35
"Infinite Ammo"
Auto Assembler Script
[ENABLE]
aobscanmodule(Primary_ammo_aob,ROGame.exe,89 01 83 C4 08 C2 08 00 8B 54 24 10 89) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
mov [ecx],eax
add esp,08
jmp return
Primary_ammo_aob:
nop
nop
return:
registersymbol(Primary_ammo_aob)
[DISABLE]
Primary_ammo_aob:
db 89 01 83 C4 08
unregistersymbol(Primary_ammo_aob)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "ROGame.exe"+4D114
"ROGame.exe"+4D0F9: 5E - pop esi
"ROGame.exe"+4D0FA: 7D 0C - jnl ROGame.exe+4D108
"ROGame.exe"+4D0FC: 8B 44 24 10 - mov eax,[esp+10]
"ROGame.exe"+4D100: 89 08 - mov [eax],ecx
"ROGame.exe"+4D102: 83 C4 08 - add esp,08
"ROGame.exe"+4D105: C2 08 00 - ret 0008
"ROGame.exe"+4D108: 8B 4C 24 04 - mov ecx,[esp+04]
"ROGame.exe"+4D10C: 3B C1 - cmp eax,ecx
"ROGame.exe"+4D10E: 7D 0C - jnl ROGame.exe+4D11C
"ROGame.exe"+4D110: 8B 4C 24 10 - mov ecx,[esp+10]
// ---------- INJECTING HERE ----------
"ROGame.exe"+4D114: 89 01 - mov [ecx],eax
"ROGame.exe"+4D115: 01 83 C4 08 C2 08 - add [ebx+08C208C4],eax
"ROGame.exe"+4D116: 83 C4 08 - add esp,08
// ---------- DONE INJECTING ----------
"ROGame.exe"+4D119: C2 08 00 - ret 0008
"ROGame.exe"+4D11C: 8B 54 24 10 - mov edx,[esp+10]
"ROGame.exe"+4D120: 89 0A - mov [edx],ecx
"ROGame.exe"+4D122: 83 C4 08 - add esp,08
"ROGame.exe"+4D125: C2 08 00 - ret 0008
"ROGame.exe"+4D128: CC - int 3
"ROGame.exe"+4D129: CC - int 3
"ROGame.exe"+4D12A: CC - int 3
"ROGame.exe"+4D12B: CC - int 3
"ROGame.exe"+4D12C: CC - int 3
}
37
"Infinite Stamina (It Freezes ! too)"
Auto Assembler Script
[ENABLE]
aobscanmodule(Stamina_aob,ROGame.exe,5C 44 24 10 8B 44 24 14 F3 0F 11 07 5F) // should be unique
alloc(newmem,$1000)
label(code)
label(return)
newmem:
code:
movss [edi],xmm0
pop edi
jmp return
Stamina_aob+08:
nop
nop
nop
return:
registersymbol(Stamina_aob)
[DISABLE]
Stamina_aob+08:
db F3 0F 11 07 5F
unregistersymbol(Stamina_aob)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "ROGame.exe"+4DCDE
"ROGame.exe"+4DCBE: 75 10 - jne ROGame.exe+4DCD0
"ROGame.exe"+4DCC0: 8B 4E 14 - mov ecx,[esi+14]
"ROGame.exe"+4DCC3: 6A 00 - push 00
"ROGame.exe"+4DCC5: 40 - inc eax
"ROGame.exe"+4DCC6: 56 - push esi
"ROGame.exe"+4DCC7: 89 46 18 - mov [esi+18],eax
"ROGame.exe"+4DCCA: FF 15 A4 58 4E 01 - call dword ptr [ROGame.exe+10E58A4]
"ROGame.exe"+4DCD0: F3 0F 10 07 - movss xmm0,[edi]
"ROGame.exe"+4DCD4: F3 0F 5C 44 24 10 - subss xmm0,[esp+10]
"ROGame.exe"+4DCDA: 8B 44 24 14 - mov eax,[esp+14]
// ---------- INJECTING HERE ----------
"ROGame.exe"+4DCDE: F3 0F 11 07 - movss [edi],xmm0
"ROGame.exe"+4DCDF: 0F 11 07 - movups [edi],xmm0
"ROGame.exe"+4DCE0: 11 07 - adc [edi],eax
"ROGame.exe"+4DCE1: 07 - pop es
"ROGame.exe"+4DCE2: 5F - pop edi
// ---------- DONE INJECTING ----------
"ROGame.exe"+4DCE3: F3 0F 11 00 - movss [eax],xmm0
"ROGame.exe"+4DCE7: 5E - pop esi
"ROGame.exe"+4DCE8: 59 - pop ecx
"ROGame.exe"+4DCE9: C2 08 00 - ret 0008
"ROGame.exe"+4DCEC: CC - int 3
"ROGame.exe"+4DCED: CC - int 3
"ROGame.exe"+4DCEE: CC - int 3
"ROGame.exe"+4DCEF: CC - int 3
"ROGame.exe"+4DCF0: 51 - push ecx
"ROGame.exe"+4DCF1: 0F 57 C0 - xorps xmm0,xmm0
}
10
"Primamry Ammo"
1
11
"Primamry Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
204
3FC
18
44
12
"Primamry Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
8
128
18
44
13
"Primamry Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
204
3FC
18
50
14
"Primamry Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
8
128
18
50
28
"All Ammo"
1
15
"All Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
400
18
48
0
16
"All Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
400
18
48
C
17
"All Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
0
170
18
44
18
"All Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
400
18
44
19
"All Ammo"
4 Bytes
"ROGame.exe"+0123951C
370
400
E8
18
44
20
"All Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
400
18
50
21
"All Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
0
170
18
50
22
"All Ammo"
4 Bytes
"ROGame.exe"+01259C44
370
400
E8
18
50
23
"All Ammo"
4 Bytes
"ROGame.exe"+012362EC
370
400
18
40
104
24
"All Ammo"
4 Bytes
"umbra32.dll"+0006EDB8
370
400
18
50
17C
25
"All Ammo"
4 Bytes
"ROGame.exe"+012628E4
370
400
208
0
484
26
"All Ammo"
4 Bytes
"ROGame.exe"+012628E4
370
400
3C4
0
484
27
"All Ammo"
4 Bytes
"ROGame.exe"+012628E4
370
400
3D0
0
484
34
"Defend Base Timer"
1
38
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
0
39
"Defend Base Timer"
4 Bytes
"ROGame.exe"+0124972C
210
46C
EC
28
0
40
"Defend Base Timer"
4 Bytes
"ROGame.exe"+0124972C
210
46C
EC
4C
0
41
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
13C
0
42
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
EC
0
43
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01252F68
210
46C
EC
28
0
44
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01252F68
210
46C
EC
4C
0
45
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
2E0
498
EC
0
46
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
4
47
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
13C
4
48
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
46C
EC
EC
4
49
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249720
210
2E0
498
EC
4
50
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01252F68
210
46C
EC
C
4
51
"Defend Base Timer"
4 Bytes
"ROGame.exe"+0124972C
210
46C
EC
28
4
52
"Defend Base Timer"
4 Bytes
"ROGame.exe"+01249708
210
46C
EC
18
4
53
"Defend Base Timer"
4 Bytes
"ROGame.exe"+0124972C
210
46C
EC
4C
4
Change of movss [edi],xmm0
0044DCDE
ROGame.exe
4DCDE
10
8B
44
24
14
F3
0F
11
07
5F
F3
0F
11
00
Stamina_aob
0044DCD6
Primary_ammo_aob
0044D114