yowave
How do I cheat?
![]() Reputation: 0
Joined: 23 Jan 2024
Posts: 1
|
 Posted: Fri Jan 26, 2024 6:48 am Post subject: mov [p1],rax - p1 is not equal to rax |
 |
|
Hey there,
I searched for a value and then tried to find what access it which brought me to the info provided in the attachment.
Then i went and tried to do an AOB script to get the address info of rax and rcx.
From the attachment you can see the addresses of the various registers and the value address:
1. RAX: 4E0
2. RCX: 1558FC03000
3. value: 1558FC03518
My issue as you can see from my attachment is that RAX is not 4E0.
What am I doing wrong, and how to fix this?
This is my AOB script:
| Code: | [ENABLE]
aobscanmodule(INJECT,GameAssembly.dll,0F 10 44 08 30 B0) // should be unique
alloc(newmem,$1000,INJECT)
label(code)
label(return)
alloc(p1,8,INJECT)
alloc(p2,8,INJECT)
registersymbol(INJECT p1 p2)
newmem:
mov [p1],rax
mov [p2],rcx
code:
movups xmm0,[rax+rcx+30]
jmp return
INJECT:
jmp newmem
return:
[DISABLE]
INJECT:
db 0F 10 44 08 30
unregistersymbol(*)
dealloc(*)
{
// ORIGINAL CODE - INJECTION POINT: GameAssembly.dll+1421DBC
GameAssembly.dll+1421DA1: 5F - pop rdi
GameAssembly.dll+1421DA2: C3 - ret
GameAssembly.dll+1421DA3: 48 8B 4B 18 - mov rcx,[rbx+18]
GameAssembly.dll+1421DA7: 48 85 C9 - test rcx,rcx
GameAssembly.dll+1421DAA: 74 20 - je GameAssembly.dll+1421DCC
GameAssembly.dll+1421DAC: 48 98 - cdqe
GameAssembly.dll+1421DAE: 3B 41 18 - cmp eax,[rcx+18]
GameAssembly.dll+1421DB1: 73 1F - jae GameAssembly.dll+1421DD2
GameAssembly.dll+1421DB3: 48 8B 5C 24 30 - mov rbx,[rsp+30]
GameAssembly.dll+1421DB8: 48 C1 E0 05 - shl rax,05
// ---------- INJECTING HERE ----------
GameAssembly.dll+1421DBC: 0F 10 44 08 30 - movups xmm0,[rax+rcx+30]
// ---------- DONE INJECTING ----------
GameAssembly.dll+1421DC1: B0 01 - mov al,01
GameAssembly.dll+1421DC3: 0F 11 07 - movups [rdi],xmm0
GameAssembly.dll+1421DC6: 48 83 C4 20 - add rsp,20
GameAssembly.dll+1421DCA: 5F - pop rdi
GameAssembly.dll+1421DCB: C3 - ret
GameAssembly.dll+1421DCC: E8 7F 41 EE FE - call GameAssembly.dll+305F50
GameAssembly.dll+1421DD1: CC - int 3
GameAssembly.dll+1421DD2: E8 A9 3D EE FE - call GameAssembly.dll+305B80
GameAssembly.dll+1421DD7: 48 8B C8 - mov rcx,rax
GameAssembly.dll+1421DDA: 33 D2 - xor edx,edx
}
|
| Description: |
|
| Filesize: |
46.43 KB |
| Viewed: |
1478 Time(s) |
|
|
|
ParkourPenguin
I post too much
 Reputation: 150
Joined: 06 Jul 2014
Posts: 4659
|
| Posted: Fri Jan 26, 2024 12:14 pm Post subject: |
|
|
Right click that instruction and see if it accesses more than one address. If it does, see step 9 of the CE tutorial. There are several videos and other guides online that will walk you through it.
_________________
I don't know where I'm going, but I'll figure it out when I get there. |
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
