aknomas, tester72 and The Name 2nd
Roshag

Roshag

Member
Jul 30, 2017
148
262
npomme said:
i used IL2CPPDumper to get metada and struct used the py script in my ida but that is the easy part i dont think i need tu make a tutorial for that ;p



then i made a 404 auto responder with fiddle and identified a function that has 2 UnitiWebRequest check the first verify if the status is 200 and the seconds verify if the status isnt 403 then i used Fiddler and created an autoresponder on the Yl2Cloud/verify to respond always 200 to these request an located an other function that wasnt called before "YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH" this function is doing some ciphering also taking password, key and some data from the previous request i tryed to bypass this by i dont know how much try and methods but alway get to crash or new error some related to empty variable inside arrays other because array seem to go out of bound so are cbc error wich are all handled thats what i find very strange and also i'm a bit worried that there some encryption going on the game file as the a direct check for !decrypted View attachment 3347658
that go to some error handeling

i also tried to be more violent an directly replace the jumpcall by the switch the the skytemple scene but go exactly the same behavior as the one you get with unity explorer when manually switching the scene also good to note that when you do that unity explorer error out some missing files

and also i was tired that the code jumped in all the direction so i have breakpoint all the function and just numbered them so now i dont need to run the program to know when and were they are called but this only helped to locate YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH after this i got stuck because it seem that the last call that is interesing after diving into garbage generated by bee and getting back to the login screen wich restart the loop or if you patch YL2_Verification_Verify_JGOEKHJEBJM__IBJJHCBJNCH create new error that sometimes i find funny

if you figure this out you nee to explain to me because i'm so frustrated right now i want to understand what i'm missing because i know i'm close to find the solution or the thing that said uncrackable because need some complicated backend or donwload file from authentified server
Click to expand...
check AppData\LocalLow\FurryVNE Team\FurryVNE\player.log if you haven't. It says that some asset bundle is missing.
 
G_777888999000

G_777888999000

Newbie
Mar 1, 2020
88
82
It would be better if you released the game in Steam in the future, but the developers are not sure about this, so the game will have the same fate as Virt-A-Mate, since it was deleted almost immediately after its launch.
 
npomme

npomme

Member
Nov 20, 2020
431
666
Depesonalization said:
Yeah but I think there are many tools like this, and even if one would download it and try to "de-obfuscate" it, you'd still need a unique "key" to fix all that gumbled mess.
Click to expand...
yeah but i can confirm it's beebyte there is some leftovers inside the code and you can find a path to a librairy folder called Bee

1707776356272.png

So yeah we assumed it was bee because it was similar to what beebyte do but now its confirmed and there is no real deobfuscator for beebyte at least for my knowledge all the one that are on git are way to old
 
KL-001-A

KL-001-A

Active Member
Dec 16, 2019
524
1,013
I still don't understand how some devs can get away with "MMO sub" amounts of money for their Patreons though. Like bro, there's not enough of a reason to spend $144 a year on something this early in development with no demo and so little to do yet, it's basically just a character creator with a basic animation system slapped on top that they expect you to blindly toss money at.
If I wanted to spend $144 a year on something, I'd buy a gym sub and go get ripped.

They could at least throw a trial somewhere so we can test if we like it or if our PCs can run it.
My guess is they hired a bunch of staff members and now they have to fund the whole team, which adds up pretty quick.

EDIT: you also can't even comment on the public posts without a sub. Silly.
 
  • Like
Reactions: Peacefeel, The Name 2nd, DwingF9 and 2 others
B

BrandenUS

Newbie
Aug 3, 2019
92
86
so for what i can get you need an account to play it now? or is it because you guys want to get access to the scenes and chars of other people? cause i saw a guy that posted the patreon build but didnt download it yet to find out what it contains.
 
You must log in or register to reply here.
Top Bottom
3.90 star(s) 9 Votes