8
"Inf HP"
Auto Assembler Script
{ Game : PostalREDUX-Win64-Shipping.exe
Version:
Date : 2016-05-22
Author : Bl00dWolf
This script does blah blah blah
}
[ENABLE]
aobscanmodule(infhp2,PostalREDUX-Win64-Shipping.exe,48 8B CF F3 0F 10 B7 BC 05 00 00 E8) // should be unique
alloc(newmem,$1000,"PostalREDUX-Win64-Shipping.exe"+16E5D5)
label(code)
label(return)
newmem:
code:
mov [rdi+000005BC],(float)100
movss xmm6,[rdi+000005BC]
jmp return
infhp2+3:
jmp code
nop
nop
nop
return:
registersymbol(infhp2)
[DISABLE]
infhp2+3:
db F3 0F 10 B7 BC 05 00 00
unregistersymbol(infhp2)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "PostalREDUX-Win64-Shipping.exe"+16E5D5
"PostalREDUX-Win64-Shipping.exe"+16E598: 45 0F 57 C9 - xorps xmm9,xmm9
"PostalREDUX-Win64-Shipping.exe"+16E59C: F3 0F 5C BF F4 09 00 00 - subss xmm7,[rdi+000009F4]
"PostalREDUX-Win64-Shipping.exe"+16E5A4: 41 0F 2F F9 - comiss xmm7,xmm9
"PostalREDUX-Win64-Shipping.exe"+16E5A8: 0F 82 1A 01 00 00 - jb PostalREDUX-Win64-Shipping.exe+16E6C8
"PostalREDUX-Win64-Shipping.exe"+16E5AE: 44 0F 29 84 24 A0 00 00 00 - movaps [rsp+000000A0],xmm8
"PostalREDUX-Win64-Shipping.exe"+16E5B7: F3 44 0F 10 05 34 CF 9F 01 - movss xmm8,[PostalREDUX-Win64-Shipping.exe+1B6B4F4]
"PostalREDUX-Win64-Shipping.exe"+16E5C0: 41 0F 2F F8 - comiss xmm7,xmm8
"PostalREDUX-Win64-Shipping.exe"+16E5C4: 0F 87 F5 00 00 00 - ja PostalREDUX-Win64-Shipping.exe+16E6BF
"PostalREDUX-Win64-Shipping.exe"+16E5CA: 0F 29 B4 24 C0 00 00 00 - movaps [rsp+000000C0],xmm6
"PostalREDUX-Win64-Shipping.exe"+16E5D2: 48 8B CF - mov rcx,rdi
// ---------- INJECTING HERE ----------
"PostalREDUX-Win64-Shipping.exe"+16E5D5: F3 0F 10 B7 BC 05 00 00 - movss xmm6,[rdi+000005BC]
// ---------- DONE INJECTING ----------
"PostalREDUX-Win64-Shipping.exe"+16E5DD: E8 5E C1 FC FF - call PostalREDUX-Win64-Shipping.exe+13A740
"PostalREDUX-Win64-Shipping.exe"+16E5E2: 48 8B 93 E8 07 00 00 - mov rdx,[rbx+000007E8]
"PostalREDUX-Win64-Shipping.exe"+16E5E9: 41 0F 28 C8 - movaps xmm1,xmm8
"PostalREDUX-Win64-Shipping.exe"+16E5ED: 41 0F 28 D1 - movaps xmm2,xmm9
"PostalREDUX-Win64-Shipping.exe"+16E5F1: C7 84 24 80 00 00 00 00 00 80 3F - mov [rsp+00000080],3F800000
"PostalREDUX-Win64-Shipping.exe"+16E5FC: 48 8B CB - mov rcx,rbx
"PostalREDUX-Win64-Shipping.exe"+16E5FF: C7 84 24 84 00 00 00 00 00 80 3F - mov [rsp+00000084],3F800000
"PostalREDUX-Win64-Shipping.exe"+16E60A: 66 0F 6E C0 - movd xmm0,eax
"PostalREDUX-Win64-Shipping.exe"+16E60E: 48 8B 83 A0 03 00 00 - mov rax,[rbx+000003A0]
"PostalREDUX-Win64-Shipping.exe"+16E615: 0F 5B C0 - cvtdq2ps xmm0,xmm0
}
4
"One Shoot Kill"
Auto Assembler Script
{ Game : PostalREDUX-Win64-Shipping.exe
Version:
Date : 2016-05-20
Author : Bl00dWolf
This script does blah blah blah
}
[ENABLE]
aobscanmodule(ones,PostalREDUX-Win64-Shipping.exe,F3 0F 5C CF 0F 2F CE F3 0F 11 8B BC 05 00 00) // should be unique
alloc(newmem,$1000,"PostalREDUX-Win64-Shipping.exe"+1579B3)
label(code)
label(return)
label(oneshot)
newmem:
code:
cmp [rbx+1C],1
jne oneshot
movss [rbx+000005BC],xmm1
jmp return
oneshot:
mov [rbx+000005BC],(float)999
jmp return
ones+7:
jmp code
nop
nop
nop
return:
registersymbol(ones)
[DISABLE]
ones+7:
db F3 0F 11 8B BC 05 00 00
unregistersymbol(ones)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "PostalREDUX-Win64-Shipping.exe"+1579B3
"PostalREDUX-Win64-Shipping.exe"+157987: 41 0F 28 C8 - movaps xmm1,xmm8
"PostalREDUX-Win64-Shipping.exe"+15798B: 0F 29 7C 24 60 - movaps [rsp+60],xmm7
"PostalREDUX-Win64-Shipping.exe"+157990: 48 8B CB - mov rcx,rbx
"PostalREDUX-Win64-Shipping.exe"+157993: E8 D8 75 59 00 - call PostalREDUX-Win64-Shipping.exe+6EEF70
"PostalREDUX-Win64-Shipping.exe"+157998: 0F 28 F8 - movaps xmm7,xmm0
"PostalREDUX-Win64-Shipping.exe"+15799B: 0F 2F FE - comiss xmm7,xmm6
"PostalREDUX-Win64-Shipping.exe"+15799E: 0F 86 B4 00 00 00 - jbe PostalREDUX-Win64-Shipping.exe+157A58
"PostalREDUX-Win64-Shipping.exe"+1579A4: F3 0F 10 8B BC 05 00 00 - movss xmm1,[rbx+000005BC]
"PostalREDUX-Win64-Shipping.exe"+1579AC: F3 0F 5C CF - subss xmm1,xmm7
"PostalREDUX-Win64-Shipping.exe"+1579B0: 0F 2F CE - comiss xmm1,xmm6
// ---------- INJECTING HERE ----------
"PostalREDUX-Win64-Shipping.exe"+1579B3: F3 0F 11 8B BC 05 00 00 - movss [rbx+000005BC],xmm1
// ---------- DONE INJECTING ----------
"PostalREDUX-Win64-Shipping.exe"+1579BB: 77 1C - ja PostalREDUX-Win64-Shipping.exe+1579D9
"PostalREDUX-Win64-Shipping.exe"+1579BD: 48 8B 03 - mov rax,[rbx]
"PostalREDUX-Win64-Shipping.exe"+1579C0: 4C 8B CF - mov r9,rdi
"PostalREDUX-Win64-Shipping.exe"+1579C3: 4C 8B C5 - mov r8,rbp
"PostalREDUX-Win64-Shipping.exe"+1579C6: 48 89 74 24 20 - mov [rsp+20],rsi
"PostalREDUX-Win64-Shipping.exe"+1579CB: 0F 28 C8 - movaps xmm1,xmm0
"PostalREDUX-Win64-Shipping.exe"+1579CE: 48 8B CB - mov rcx,rbx
"PostalREDUX-Win64-Shipping.exe"+1579D1: FF 90 98 08 00 00 - call qword ptr [rax+00000898]
"PostalREDUX-Win64-Shipping.exe"+1579D7: EB 28 - jmp PostalREDUX-Win64-Shipping.exe+157A01
"PostalREDUX-Win64-Shipping.exe"+1579D9: 48 85 FF - test rdi,rdi
}
2
"Inf Ammo (1)"
Auto Assembler Script
{ Game : PostalREDUX-Win64-Shipping.exe
Version:
Date : 2016-05-20
Author : Bl00dWolf
This script does blah blah blah
}
[ENABLE]
aobscanmodule(ammo,PostalREDUX-Win64-Shipping.exe,33 C0 44 2B C2 41 0F 49 C0 89 81 50 03 00 00) // should be unique
alloc(newmem,$1000,"PostalREDUX-Win64-Shipping.exe"+1A2240)
label(code)
label(return)
newmem:
code:
mov [rcx+00000350],63
jmp return
ammo+9:
jmp code
nop
return:
registersymbol(ammo)
[DISABLE]
ammo+9:
db 89 81 50 03 00 00
unregistersymbol(ammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "PostalREDUX-Win64-Shipping.exe"+1A2240
"PostalREDUX-Win64-Shipping.exe"+1A222A: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A222B: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A222C: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A222D: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A222E: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A222F: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A2230: 44 8B 81 50 03 00 00 - mov r8d,[rcx+00000350]
"PostalREDUX-Win64-Shipping.exe"+1A2237: 33 C0 - xor eax,eax
"PostalREDUX-Win64-Shipping.exe"+1A2239: 44 2B C2 - sub r8d,edx
"PostalREDUX-Win64-Shipping.exe"+1A223C: 41 0F 49 C0 - cmovns eax,r8d
// ---------- INJECTING HERE ----------
"PostalREDUX-Win64-Shipping.exe"+1A2240: 89 81 50 03 00 00 - mov [rcx+00000350],eax
// ---------- DONE INJECTING ----------
"PostalREDUX-Win64-Shipping.exe"+1A2246: C3 - ret
"PostalREDUX-Win64-Shipping.exe"+1A2247: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A2248: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A2249: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224A: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224B: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224C: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224D: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224E: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+1A224F: CC - int 3
}
10
"Inf Ammo (2)"
Auto Assembler Script
{ Game : PostalREDUX-Win64-Shipping.exe
Version:
Date : 2016-05-22
Author : Bl00dWolf
This script does blah blah blah
}
[ENABLE]
aobscanmodule(infammo,PostalREDUX-Win64-Shipping.exe,CC CC CC CC CC CC CC CC CC CC 8B 81 50 03 00 00 C3 CC CC CC CC CC CC CC CC CC) // should be unique
alloc(newmem,$1000,"PostalREDUX-Win64-Shipping.exe"+197160)
label(code)
label(return)
newmem:
code:
mov [rcx+00000350],#99
mov eax,[rcx+00000350]
jmp return
infammo+A:
jmp code
nop
return:
registersymbol(infammo)
[DISABLE]
infammo+A:
db 8B 81 50 03 00 00
unregistersymbol(infammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "PostalREDUX-Win64-Shipping.exe"+197160
"PostalREDUX-Win64-Shipping.exe"+197156: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+197157: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+197158: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+197159: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715A: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715B: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715C: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715D: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715E: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19715F: CC - int 3
// ---------- INJECTING HERE ----------
"PostalREDUX-Win64-Shipping.exe"+197160: 8B 81 50 03 00 00 - mov eax,[rcx+00000350]
// ---------- DONE INJECTING ----------
"PostalREDUX-Win64-Shipping.exe"+197166: C3 - ret
"PostalREDUX-Win64-Shipping.exe"+197167: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+197168: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+197169: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716A: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716B: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716C: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716D: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716E: CC - int 3
"PostalREDUX-Win64-Shipping.exe"+19716F: CC - int 3
}
11
"---------USE ONE OF TWO AMMO SCRIPTS-------"
1