26
"inf ammo"
1
2
"inf ammo (1 shots in mag)"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(ammo,FSD-Win64-Shipping.exe,89 86 58 06 00 00 89) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+431FA7)
label(code)
label(return)
newmem:
code:
mov [rsi+00000658],(int)1
jmp return
ammo:
jmp newmem
nop
return:
registersymbol(ammo)
[DISABLE]
ammo:
db 89 86 58 06 00 00
unregistersymbol(ammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+431FA7
"FSD-Win64-Shipping.exe"+431F76: 4C 89 74 24 28 - mov [rsp+28],r14
"FSD-Win64-Shipping.exe"+431F7B: 0F 28 D6 - movaps xmm2,xmm6
"FSD-Win64-Shipping.exe"+431F7E: F3 0F 11 7C 24 20 - movss [rsp+20],xmm7
"FSD-Win64-Shipping.exe"+431F84: E8 A7 0E 06 01 - call FSD-Win64-Shipping.exe+1492E30
"FSD-Win64-Shipping.exe"+431F89: 8B 86 58 06 00 00 - mov eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431F8F: 48 8D 8E A8 04 00 00 - lea rcx,[rsi+000004A8]
"FSD-Win64-Shipping.exe"+431F96: 2B 86 40 06 00 00 - sub eax,[rsi+00000640]
"FSD-Win64-Shipping.exe"+431F9C: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FA1: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+431FA3: 41 0F 4E C6 - cmovle eax,r14d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+431FA7: 89 86 58 06 00 00 - mov [rsi+00000658],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+431FAD: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FB1: E8 6A 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FB6: 8B 86 54 06 00 00 - mov eax,[rsi+00000654]
"FSD-Win64-Shipping.exe"+431FBC: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FC1: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
"FSD-Win64-Shipping.exe"+431FC8: 03 86 58 06 00 00 - add eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431FCE: 48 81 C1 28 01 00 00 - add rcx,00000128
"FSD-Win64-Shipping.exe"+431FD5: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FD9: E8 42 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FDE: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
}
25
"inf ammo (90 shots in mag)"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(ammo,FSD-Win64-Shipping.exe,89 86 58 06 00 00 89) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+431FA7)
label(code)
label(return)
newmem:
code:
mov [rsi+00000658],(int)90
jmp return
ammo:
jmp newmem
nop
return:
registersymbol(ammo)
[DISABLE]
ammo:
db 89 86 58 06 00 00
unregistersymbol(ammo)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+431FA7
"FSD-Win64-Shipping.exe"+431F76: 4C 89 74 24 28 - mov [rsp+28],r14
"FSD-Win64-Shipping.exe"+431F7B: 0F 28 D6 - movaps xmm2,xmm6
"FSD-Win64-Shipping.exe"+431F7E: F3 0F 11 7C 24 20 - movss [rsp+20],xmm7
"FSD-Win64-Shipping.exe"+431F84: E8 A7 0E 06 01 - call FSD-Win64-Shipping.exe+1492E30
"FSD-Win64-Shipping.exe"+431F89: 8B 86 58 06 00 00 - mov eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431F8F: 48 8D 8E A8 04 00 00 - lea rcx,[rsi+000004A8]
"FSD-Win64-Shipping.exe"+431F96: 2B 86 40 06 00 00 - sub eax,[rsi+00000640]
"FSD-Win64-Shipping.exe"+431F9C: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FA1: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+431FA3: 41 0F 4E C6 - cmovle eax,r14d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+431FA7: 89 86 58 06 00 00 - mov [rsi+00000658],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+431FAD: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FB1: E8 6A 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FB6: 8B 86 54 06 00 00 - mov eax,[rsi+00000654]
"FSD-Win64-Shipping.exe"+431FBC: 48 8D 54 24 70 - lea rdx,[rsp+70]
"FSD-Win64-Shipping.exe"+431FC1: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
"FSD-Win64-Shipping.exe"+431FC8: 03 86 58 06 00 00 - add eax,[rsi+00000658]
"FSD-Win64-Shipping.exe"+431FCE: 48 81 C1 28 01 00 00 - add rcx,00000128
"FSD-Win64-Shipping.exe"+431FD5: 89 44 24 70 - mov [rsp+70],eax
"FSD-Win64-Shipping.exe"+431FD9: E8 42 25 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+431FDE: 48 8B 8E C0 04 00 00 - mov rcx,[rsi+000004C0]
}
7
"inf grenades"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(grenade,FSD-Win64-Shipping.exe,FF 8B 40 02 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+2E86EB)
label(code)
label(return)
newmem:
code:
sub [rbx+00000240],0
jmp return
grenade:
jmp newmem
nop
return:
registersymbol(grenade)
[DISABLE]
grenade:
db FF 8B 40 02 00 00
unregistersymbol(grenade)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+2E86EB
"FSD-Win64-Shipping.exe"+2E86C3: 48 8B C8 - mov rcx,rax
"FSD-Win64-Shipping.exe"+2E86C6: 48 8B 82 88 00 00 00 - mov rax,[rdx+00000088]
"FSD-Win64-Shipping.exe"+2E86CD: 4C 39 04 C8 - cmp [rax+rcx*8],r8
"FSD-Win64-Shipping.exe"+2E86D1: 74 02 - je FSD-Win64-Shipping.exe+2E86D5
"FSD-Win64-Shipping.exe"+2E86D3: 33 FF - xor edi,edi
"FSD-Win64-Shipping.exe"+2E86D5: 80 BF 45 0C 00 00 00 - cmp byte ptr [rdi+00000C45],00
"FSD-Win64-Shipping.exe"+2E86DC: 48 8B 7C 24 38 - mov rdi,[rsp+38]
"FSD-Win64-Shipping.exe"+2E86E1: 75 35 - jne FSD-Win64-Shipping.exe+2E8718
"FSD-Win64-Shipping.exe"+2E86E3: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+2E86E6: E8 E5 79 2A 00 - call FSD-Win64-Shipping.exe+5900D0
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+2E86EB: FF 8B 40 02 00 00 - dec [rbx+00000240]
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+2E86F1: 48 8D 8B 30 01 00 00 - lea rcx,[rbx+00000130]
"FSD-Win64-Shipping.exe"+2E86F8: 8B 83 40 02 00 00 - mov eax,[rbx+00000240]
"FSD-Win64-Shipping.exe"+2E86FE: 48 8D 54 24 30 - lea rdx,[rsp+30]
"FSD-Win64-Shipping.exe"+2E8703: 89 44 24 30 - mov [rsp+30],eax
"FSD-Win64-Shipping.exe"+2E8707: E8 14 BE FC FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+2E870C: 8B 83 38 02 00 00 - mov eax,[rbx+00000238]
"FSD-Win64-Shipping.exe"+2E8712: 89 83 44 02 00 00 - mov [rbx+00000244],eax
"FSD-Win64-Shipping.exe"+2E8718: 48 83 C4 20 - add rsp,20
"FSD-Win64-Shipping.exe"+2E871C: 5B - pop rbx
"FSD-Win64-Shipping.exe"+2E871D: C3 - ret
}
20
"inf c4"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(c4,FSD-Win64-Shipping.exe,C4 89 81 94 01 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+42B45A)
label(code)
label(return)
newmem:
code:
mov [rcx+00000194],3
jmp return
c4+01:
jmp newmem
nop
return:
registersymbol(c4)
[DISABLE]
c4+01:
db 89 81 94 01 00 00
unregistersymbol(c4)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+42B45A
"FSD-Win64-Shipping.exe"+42B433: 48 8B 81 E0 00 00 00 - mov rax,[rcx+000000E0]
"FSD-Win64-Shipping.exe"+42B43A: 80 B8 18 01 00 00 03 - cmp byte ptr [rax+00000118],03
"FSD-Win64-Shipping.exe"+42B441: 75 2D - jne FSD-Win64-Shipping.exe+42B470
"FSD-Win64-Shipping.exe"+42B443: 8B 81 94 01 00 00 - mov eax,[rcx+00000194]
"FSD-Win64-Shipping.exe"+42B449: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+42B44B: 7E 23 - jle FSD-Win64-Shipping.exe+42B470
"FSD-Win64-Shipping.exe"+42B44D: FF C8 - dec eax
"FSD-Win64-Shipping.exe"+42B44F: 48 8D 54 24 5C - lea rdx,[rsp+5C]
"FSD-Win64-Shipping.exe"+42B454: 85 C0 - test eax,eax
"FSD-Win64-Shipping.exe"+42B456: 41 0F 4E C4 - cmovle eax,r12d
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+42B45A: 89 81 94 01 00 00 - mov [rcx+00000194],eax
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+42B460: 48 81 C1 08 01 00 00 - add rcx,00000108
"FSD-Win64-Shipping.exe"+42B467: 89 44 24 5C - mov [rsp+5C],eax
"FSD-Win64-Shipping.exe"+42B46B: E8 B0 90 E8 FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+42B470: 48 8B 83 B0 03 00 00 - mov rax,[rbx+000003B0]
"FSD-Win64-Shipping.exe"+42B477: 66 C7 83 28 05 00 00 00 01 - mov word ptr [rbx+00000528],0100
"FSD-Win64-Shipping.exe"+42B480: 80 B8 18 01 00 00 03 - cmp byte ptr [rax+00000118],03
"FSD-Win64-Shipping.exe"+42B487: 75 6F - jne FSD-Win64-Shipping.exe+42B4F8
"FSD-Win64-Shipping.exe"+42B489: 48 8B 8B C0 04 00 00 - mov rcx,[rbx+000004C0]
"FSD-Win64-Shipping.exe"+42B490: 48 8B 01 - mov rax,[rcx]
"FSD-Win64-Shipping.exe"+42B493: FF 90 B0 03 00 00 - call qword ptr [rax+000003B0]
}
4
"inf res dropin mule"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(res,FSD-Win64-Shipping.exe,C8 48 89 4C 24 20 F3 0F 11 49 60) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+3F683F)
label(code)
label(return)
newmem:
code:
sub [rcx+60],0
jmp return
res+06:
jmp newmem
return:
registersymbol(res)
[DISABLE]
res+06:
db F3 0F 11 49 60
unregistersymbol(res)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+3F683F
"FSD-Win64-Shipping.exe"+3F681A: 0F 2F F2 - comiss xmm6,xmm2
"FSD-Win64-Shipping.exe"+3F681D: 76 3F - jna FSD-Win64-Shipping.exe+3F685E
"FSD-Win64-Shipping.exe"+3F681F: F3 0F 5D C6 - minss xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6823: F3 0F 5F C2 - maxss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F6827: 0F 2F C2 - comiss xmm0,xmm2
"FSD-Win64-Shipping.exe"+3F682A: 76 27 - jna FSD-Win64-Shipping.exe+3F6853
"FSD-Win64-Shipping.exe"+3F682C: F3 0F 10 49 60 - movss xmm1,[rcx+60]
"FSD-Win64-Shipping.exe"+3F6831: 48 8D 54 24 20 - lea rdx,[rsp+20]
"FSD-Win64-Shipping.exe"+3F6836: F3 0F 5C C8 - subss xmm1,xmm0
"FSD-Win64-Shipping.exe"+3F683A: 48 89 4C 24 20 - mov [rsp+20],rcx
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+3F683F: F3 0F 11 49 60 - movss [rcx+60],xmm1
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+3F6844: 48 83 C1 28 - add rcx,28
"FSD-Win64-Shipping.exe"+3F6848: F3 0F 11 4C 24 28 - movss [rsp+28],xmm1
"FSD-Win64-Shipping.exe"+3F684E: E8 CD DC EB FF - call FSD-Win64-Shipping.exe+2B4520
"FSD-Win64-Shipping.exe"+3F6853: 0F 28 CE - movaps xmm1,xmm6
"FSD-Win64-Shipping.exe"+3F6856: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+3F6859: E8 12 CA FC FF - call FSD-Win64-Shipping.exe+3C3270
"FSD-Win64-Shipping.exe"+3F685E: 0F 28 C6 - movaps xmm0,xmm6
"FSD-Win64-Shipping.exe"+3F6861: 0F 28 74 24 30 - movaps xmm6,[rsp+30]
"FSD-Win64-Shipping.exe"+3F6866: 48 83 C4 40 - add rsp,40
"FSD-Win64-Shipping.exe"+3F686A: 5B - pop rbx
}
22
"inf driller "
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-12-01
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(driller,FSD-Win64-Shipping.exe,F3 0F 11 87 50 05 00 00 48) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+434A5C)
label(code)
label(return)
newmem:
code:
add [rdi+00000550],1
jmp return
driller:
jmp newmem
nop
nop
nop
return:
registersymbol(driller)
[DISABLE]
driller:
db F3 0F 11 87 50 05 00 00
unregistersymbol(driller)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+434A5C
"FSD-Win64-Shipping.exe"+434A21: F3 44 0F 11 6C 24 78 - movss [rsp+78],xmm13
"FSD-Win64-Shipping.exe"+434A28: 8B 44 24 78 - mov eax,[rsp+78]
"FSD-Win64-Shipping.exe"+434A2C: 89 44 24 48 - mov [rsp+48],eax
"FSD-Win64-Shipping.exe"+434A30: 8B 45 98 - mov eax,[rbp-68]
"FSD-Win64-Shipping.exe"+434A33: 89 44 24 68 - mov [rsp+68],eax
"FSD-Win64-Shipping.exe"+434A37: E8 44 A2 0F 00 - call FSD-Win64-Shipping.exe+52EC80
"FSD-Win64-Shipping.exe"+434A3C: F3 0F 10 87 50 05 00 00 - movss xmm0,[rdi+00000550]
"FSD-Win64-Shipping.exe"+434A44: F3 0F 5E BF 08 05 00 00 - divss xmm7,[rdi+00000508]
"FSD-Win64-Shipping.exe"+434A4C: F3 0F 5C 87 54 05 00 00 - subss xmm0,[rdi+00000554]
"FSD-Win64-Shipping.exe"+434A54: F3 0F 11 BF 20 05 00 00 - movss [rdi+00000520],xmm7
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+434A5C: F3 0F 11 87 50 05 00 00 - movss [rdi+00000550],xmm0
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+434A64: 48 8B CF - mov rcx,rdi
"FSD-Win64-Shipping.exe"+434A67: E8 B4 F3 FD FF - call FSD-Win64-Shipping.exe+413E20
"FSD-Win64-Shipping.exe"+434A6C: 44 0F 28 B4 24 C0 00 00 00 - movaps xmm14,[rsp+000000C0]
"FSD-Win64-Shipping.exe"+434A75: 44 0F 28 AC 24 D0 00 00 00 - movaps xmm13,[rsp+000000D0]
"FSD-Win64-Shipping.exe"+434A7E: 44 0F 28 A4 24 E0 00 00 00 - movaps xmm12,[rsp+000000E0]
"FSD-Win64-Shipping.exe"+434A87: 44 0F 28 94 24 00 01 00 00 - movaps xmm10,[rsp+00000100]
"FSD-Win64-Shipping.exe"+434A90: EB 51 - jmp FSD-Win64-Shipping.exe+434AE3
"FSD-Win64-Shipping.exe"+434A92: 80 BF 8C 05 00 00 00 - cmp byte ptr [rdi+0000058C],00
"FSD-Win64-Shipping.exe"+434A99: 74 2A - je FSD-Win64-Shipping.exe+434AC5
"FSD-Win64-Shipping.exe"+434A9B: F3 0F 10 87 24 05 00 00 - movss xmm0,[rdi+00000524]
}
17
"driller dont overheat"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-11-29
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(heat,FSD-Win64-Shipping.exe,F3 0F 11 B3 CC 03 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+40A8BB)
label(code)
label(return)
newmem:
code:
sub [rbx+000003CC],0
jmp return
heat:
jmp newmem
nop
nop
nop
return:
registersymbol(heat)
[DISABLE]
heat:
db F3 0F 11 B3 CC 03 00 00
unregistersymbol(heat)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+40A8BB
"FSD-Win64-Shipping.exe"+40A88C: 76 03 - jna FSD-Win64-Shipping.exe+40A891
"FSD-Win64-Shipping.exe"+40A88E: 0F 28 F0 - movaps xmm6,xmm0
"FSD-Win64-Shipping.exe"+40A891: 48 8B 03 - mov rax,[rbx]
"FSD-Win64-Shipping.exe"+40A894: 48 8B CB - mov rcx,rbx
"FSD-Win64-Shipping.exe"+40A897: FF 90 38 01 00 00 - call qword ptr [rax+00000138]
"FSD-Win64-Shipping.exe"+40A89D: F3 0F 58 B3 CC 03 00 00 - addss xmm6,dword ptr [rbx+000003CC]
"FSD-Win64-Shipping.exe"+40A8A5: 8B 88 00 09 00 00 - mov ecx,[rax+00000900]
"FSD-Win64-Shipping.exe"+40A8AB: 89 8B D0 03 00 00 - mov [rbx+000003D0],ecx
"FSD-Win64-Shipping.exe"+40A8B1: 48 8B 8B D8 03 00 00 - mov rcx,[rbx+000003D8]
"FSD-Win64-Shipping.exe"+40A8B8: 0F 28 CE - movaps xmm1,xmm6
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+40A8BB: F3 0F 11 B3 CC 03 00 00 - movss [rbx+000003CC],xmm6
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+40A8C3: E8 68 27 FF 00 - call FSD-Win64-Shipping.exe+13FD030
"FSD-Win64-Shipping.exe"+40A8C8: F3 0F 10 15 C0 F8 BE 01 - movss xmm2,[FSD-Win64-Shipping.exe+1FFA190]
"FSD-Win64-Shipping.exe"+40A8D0: 0F 57 C9 - xorps xmm1,xmm1
"FSD-Win64-Shipping.exe"+40A8D3: 0F 2F C1 - comiss xmm0,xmm1
"FSD-Win64-Shipping.exe"+40A8D6: 72 07 - jb FSD-Win64-Shipping.exe+40A8DF
"FSD-Win64-Shipping.exe"+40A8D8: F3 0F 5D C2 - minss xmm0,xmm2
"FSD-Win64-Shipping.exe"+40A8DC: 0F 28 C8 - movaps xmm1,xmm0
"FSD-Win64-Shipping.exe"+40A8DF: 0F 2E CA - ucomiss xmm1,xmm2
"FSD-Win64-Shipping.exe"+40A8E2: F3 0F 11 8B E8 03 00 00 - movss [rbx+000003E8],xmm1
"FSD-Win64-Shipping.exe"+40A8EA: 75 48 - jne FSD-Win64-Shipping.exe+40A934
}
3
"rapid fire"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-12-05
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,FSD-Win64-Shipping.exe,F3 0F 11 86 5C 06 00 00) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+440937)
label(code)
label(return)
newmem:
code:
//movss [rsi+0000065C],xmm0
jmp return
INJECT:
jmp newmem
nop
nop
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db F3 0F 11 86 5C 06 00 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+440937
"FSD-Win64-Shipping.exe"+440907: 48 8B C8 - mov rcx,rax
"FSD-Win64-Shipping.exe"+44090A: 4C 8B C3 - mov r8,rbx
"FSD-Win64-Shipping.exe"+44090D: E8 BE 99 06 01 - call FSD-Win64-Shipping.exe+14AA2D0
"FSD-Win64-Shipping.exe"+440912: 48 8B 06 - mov rax,[rsi]
"FSD-Win64-Shipping.exe"+440915: 48 8B CE - mov rcx,rsi
"FSD-Win64-Shipping.exe"+440918: FF 90 28 07 00 00 - call qword ptr [rax+00000728]
"FSD-Win64-Shipping.exe"+44091E: 48 8B BC 24 40 01 00 00 - mov rdi,[rsp+00000140]
"FSD-Win64-Shipping.exe"+440926: 32 DB - xor bl,bl
"FSD-Win64-Shipping.exe"+440928: F3 0F 58 86 5C 06 00 00 - addss xmm0,dword ptr [rsi+0000065C]
"FSD-Win64-Shipping.exe"+440930: C6 86 AE 06 00 00 02 - mov byte ptr [rsi+000006AE],02
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+440937: F3 0F 11 86 5C 06 00 00 - movss [rsi+0000065C],xmm0
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+44093F: 38 9E 94 06 00 00 - cmp [rsi+00000694],bl
"FSD-Win64-Shipping.exe"+440945: 75 20 - jne FSD-Win64-Shipping.exe+440967
"FSD-Win64-Shipping.exe"+440947: 8B 86 48 06 00 00 - mov eax,[rsi+00000648]
"FSD-Win64-Shipping.exe"+44094D: 39 86 A8 06 00 00 - cmp [rsi+000006A8],eax
"FSD-Win64-Shipping.exe"+440953: 7C 12 - jl FSD-Win64-Shipping.exe+440967
"FSD-Win64-Shipping.exe"+440955: 44 88 B6 AD 06 00 00 - mov [rsi+000006AD],r14l
"FSD-Win64-Shipping.exe"+44095C: B3 01 - mov bl,01
"FSD-Win64-Shipping.exe"+44095E: 44 89 B6 A8 06 00 00 - mov [rsi+000006A8],r14d
"FSD-Win64-Shipping.exe"+440965: EB 32 - jmp FSD-Win64-Shipping.exe+440999
"FSD-Win64-Shipping.exe"+440967: 8B 86 A8 06 00 00 - mov eax,[rsi+000006A8]
}
24
"no spread"
Auto Assembler Script
{ Game : FSD-Win64-Shipping.exe
Version:
Date : 2018-12-06
Author : tiger
This script does blah blah blah
}
[ENABLE]
aobscanmodule(INJECT,FSD-Win64-Shipping.exe,F3 0F 11 83 0C 02 00 00 48) // should be unique
alloc(newmem,$1000,"FSD-Win64-Shipping.exe"+4ACE58)
label(code)
label(return)
newmem:
code:
//movss [rbx+0000020C],xmm0
jmp return
INJECT:
jmp newmem
nop
nop
nop
return:
registersymbol(INJECT)
[DISABLE]
INJECT:
db F3 0F 11 83 0C 02 00 00
unregistersymbol(INJECT)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "FSD-Win64-Shipping.exe"+4ACE58
"FSD-Win64-Shipping.exe"+4ACE20: 48 89 4C 24 20 - mov [rsp+20],rcx
"FSD-Win64-Shipping.exe"+4ACE25: 48 8D 54 24 60 - lea rdx,[rsp+60]
"FSD-Win64-Shipping.exe"+4ACE2A: 48 8B C8 - mov rcx,rax
"FSD-Win64-Shipping.exe"+4ACE2D: E8 5E 1E EC 00 - call FSD-Win64-Shipping.exe+136EC90
"FSD-Win64-Shipping.exe"+4ACE32: F3 0F 10 83 40 01 00 00 - movss xmm0,[rbx+00000140]
"FSD-Win64-Shipping.exe"+4ACE3A: F3 0F 58 83 0C 02 00 00 - addss xmm0,dword ptr [rbx+0000020C]
"FSD-Win64-Shipping.exe"+4ACE42: 48 8B 08 - mov rcx,[rax]
"FSD-Win64-Shipping.exe"+4ACE45: 48 89 8B 88 02 00 00 - mov [rbx+00000288],rcx
"FSD-Win64-Shipping.exe"+4ACE4C: 48 8B 4D E0 - mov rcx,[rbp-20]
"FSD-Win64-Shipping.exe"+4ACE50: F3 0F 5D 83 88 01 00 00 - minss xmm0,[rbx+00000188]
// ---------- INJECTING HERE ----------
"FSD-Win64-Shipping.exe"+4ACE58: F3 0F 11 83 0C 02 00 00 - movss [rbx+0000020C],xmm0
// ---------- DONE INJECTING ----------
"FSD-Win64-Shipping.exe"+4ACE60: 48 85 C9 - test rcx,rcx
"FSD-Win64-Shipping.exe"+4ACE63: 74 05 - je FSD-Win64-Shipping.exe+4ACE6A
"FSD-Win64-Shipping.exe"+4ACE65: E8 B6 E5 17 00 - call FSD-Win64-Shipping.exe+62B420
"FSD-Win64-Shipping.exe"+4ACE6A: 48 8B 4D C0 - mov rcx,[rbp-40]
"FSD-Win64-Shipping.exe"+4ACE6E: 48 85 C9 - test rcx,rcx
"FSD-Win64-Shipping.exe"+4ACE71: 74 05 - je FSD-Win64-Shipping.exe+4ACE78
"FSD-Win64-Shipping.exe"+4ACE73: E8 A8 E5 17 00 - call FSD-Win64-Shipping.exe+62B420
"FSD-Win64-Shipping.exe"+4ACE78: 48 8B 4D F0 - mov rcx,[rbp-10]
"FSD-Win64-Shipping.exe"+4ACE7C: 48 33 CC - xor rcx,rsp
"FSD-Win64-Shipping.exe"+4ACE7F: E8 9C CA A7 01 - call FSD-Win64-Shipping.exe+1F29920
}