I have progressed a bit:
We could use mChicheReplay which works fine but is very bloated and only runs on Windows. I've already tried Mono and Wine. Nothing worked.
But I could get useful information through disassembling the binary. (although I didn't get any code only function names and a few variables)
wget
http://www.m6replay.fr/catalogue/catalogueWeb4.xml
base64 -d catalogueWeb4.xml > out
From mChicheReplay.exe.config:
Code:
<setting name="K1" serializeAs="String">
<value>ODdKR0gxa09KZ2hrajA3NzdiajMyNlBvVmhn</value>
</setting>
<setting name="K2" serializeAs="String">
<value>RWxGc2cuT3Q=</value>
</setting>
$ echo ODdKR0gxa09KZ2hrajA3NzdiajMyNlBvVmhn | base64 -d
87JGH1kOJghkj0777bj326PoVhg
$ echo RWxGc2cuT3Q= | base64 -d
ElFsg.Ot
The crypto algorithm for the XML file is Blowfish ECB.
$ openssl bf-ecb -d -in out -out out.dec
I tried both keys, none of them worked.
The developer also included swfmill, no idea why. Perhaps K1 and K2 are updated regularly and these values are hidden somewhere within it.
Hints and suggestions are appreciated. I've now spent over two hours and did not really get further. Thanks!