Well... I tried sending a pm and emailing mods, but the forum has rejected me on both tries. I am guessing it has to do with my post count.
I would appreciate it if someone would tell me what is going on here, what I have tried so far has not worked so I wouldn't count it as a spoiler and since the mission is broken anyway... Meh.. If a mod sees this and decides its too spoilery I would have then gotten in contact with the mods so mission accomplished, feel free to delete the entire post.
I am pretty new to trying to hack an application. I understand some of the basics and I have access to a couple of tools.
I ran up against the hanging on "Reading Data" thing. I think I could do this mission if it worked properly.
I did a hexdump and found the url it sends its request to, then I made hackmysite.org point to my localhost and set up an auth.php that always echoed "true".
This would solve the mission if it worked as it was supposed to, right? (if so can a mod pm me the password?
Running wget https://hackthissite.org/blah
returned saying something about the certificates not matching up, so I thought maybe the app recognizes this as well. I used vim and edited the exe and changed the instances of "hackthissite.org" to "localhost". This messed up the exe and it didn't run anymore. Figuring it probably offset some data and ruined the program I tried it again but changed to "123456.localhost", a string of the same length. This seemed to work and the program ran, but hung on "Reading Data" again. I checked my access.log and my server never even received a request from the program.
I don't really care about the points too much, but reading through the thread it seems that despite this, some people have still been able to extract the password from it.
What I would love is for someone to explain to me how they did this, and why it worked. I want to understand the workings of it. I've opened the program in OllyDbg, but I don't understand how this is helpful at all. I don't know how to manipulate assembly to actually do anything (I've written programs in assembly for 16-bit and 8-bit processors, but I have no idea how to do anything with it on an actual 32 or 64-bit computer).