4
"invincible *blink* (after death)"
Auto Assembler Script
{ Game : deltazeal.exe
Version:
Date : 2016-06-27
Author : wcz
}
[ENABLE]
aobscanmodule(invincible,deltazeal.exe,48 66 89 83 A6 01 00 00 8B)
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
//dec eax
mov [ebx+000001A6],ax
jmp return
invincible:
jmp code
nop
nop
nop
return:
registersymbol(invincible)
[DISABLE]
invincible:
db 48 66 89 83 A6 01 00 00
unregistersymbol(invincible)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "deltazeal.exe"+5CECF
"deltazeal.exe"+5CEB0: 39 75 F4 - cmp [ebp-0C],esi
"deltazeal.exe"+5CEB3: 75 0E - jne deltazeal.exe+5CEC3
"deltazeal.exe"+5CEB5: 6A FF - push -01
"deltazeal.exe"+5CEB7: 6A FF - push -01
"deltazeal.exe"+5CEB9: 6A 04 - push 04
"deltazeal.exe"+5CEBB: E8 66 75 FA FF - call deltazeal.exe+4426
"deltazeal.exe"+5CEC0: 83 C4 0C - add esp,0C
"deltazeal.exe"+5CEC3: 0F B7 83 A6 01 00 00 - movzx eax,word ptr [ebx+000001A6]
"deltazeal.exe"+5CECA: 66 85 C0 - test ax,ax
"deltazeal.exe"+5CECD: 74 4D - je deltazeal.exe+5CF1C
// ---------- INJECTING HERE ----------
"deltazeal.exe"+5CECF: 48 - dec eax
"deltazeal.exe"+5CED0: 66 89 83 A6 01 00 00 - mov [ebx+000001A6],ax
// ---------- DONE INJECTING ----------
"deltazeal.exe"+5CED7: 8B 0D 00 F7 A5 01 - mov ecx,[deltazeal.exe+19CF700]
"deltazeal.exe"+5CEDD: F6 81 34 03 00 00 01 - test byte ptr [ecx+00000334],01
"deltazeal.exe"+5CEE4: 74 12 - je deltazeal.exe+5CEF8
"deltazeal.exe"+5CEE6: 6A 50 - push 50
"deltazeal.exe"+5CEE8: E8 1D 46 FA FF - call deltazeal.exe+150A
"deltazeal.exe"+5CEED: 83 C4 04 - add esp,04
"deltazeal.exe"+5CEF0: 89 83 98 00 00 00 - mov [ebx+00000098],eax
"deltazeal.exe"+5CEF6: EB 0A - jmp deltazeal.exe+5CF02
"deltazeal.exe"+5CEF8: C7 83 98 00 00 00 00 00 00 00 - mov [ebx+00000098],00000000
"deltazeal.exe"+5CF02: 66 83 BB A6 01 00 00 00 - cmp word ptr [ebx+000001A6],00
}
2
"inf bomb"
Auto Assembler Script
{ Game : deltazeal.exe
Version:
Date : 2016-06-27
Author : wcz
}
[ENABLE]
aobscanmodule(aob_bomb,deltazeal.exe,FF 0E 53 E8 EA 68 FA FF)
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
//dec [esi]
push ebx
call deltazeal.exe+3855
jmp return
aob_bomb:
jmp code
nop
nop
nop
return:
registersymbol(aob_bomb)
[DISABLE]
aob_bomb:
db FF 0E 53 E8 EA 68 FA FF
unregistersymbol(aob_bomb)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "deltazeal.exe"+5CF63
"deltazeal.exe"+5CF43: 8B D0 - mov edx,eax
"deltazeal.exe"+5CF45: 69 D2 C8 00 00 00 - imul edx,edx,000000C8
"deltazeal.exe"+5CF4B: 83 7C 0A 48 00 - cmp dword ptr [edx+ecx+48],00
"deltazeal.exe"+5CF50: 8D 74 0A 48 - lea esi,[edx+ecx+48]
"deltazeal.exe"+5CF54: 7E 42 - jle deltazeal.exe+5CF98
"deltazeal.exe"+5CF56: 50 - push eax
"deltazeal.exe"+5CF57: E8 0C 79 FA FF - call deltazeal.exe+4868
"deltazeal.exe"+5CF5C: 83 C4 04 - add esp,04
"deltazeal.exe"+5CF5F: 85 C0 - test eax,eax
"deltazeal.exe"+5CF61: 75 35 - jne deltazeal.exe+5CF98
// ---------- INJECTING HERE ----------
"deltazeal.exe"+5CF63: FF 0E - dec [esi]
"deltazeal.exe"+5CF65: 53 - push ebx
"deltazeal.exe"+5CF66: E8 EA 68 FA FF - call deltazeal.exe+3855
// ---------- DONE INJECTING ----------
"deltazeal.exe"+5CF6B: 8B 93 C0 01 00 00 - mov edx,[ebx+000001C0]
"deltazeal.exe"+5CF71: 68 40 8A 0E 00 - push deltazeal.exe+58A40
"deltazeal.exe"+5CF76: 89 15 58 83 10 01 - mov [deltazeal.exe+1078358],edx
"deltazeal.exe"+5CF7C: E8 FD 67 FA FF - call deltazeal.exe+377E
"deltazeal.exe"+5CF81: 83 C4 08 - add esp,08
"deltazeal.exe"+5CF84: C7 83 48 04 00 00 01 00 00 00 - mov [ebx+00000448],00000001
"deltazeal.exe"+5CF8E: C7 83 4C 04 00 00 14 00 00 00 - mov [ebx+0000044C],00000014
"deltazeal.exe"+5CF98: 33 F6 - xor esi,esi
"deltazeal.exe"+5CF9A: 39 B3 48 04 00 00 - cmp [ebx+00000448],esi
"deltazeal.exe"+5CFA0: 74 72 - je deltazeal.exe+5D014
}
5
"Score"
4 Bytes
deltazeal.exe+27BB98
1
"Lives"
4 Bytes
deltazeal.exe+27D1EC
0
"Bomb"
4 Bytes
deltazeal.exe+27D230
3
"invincible timer"
4 Bytes
deltazeal.exe+27D6BC
6
"medals"
4 Bytes
deltazeal.exe+F0C1E8