 |
Cheat Engine
The Official Site of Cheat Engine
|
| View previous topic :: View next topic |
| Author |
Message |
AngelPearl
Newbie cheater
![]() Reputation: 0
Joined: 08 Nov 2013
Posts: 20
|
 Posted: Fri Nov 22, 2013 8:38 am Post subject: [Request] Tango Strike Money Hack Tutorial. |
 |
|
hi guys,
I tried hard to find out the address with money value in this small old game.
I have found the following address and the amount decreases when I purchase something in the game. When I freeze it , the money doesn't freeze.. so maybe this is not the right address.
| Code: | 0043B45D - 83 F9 00 - cmp ecx,00
0043B460 - 75 23 - jne Tango Strike.exe+3B485
0043B462 - A3 DC564400 - mov [Tango Strike.exe+456DC],eax <<
0043B467 - 88 15 E4564400 - mov [Tango Strike.exe+456E4],dl
0043B46D - EB 0B - jmp Tango Strike.exe+3B47A
|
If line third is the address , and current amount is $5550 in the game, then how to perform code injection , please tell me. I don't know how to do code injection.
[/code]
|
|
| Back to top |
|
 |
zm0d
Master Cheater
 Reputation: 7
Joined: 06 Nov 2013
Posts: 423
|
| Posted: Fri Nov 22, 2013 8:48 am Post subject: |
|
|
| AngelPearl wrote: | | so maybe this is not the right address. |
Hmm probably you should start with finding the right address. Use increment/decrement and/or changed/unchanged to find the real address. Perhaps your real address is stored -4/+4 bytes to your displayed value regarding your amount is stored in a 4 byte type.
Start debug at this interesting point of code and check whats inside EAX. Is it even the amount? Code Injection wouldnt work if its the displayed value. You really have to find the real money address.
Edit: What are the first 3-4 lines before the cmp statement?
|
|
| Back to top |
|
|
SteveAndrew
Master Cheater
 Reputation: 30
Joined: 02 Sep 2012
Posts: 323
|
| Posted: Fri Nov 22, 2013 8:55 am Post subject: |
|
|
Something like this:
| Code: |
[enable]
alloc(MoneyCheatMaybe,1024)
label(ReturnHere)
MoneyCheatMaybe:
mov eax,#999999999 //$999,999,999
mov ["Tango Strike.exe"+456dc],eax
jmp ReturnHere
43b462:
jmp MoneyCheatMaybe
ReturnHere:
[disable]
43b462:
mov ["Tango Strike.exe"+456dc],eax
dealloc(MoneyCheatMaybe)
|
43b462 is a nice address to hook (replace with jmp) since it's 5 bytes: A3 DC564400 the same size as the jump we'll be overwriting it with! (in which case we'll need no nops)
So set the value of eax high (what you want your money value to equal) and copy it to location it was going to copy your normal value of money to. Then return to 'ReturnHere' label which in this case will be equal to: 43b467 (43b462 + 5 [size of 'jmp MoneyCheatMaybe' instruction])
If it doesn't work to actually set the value, and only changes the display value then it isn't the right money address. If that's the case your options are to re-scan to find the real value (may be stored differently than expected) or debug this location further to find the real value! 
_________________
|
|
| Back to top |
|
|
AngelPearl
Newbie cheater
![]() Reputation: 0
Joined: 08 Nov 2013
Posts: 20
|
| Posted: Fri Nov 22, 2013 10:40 am Post subject: |
|
|
@Zm0d and Steve
The money only displays in the inventory screen. In the beginning of the first mission , I get $010000 in this format and the value with the address I found is zero. For example , if I purchase HK-5 , It deducts to $06000 and also ,I have 6000 as the value of my money address. But when I modify the value with a higher amount , it doesn't change at all in the game and keeps decreasing whenever I buy a new item.
Here is the mem view of the address and its dependencies.
| Code: | Tango Strike.exe+3B45B - 74 12 - je Tango Strike.exe+3B46F
Tango Strike.exe+3B45D - 83 F9 00 - cmp ecx,00
Tango Strike.exe+3B460 - 75 23 - jne Tango Strike.exe+3B485
Tango Strike.exe+3B462 - A3 DC564400 - mov [Tango Strike.exe+456DC],eax
Tango Strike.exe+3B467 - 88 15 E4564400 - mov [Tango Strike.exe+456E4],dl
Tango Strike.exe+3B46D - EB 0B - jmp Tango Strike.exe+3B47A
Tango Strike.exe+3B46F - A3 E0564400 - mov [Tango Strike.exe+456E0],eax
Tango Strike.exe+3B474 - 88 15 E5564400 - mov [Tango Strike.exe+456E5],dl
Tango Strike.exe+3B47A - 83 FA 02 - cmp edx,02
|
|
|
| Back to top |
|
|
TsTg
Master Cheater
 Reputation: 5
Joined: 12 Dec 2012
Posts: 340
Location: Somewhere....
|
| Posted: Sat Nov 23, 2013 4:00 am Post subject: |
|
|
| AngelPearl wrote: |
if I purchase HK-5 , It deducts to $06000 and also ,I have 6000 as the value of my money address. But when I modify the value with a higher amount , it doesn't change at all in the game and keeps decreasing whenever I buy a new item.
|
if that is the visual value (the printed on the screen), then the actual value still need to be found, cause the game might do some math operation on a different value, then print the result, for example: your money might be 6000$, while the actual value to search for is 12000, where the game uses (Value divided by two), so try using 'Unknown Value' search, and keep filtering with 'Decreased\Increased' value search.
one other possibility of this is that value might be in different type(FLOAT, WORD,..etc)
also, from this code you posted:
| Code: | Tango Strike.exe+3B462 - A3 DC564400 - mov [Tango Strike.exe+456DC],eax
Tango Strike.exe+3B467 - 88 15 E4564400 - mov [Tango Strike.exe+456E4],dl
Tango Strike.exe+3B46D - EB 0B - jmp Tango Strike.exe+3B47A
Tango Strike.exe+3B46F - A3 E0564400 - mov [Tango Strike.exe+456E0],eax
Tango Strike.exe+3B474 - 88 15 E5564400 - mov [Tango Strike.exe+456E5],dl |
did you try to directly edit values at:
[Tango Strike.exe+456DC] and [Tango Strike.exe+456E0] ??
|
|
| Back to top |
|
|
AngelPearl
Newbie cheater
![]() Reputation: 0
Joined: 08 Nov 2013
Posts: 20
|
| Posted: Sat Nov 23, 2013 10:20 am Post subject: |
|
|
Thanks Steve , your code injection worked and my money is unlimited now.
thanks zm0d for your valuable information.
Tstg , bro I don't know how to edit the value ?  I need more help on this.
I already found the health bar address but it's only a display bar not the actual health. Like the way displayed value of money related to actual money , is there any possibility the displayed health too might be related to the actual health ? thanks a bunch for the codes.
Edit : I think this small game has an anti-cheat system.. a random mission appeared called Dingo's Donkey and the operator teased me like "Oh! so you are some sort of Superman now? ain't you?"  I bought some advanced weapons but am not able to use it.. seems like the trigger is jammed or something..hahahaha
|
|
| Back to top |
|
|
TsTg
Master Cheater
Reputation: 5
Joined: 12 Dec 2012
Posts: 340
Location: Somewhere....
|
| Posted: Sat Nov 23, 2013 1:54 pm Post subject: |
|
|
| AngelPearl wrote: | | I don't know how to edit the value ? |
in cheat engine's window press the 'add address manually' button, then in the 'address' field put the address, there you can modifiy the value.
| AngelPearl wrote: |
I already found the health bar address but it's only a display bar not the actual health. Like the way displayed value of money related to actual money , is there any possibility the displayed health too might be related to the actual health ? |
like i said before, use 'Unknown' search, make the value type 'FLOAT', lose some health, then search 'decreased value', lose health again, then do search again till you reach it, if you did not find anything, try changing type to '4 bytes', then start the search again
|
|
| Back to top |
|
|
AngelPearl
Newbie cheater
![]() Reputation: 0
Joined: 08 Nov 2013
Posts: 20
|
| Posted: Sun Nov 24, 2013 1:24 pm Post subject: |
|
|
Thanks Tstg. I tried hacking it many times but without any luck. Although , you and the others gave me valuable tips and I noted them , it will be fruitful to me for other games.
_________________
Hi to all cheaters
Special thanks to DarkByte , Gniarf and Steve |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
