Cheat Engine

[Chuy]

This is what I'm doing:

1. Find address of price, 55504680.
2. Find out what accesses this address, 5550465C+24.
3. Search for value 5550465C.
4. Get address 481040BC.
5. Add address manually, 481040BC + 24.
6. Pointer is pointing to 55504680.
7. Find out what accesses that pointer, 481040B8+04, 5550465C+04.

8. Search for value 481040B8.
9. Get address 0553FA88.
10. Add pointer, 0553FA88 + 04.
11. Pointer is pointing to 55504680.

12. Search for value 5550465C.
13. Get address 481040BC.
14. Add pointer, 481040BC + 04.
15. Pointer is pointing to 00000025, unknown value.

16. Find out what accesses 0553FA88 + 04, which is 481040B8 + 54, 0553FA88 + 00, 556C4EEC + 00.

17. Search for value 481040B8.
18. Get address 0553FA88.
19. Add Pointer, 0553FA88 + 54.
20. Pointer is pointing to 00000025, unknown value.

21. Search for value 0553FA88.
22. No addresses found.

23. Search for value 556C4EEC.
24. No addresses found.

And I get stuck and don't know what to do. Any help?

[CouLomB]

Just in Step2 start with what writes to this adress then after go on with what access to this adress.

[Chuy]

@CouLomB, I did what you said and the same thing happened, just as I thought.

Any other suggestions or ideas?

[Recifense]

Hi Chuy,

Just for my understanding. Have you split the search into tow parts (step 7-8 and 7-12) or those steps are the real sequence?

Cheers!

[Chuy]

[Recifense]

I noticed that everything went right following steps 7-11-16. From that point on you have check the instruction that are are executed before each code you have found. There are some instruction like LEA or ADD that can be used to change base address of a structure. When that happens, it is very difficult to find the static address (and I guess that´s the one you looking for).

Cheers!