13
"freeze ammo"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2019-01-04
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,FSD-Win64-Shipping.exe,89 86 60 06 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+429BE7)
label(code)
label(return)
newmem:
code:
//mov [rsi+00000660],eax
jmp return
INJECT:
jmp newmem
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db 89 86 60 06 00 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+429BE7
"FSD-Win64-Shipping.exe"+429BB6: 4C 89 74 24 28 - mov [rsp+28],r14
"FSD-Win64-Shipping.exe"+429BBB: 0F 28 D6 - movaps xmm2,xmm6
"FSD-Win64-Shipping.exe"+429BBE: F3 0F 11 7C 24 20 - movss [rsp+20],xmm7
"FSD-Win64-Shipping.exe"+429BC4: E8 B7 1A 08 01 - call FSD-Win64-Shipping.exe+14AB680
"FSD-Win64-Shipping.exe"+429BC9: 8B 86 60 06 00 00 - mov eax,[rsi+00000660]
"FSD-Win64-Shipping.exe"+429BCF: 48 8D 8E A0 04 00 00 - lea rcx,[rsi+000004A0]
"FSD-Win64-Shipping.exe"+429BD6: 2B 86 48 06 00 00 - sub eax,[rsi+00000648]
"FSD-Win64-Shipping.exe"+429BDC: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+429BE1: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+429BE3: 41 0F 4E C6 - cmovle eax,r14d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+429BE7: 89 86 60 06 00 00 - mov [rsi+00000660],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+429BED: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+429BF1: E8 1A A9 E8 FF - call FSD-Win64-Shipping.exe+2B4510
"FSD-Win64-Shipping.exe"+429BF6: 8B 86 5C 06 00 00 - mov eax,[rsi+0000065C]
"FSD-Win64-Shipping.exe"+429BFC: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+429C01: 48 8B 8E B8 04 00 00 - mov rcx,[rsi+000004B8]
"FSD-Win64-Shipping.exe"+429C08: 03 86 60 06 00 00 - add eax,[rsi+00000660]
"FSD-Win64-Shipping.exe"+429C0E: 48 81 C1 28 01 00 00 - add rcx,00000128
"FSD-Win64-Shipping.exe"+429C15: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+429C19: E8 F2 A8 E8 FF - call FSD-Win64-Shipping.exe+2B4510
"FSD-Win64-Shipping.exe"+429C1E: 48 8B 8E B8 04 00 00 - mov rcx,[rsi+000004B8]
}
15
"inf grenades"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2019-01-04
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,FSD-Win64-Shipping.exe,FF 8B 40 02 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+2E7D0B)
label(code)
label(return)
newmem:
code:
//dec [rbx+00000240]
jmp return
INJECT:
jmp newmem
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db FF 8B 40 02 00 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+2E7D0B
"FSD-Win64-Shipping.exe"+2E7CE3: 48 8B C8 - mov rcx,rax
"FSD-Win64-Shipping.exe"+2E7CE6: 48 8B 82 88 00 00 00 - mov rax,[rdx+00000088]
"FSD-Win64-Shipping.exe"+2E7CED: 4C 39 04 C8 - cmp [rax+rcx*8],r8
"FSD-Win64-Shipping.exe"+2E7CF1: 74 02 - je FSD-Win64-Shipping.exe+2E7CF5
"FSD-Win64-Shipping.exe"+2E7CF3: 33 FF - xor edi,edi
"FSD-Win64-Shipping.exe"+2E7CF5: 80 BF 5D 0C 00 00 00 - cmp byte ptr [rdi+00000C5D],00
"FSD-Win64-Shipping.exe"+2E7CFC: 48 8B 7C 24 38 - mov rdi,[rsp+38]
"FSD-Win64-Shipping.exe"+2E7D01: 75 35 - jne FSD-Win64-Shipping.exe+2E7D38
"FSD-Win64-Shipping.exe"+2E7D03: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+2E7D06: E8 D5 0D 2C 00 - call FSD-Win64-Shipping.exe+5A8AE0
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+2E7D0B: FF 8B 40 02 00 00 - dec [rbx+00000240]
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+2E7D11: 48 8D 8B 30 01 00 00 - lea rcx,[rbx+00000130]
"FSD-Win64-Shipping.exe"+2E7D18: 8B 83 40 02 00 00 - mov eax,[rbx+00000240]
"FSD-Win64-Shipping.exe"+2E7D1E: 48 8D 54 24 30 - lea rdx,[rsp+30]
"FSD-Win64-Shipping.exe"+2E7D23: 89 44 24 30 - mov [rsp+30],eax
"FSD-Win64-Shipping.exe"+2E7D27: E8 E4 C7 FC FF - call FSD-Win64-Shipping.exe+2B4510
"FSD-Win64-Shipping.exe"+2E7D2C: 8B 83 38 02 00 00 - mov eax,[rbx+00000238]
"FSD-Win64-Shipping.exe"+2E7D32: 89 83 44 02 00 00 - mov [rbx+00000244],eax
"FSD-Win64-Shipping.exe"+2E7D38: 48 83 C4 20 - add rsp,20
"FSD-Win64-Shipping.exe"+2E7D3C: 5B - pop rbx
"FSD-Win64-Shipping.exe"+2E7D3D: C3 - ret
}
4
"inf res dropin mule"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(res,FSD-Win64-Shipping.exe,C8 48 89 4C 24 20 F3 0F 11 49 60) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+3F683F)
label(code)
label(return)
newmem:
code:
sub [rcx+60],0
jmp return
res+06:
jmp newmem
return:
registersymbol(res)
[DISABLE]
res+06:
db F3 0F 11 49 60
unregistersymbol(res)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+3F683F
"FSD-Win64-Shipping.exe"+3F681A: 0F 2F F2 - comiss xmm6,xmm2
"FSD-Win64-Shipping.exe"+3F681D: 76 3F - jna FSD-Win64-Shipping.exe+3F685E
"FSD-Win64-Shipping.exe"+3F681F: F3 0F 5D C6 - minss xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6823: F3 0F 5F C2 - maxss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F6827: 0F 2F C2 - comiss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F682A: 76 27 - jna FSD-Win64-Shipping.exe+3F6853
"FSD-Win64-Shipping.exe"+3F682C: F3 0F 10 49 60 - movss xmm1,[rcx+60]
"FSD-Win64-Shipping.exe"+3F6831: 48 8D 54 24 20 - lea rdx,[rsp+20]
"FSD-Win64-Shipping.exe"+3F6836: F3 0F 5C C8 - subss xmm1,xmm0
"FSD-Win64-Shipping.exe"+3F683A: 48 89 4C 24 20 - mov [rsp+20],rcx
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+3F683F: F3 0F 11 49 60 - movss [rcx+60],xmm1
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+3F6844: 48 83 C1 28 - add rcx,28
"FSD-Win64-Shipping.exe"+3F6848: F3 0F 11 4C 24 28 - movss [rsp+28],xmm1
"FSD-Win64-Shipping.exe"+3F684E: E8 CD DC EB FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+3F6853: 0F 28 CE - movaps xmm1,xmm6
"FSD-Win64-Shipping.exe"+3F6856: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+3F6859: E8 12 CA FC FF - call FSD-Win64-Shipping.exe+3C3270
"FSD-Win64-Shipping.exe"+3F685E: 0F 28 C6 - movaps xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6861: 0F 28 74 24 30 - movaps xmm6,[rsp+30]
"FSD-Win64-Shipping.exe"+3F6866: 48 83 C4 40 - add rsp,40
"FSD-Win64-Shipping.exe"+3F686A: 5B - pop rbx
}