2
"inf ammo"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(ammo,FSD-Win64-Shipping.exe,89 86 58 06 00 00 89) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+431FA7)
label(code)
label(return)
newmem:
code:
mov [rsi+00000658],(int)1
jmp return
ammo:
jmp newmem
nop
return:
registersymbol(ammo)
[DISABLE]
ammo:
db 89 86 58 06 00 00
unregistersymbol(ammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+431FA7
"FSD-Win64-Shipping.exe"+431F76: 4C 89 74 24 28 - mov [rsp+28],r14
"FSD-Win64-Shipping.exe"+431F7B: 0F 28 D6 - movaps xmm2,xmm6
"FSD-Win64-Shipping.exe"+431F7E: F3 0F 11 7C 24 20 - movss [rsp+20],xmm7
"FSD-Win64-Shipping.exe"+431F84: E8 A7 0E 06 01 - call FSD-Win64-Shipping.exe+1492E30
"FSD-Win64-Shipping.exe"+431F89: 8B 86 58 06 00 00 - mov eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431F8F: 48 8D 8E A8 04 00 00 - lea rcx,[rsi+000004A8]
"FSD-Win64-Shipping.exe"+431F96: 2B 86 40 06 00 00 - sub eax,[rsi+00000640]
"FSD-Win64-Shipping.exe"+431F9C: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FA1: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+431FA3: 41 0F 4E C6 - cmovle eax,r14d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+431FA7: 89 86 58 06 00 00 - mov [rsi+00000658],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+431FAD: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FB1: E8 6A 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FB6: 8B 86 54 06 00 00 - mov eax,[rsi+00000654]
"FSD-Win64-Shipping.exe"+431FBC: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FC1: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
"FSD-Win64-Shipping.exe"+431FC8: 03 86 58 06 00 00 - add eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431FCE: 48 81 C1 28 01 00 00 - add rcx,00000128
"FSD-Win64-Shipping.exe"+431FD5: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FD9: E8 42 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FDE: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
}
7
"inf grenades"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(grenade,FSD-Win64-Shipping.exe,FF 8B 40 02 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+2E86EB)
label(code)
label(return)
newmem:
code:
sub [rbx+00000240],0
jmp return
grenade:
jmp newmem
nop
return:
registersymbol(grenade)
[DISABLE]
grenade:
db FF 8B 40 02 00 00
unregistersymbol(grenade)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+2E86EB
"FSD-Win64-Shipping.exe"+2E86C3: 48 8B C8 - mov rcx,rax
"FSD-Win64-Shipping.exe"+2E86C6: 48 8B 82 88 00 00 00 - mov rax,[rdx+00000088]
"FSD-Win64-Shipping.exe"+2E86CD: 4C 39 04 C8 - cmp [rax+rcx*8],r8
"FSD-Win64-Shipping.exe"+2E86D1: 74 02 - je FSD-Win64-Shipping.exe+2E86D5
"FSD-Win64-Shipping.exe"+2E86D3: 33 FF - xor edi,edi
"FSD-Win64-Shipping.exe"+2E86D5: 80 BF 45 0C 00 00 00 - cmp byte ptr [rdi+00000C45],00
"FSD-Win64-Shipping.exe"+2E86DC: 48 8B 7C 24 38 - mov rdi,[rsp+38]
"FSD-Win64-Shipping.exe"+2E86E1: 75 35 - jne FSD-Win64-Shipping.exe+2E8718
"FSD-Win64-Shipping.exe"+2E86E3: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+2E86E6: E8 E5 79 2A 00 - call FSD-Win64-Shipping.exe+5900D0
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+2E86EB: FF 8B 40 02 00 00 - dec [rbx+00000240]
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+2E86F1: 48 8D 8B 30 01 00 00 - lea rcx,[rbx+00000130]
"FSD-Win64-Shipping.exe"+2E86F8: 8B 83 40 02 00 00 - mov eax,[rbx+00000240]
"FSD-Win64-Shipping.exe"+2E86FE: 48 8D 54 24 30 - lea rdx,[rsp+30]
"FSD-Win64-Shipping.exe"+2E8703: 89 44 24 30 - mov [rsp+30],eax
"FSD-Win64-Shipping.exe"+2E8707: E8 14 BE FC FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+2E870C: 8B 83 38 02 00 00 - mov eax,[rbx+00000238]
"FSD-Win64-Shipping.exe"+2E8712: 89 83 44 02 00 00 - mov [rbx+00000244],eax
"FSD-Win64-Shipping.exe"+2E8718: 48 83 C4 20 - add rsp,20
"FSD-Win64-Shipping.exe"+2E871C: 5B - pop rbx
"FSD-Win64-Shipping.exe"+2E871D: C3 - ret
}
20
"inf c4"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(c4,FSD-Win64-Shipping.exe,C4 89 81 94 01 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+42B45A)
label(code)
label(return)
newmem:
code:
mov [rcx+00000194],3
jmp return
c4+01:
jmp newmem
nop
return:
registersymbol(c4)
[DISABLE]
c4+01:
db 89 81 94 01 00 00
unregistersymbol(c4)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+42B45A
"FSD-Win64-Shipping.exe"+42B433: 48 8B 81 E0 00 00 00 - mov rax,[rcx+000000E0]
"FSD-Win64-Shipping.exe"+42B43A: 80 B8 18 01 00 00 03 - cmp byte ptr [rax+00000118],03
"FSD-Win64-Shipping.exe"+42B441: 75 2D - jne FSD-Win64-Shipping.exe+42B470
"FSD-Win64-Shipping.exe"+42B443: 8B 81 94 01 00 00 - mov eax,[rcx+00000194]
"FSD-Win64-Shipping.exe"+42B449: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+42B44B: 7E 23 - jle FSD-Win64-Shipping.exe+42B470
"FSD-Win64-Shipping.exe"+42B44D: FF C8 - dec eax
"FSD-Win64-Shipping.exe"+42B44F: 48 8D 54 24 5C - lea rdx,[rsp+5C]
"FSD-Win64-Shipping.exe"+42B454: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+42B456: 41 0F 4E C4 - cmovle eax,r12d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+42B45A: 89 81 94 01 00 00 - mov [rcx+00000194],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+42B460: 48 81 C1 08 01 00 00 - add rcx,00000108
"FSD-Win64-Shipping.exe"+42B467: 89 44 24 5C - mov [rsp+5C],eax
"FSD-Win64-Shipping.exe"+42B46B: E8 B0 90 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+42B470: 48 8B 83 B0 03 00 00 - mov rax,[rbx+000003B0]
"FSD-Win64-Shipping.exe"+42B477: 66 C7 83 28 05 00 00 00 01 - mov word ptr [rbx+00000528],0100
"FSD-Win64-Shipping.exe"+42B480: 80 B8 18 01 00 00 03 - cmp byte ptr [rax+00000118],03
"FSD-Win64-Shipping.exe"+42B487: 75 6F - jne FSD-Win64-Shipping.exe+42B4F8
"FSD-Win64-Shipping.exe"+42B489: 48 8B 8B C0 04 00 00 - mov rcx,[rbx+000004C0]
"FSD-Win64-Shipping.exe"+42B490: 48 8B 01 - mov rax,[rcx]
"FSD-Win64-Shipping.exe"+42B493: FF 90 B0 03 00 00 - call qword ptr [rax+000003B0]
}
4
"inf res dropin mule"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(res,FSD-Win64-Shipping.exe,C8 48 89 4C 24 20 F3 0F 11 49 60) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+3F683F)
label(code)
label(return)
newmem:
code:
sub [rcx+60],0
jmp return
res+06:
jmp newmem
return:
registersymbol(res)
[DISABLE]
res+06:
db F3 0F 11 49 60
unregistersymbol(res)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+3F683F
"FSD-Win64-Shipping.exe"+3F681A: 0F 2F F2 - comiss xmm6,xmm2
"FSD-Win64-Shipping.exe"+3F681D: 76 3F - jna FSD-Win64-Shipping.exe+3F685E
"FSD-Win64-Shipping.exe"+3F681F: F3 0F 5D C6 - minss xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6823: F3 0F 5F C2 - maxss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F6827: 0F 2F C2 - comiss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F682A: 76 27 - jna FSD-Win64-Shipping.exe+3F6853
"FSD-Win64-Shipping.exe"+3F682C: F3 0F 10 49 60 - movss xmm1,[rcx+60]
"FSD-Win64-Shipping.exe"+3F6831: 48 8D 54 24 20 - lea rdx,[rsp+20]
"FSD-Win64-Shipping.exe"+3F6836: F3 0F 5C C8 - subss xmm1,xmm0
"FSD-Win64-Shipping.exe"+3F683A: 48 89 4C 24 20 - mov [rsp+20],rcx
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+3F683F: F3 0F 11 49 60 - movss [rcx+60],xmm1
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+3F6844: 48 83 C1 28 - add rcx,28
"FSD-Win64-Shipping.exe"+3F6848: F3 0F 11 4C 24 28 - movss [rsp+28],xmm1
"FSD-Win64-Shipping.exe"+3F684E: E8 CD DC EB FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+3F6853: 0F 28 CE - movaps xmm1,xmm6
"FSD-Win64-Shipping.exe"+3F6856: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+3F6859: E8 12 CA FC FF - call FSD-Win64-Shipping.exe+3C3270
"FSD-Win64-Shipping.exe"+3F685E: 0F 28 C6 - movaps xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6861: 0F 28 74 24 30 - movaps xmm6,[rsp+30]
"FSD-Win64-Shipping.exe"+3F6866: 48 83 C4 40 - add rsp,40
"FSD-Win64-Shipping.exe"+3F686A: 5B - pop rbx
}
22
"inf driller "
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-12-01
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(driller,FSD-Win64-Shipping.exe,F3 0F 11 87 50 05 00 00 48) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+434A5C)
label(code)
label(return)
newmem:
code:
add [rdi+00000550],1
jmp return
driller:
jmp newmem
nop
nop
nop
return:
registersymbol(driller)
[DISABLE]
driller:
db F3 0F 11 87 50 05 00 00
unregistersymbol(driller)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+434A5C
"FSD-Win64-Shipping.exe"+434A21: F3 44 0F 11 6C 24 78 - movss [rsp+78],xmm13
"FSD-Win64-Shipping.exe"+434A28: 8B 44 24 78 - mov eax,[rsp+78]
"FSD-Win64-Shipping.exe"+434A2C: 89 44 24 48 - mov [rsp+48],eax
"FSD-Win64-Shipping.exe"+434A30: 8B 45 98 - mov eax,[rbp-68]
"FSD-Win64-Shipping.exe"+434A33: 89 44 24 68 - mov [rsp+68],eax
"FSD-Win64-Shipping.exe"+434A37: E8 44 A2 0F 00 - call FSD-Win64-Shipping.exe+52EC80
"FSD-Win64-Shipping.exe"+434A3C: F3 0F 10 87 50 05 00 00 - movss xmm0,[rdi+00000550]
"FSD-Win64-Shipping.exe"+434A44: F3 0F 5E BF 08 05 00 00 - divss xmm7,[rdi+00000508]
"FSD-Win64-Shipping.exe"+434A4C: F3 0F 5C 87 54 05 00 00 - subss xmm0,[rdi+00000554]
"FSD-Win64-Shipping.exe"+434A54: F3 0F 11 BF 20 05 00 00 - movss [rdi+00000520],xmm7
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+434A5C: F3 0F 11 87 50 05 00 00 - movss [rdi+00000550],xmm0
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+434A64: 48 8B CF - mov rcx,rdi
"FSD-Win64-Shipping.exe"+434A67: E8 B4 F3 FD FF - call FSD-Win64-Shipping.exe+413E20
"FSD-Win64-Shipping.exe"+434A6C: 44 0F 28 B4 24 C0 00 00 00 - movaps xmm14,[rsp+000000C0]
"FSD-Win64-Shipping.exe"+434A75: 44 0F 28 AC 24 D0 00 00 00 - movaps xmm13,[rsp+000000D0]
"FSD-Win64-Shipping.exe"+434A7E: 44 0F 28 A4 24 E0 00 00 00 - movaps xmm12,[rsp+000000E0]
"FSD-Win64-Shipping.exe"+434A87: 44 0F 28 94 24 00 01 00 00 - movaps xmm10,[rsp+00000100]
"FSD-Win64-Shipping.exe"+434A90: EB 51 - jmp FSD-Win64-Shipping.exe+434AE3
"FSD-Win64-Shipping.exe"+434A92: 80 BF 8C 05 00 00 00 - cmp byte ptr [rdi+0000058C],00
"FSD-Win64-Shipping.exe"+434A99: 74 2A - je FSD-Win64-Shipping.exe+434AC5
"FSD-Win64-Shipping.exe"+434A9B: F3 0F 10 87 24 05 00 00 - movss xmm0,[rdi+00000524]
}
17
"driller dont overheat"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(heat,FSD-Win64-Shipping.exe,F3 0F 11 B3 CC 03 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+40A8BB)
label(code)
label(return)
newmem:
code:
sub [rbx+000003CC],0
jmp return
heat:
jmp newmem
nop
nop
nop
return:
registersymbol(heat)
[DISABLE]
heat:
db F3 0F 11 B3 CC 03 00 00
unregistersymbol(heat)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+40A8BB
"FSD-Win64-Shipping.exe"+40A88C: 76 03 - jna FSD-Win64-Shipping.exe+40A891
"FSD-Win64-Shipping.exe"+40A88E: 0F 28 F0 - movaps xmm6,xmm0
"FSD-Win64-Shipping.exe"+40A891: 48 8B 03 - mov rax,[rbx]
"FSD-Win64-Shipping.exe"+40A894: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+40A897: FF 90 38 01 00 00 - call qword ptr [rax+00000138]
"FSD-Win64-Shipping.exe"+40A89D: F3 0F 58 B3 CC 03 00 00 - addss xmm6,dword ptr [rbx+000003CC]
"FSD-Win64-Shipping.exe"+40A8A5: 8B 88 00 09 00 00 - mov ecx,[rax+00000900]
"FSD-Win64-Shipping.exe"+40A8AB: 89 8B D0 03 00 00 - mov [rbx+000003D0],ecx
"FSD-Win64-Shipping.exe"+40A8B1: 48 8B 8B D8 03 00 00 - mov rcx,[rbx+000003D8]
"FSD-Win64-Shipping.exe"+40A8B8: 0F 28 CE - movaps xmm1,xmm6
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+40A8BB: F3 0F 11 B3 CC 03 00 00 - movss [rbx+000003CC],xmm6
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+40A8C3: E8 68 27 FF 00 - call FSD-Win64-Shipping.exe+13FD030
"FSD-Win64-Shipping.exe"+40A8C8: F3 0F 10 15 C0 F8 BE 01 - movss xmm2,[FSD-Win64-Shipping.exe+1FFA190]
"FSD-Win64-Shipping.exe"+40A8D0: 0F 57 C9 - xorps xmm1,xmm1
"FSD-Win64-Shipping.exe"+40A8D3: 0F 2F C1 - comiss xmm0,xmm1
"FSD-Win64-Shipping.exe"+40A8D6: 72 07 - jb FSD-Win64-Shipping.exe+40A8DF
"FSD-Win64-Shipping.exe"+40A8D8: F3 0F 5D C2 - minss xmm0,xmm2
"FSD-Win64-Shipping.exe"+40A8DC: 0F 28 C8 - movaps xmm1,xmm0
"FSD-Win64-Shipping.exe"+40A8DF: 0F 2E CA - ucomiss xmm1,xmm2
"FSD-Win64-Shipping.exe"+40A8E2: F3 0F 11 8B E8 03 00 00 - movss [rbx+000003E8],xmm1
"FSD-Win64-Shipping.exe"+40A8EA: 75 48 - jne FSD-Win64-Shipping.exe+40A934
}