128
"God"
Auto Assembler Script
{ Game : SpaceHulkGame-Win64-Shipping.exe
Version:
Date : 2019-02-21
Author : 0
This script does blah blah blah
}
define(address,"SpaceHulkGame-Win64-Shipping.exe"+31219D)
define(bytes,66 42 0F 6E 0C 88)
[ENABLE]
assert(address,bytes)
alloc(newmem,$1000,"SpaceHulkGame-Win64-Shipping.exe"+31219D)
label(code)
label(return)
newmem:
mov [rax],64
mov [rax+4],64
mov [rax+8],64
mov [rax+C],64
mov [rax+10],64
code:
movd xmm1,[rax+r9*4]
jmp return
address:
jmp newmem
nop
return:
[DISABLE]
address:
db bytes
// movd xmm1,[rax+r9*4]
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "SpaceHulkGame-Win64-Shipping.exe"+31219D
"SpaceHulkGame-Win64-Shipping.exe"+312189: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218A: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218B: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218C: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218D: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218E: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+31218F: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+312190: 48 8B 81 28 1D 00 00 - mov rax,[rcx+00001D28]
"SpaceHulkGame-Win64-Shipping.exe"+312197: 4D 63 C8 - movsxd r9,r8d
"SpaceHulkGame-Win64-Shipping.exe"+31219A: 48 63 D2 - movsxd rdx,edx
// ---------- INJECTING HERE ----------
"SpaceHulkGame-Win64-Shipping.exe"+31219D: 66 42 0F 6E 0C 88 - movd xmm1,[rax+r9*4]
// ---------- DONE INJECTING ----------
"SpaceHulkGame-Win64-Shipping.exe"+3121A3: 48 8B 81 40 1D 00 00 - mov rax,[rcx+00001D40]
"SpaceHulkGame-Win64-Shipping.exe"+3121AA: 0F 5B C9 - cvtdq2ps xmm1,xmm1
"SpaceHulkGame-Win64-Shipping.exe"+3121AD: 66 42 0F 6E 04 88 - movd xmm0,[rax+r9*4]
"SpaceHulkGame-Win64-Shipping.exe"+3121B3: 48 8B 81 C0 1D 00 00 - mov rax,[rcx+00001DC0]
"SpaceHulkGame-Win64-Shipping.exe"+3121BA: 0F 5B C0 - cvtdq2ps xmm0,xmm0
"SpaceHulkGame-Win64-Shipping.exe"+3121BD: F3 0F 5E C8 - divss xmm1,xmm0
"SpaceHulkGame-Win64-Shipping.exe"+3121C1: 66 0F 6E 04 90 - movd xmm0,[rax+rdx*4]
"SpaceHulkGame-Win64-Shipping.exe"+3121C6: F3 0F 59 0D BA 8F 06 02 - mulss xmm1,[SpaceHulkGame-Win64-Shipping.exe+237B188]
"SpaceHulkGame-Win64-Shipping.exe"+3121CE: 0F 5B C0 - cvtdq2ps xmm0,xmm0
"SpaceHulkGame-Win64-Shipping.exe"+3121D1: 0F 2F C1 - comiss xmm0,xmm1
}
113
"Cooldown"
Auto Assembler Script
{ Game : SpaceHulkGame-Win64-Shipping.exe
Version:
Date : 2019-02-21
Author : 0
This script does blah blah blah
}
[ENABLE]
aobscanmodule(cooldown3,SpaceHulkGame-Win64-Shipping.exe,F3 0F 5C 81 58 01 00 00) // should be unique
alloc(newmem,$1000,"SpaceHulkGame-Win64-Shipping.exe"+249B11)
label(code)
label(return)
newmem:
mov [rcx+00000158],(float)9999.0
code:
subss xmm0,[rcx+00000158]
jmp return
cooldown3:
jmp newmem
nop
nop
nop
return:
registersymbol(cooldown3)
[DISABLE]
cooldown3:
db F3 0F 5C 81 58 01 00 00
unregistersymbol(cooldown3)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "SpaceHulkGame-Win64-Shipping.exe"+249B11
"SpaceHulkGame-Win64-Shipping.exe"+249AE3: 76 17 - jna SpaceHulkGame-Win64-Shipping.exe+249AFC
"SpaceHulkGame-Win64-Shipping.exe"+249AE5: F3 0F 58 D1 - addss xmm2,xmm1
"SpaceHulkGame-Win64-Shipping.exe"+249AE9: F3 0F 5C C2 - subss xmm0,xmm2
"SpaceHulkGame-Win64-Shipping.exe"+249AED: F3 0F 11 91 58 01 00 00 - movss [rcx+00000158],xmm2
"SpaceHulkGame-Win64-Shipping.exe"+249AF5: F3 41 0F 11 00 - movss [r8],xmm0
"SpaceHulkGame-Win64-Shipping.exe"+249AFA: EB 0D - jmp SpaceHulkGame-Win64-Shipping.exe+249B09
"SpaceHulkGame-Win64-Shipping.exe"+249AFC: 0F 2F D0 - comiss xmm2,xmm0
"SpaceHulkGame-Win64-Shipping.exe"+249AFF: 76 08 - jna SpaceHulkGame-Win64-Shipping.exe+249B09
"SpaceHulkGame-Win64-Shipping.exe"+249B01: F3 0F 11 81 58 01 00 00 - movss [rcx+00000158],xmm0
"SpaceHulkGame-Win64-Shipping.exe"+249B09: F3 0F 10 81 64 01 00 00 - movss xmm0,[rcx+00000164]
// ---------- INJECTING HERE ----------
"SpaceHulkGame-Win64-Shipping.exe"+249B11: F3 0F 5C 81 58 01 00 00 - subss xmm0,[rcx+00000158]
// ---------- DONE INJECTING ----------
"SpaceHulkGame-Win64-Shipping.exe"+249B19: F3 41 0F 11 00 - movss [r8],xmm0
"SpaceHulkGame-Win64-Shipping.exe"+249B1E: C3 - ret
"SpaceHulkGame-Win64-Shipping.exe"+249B1F: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+249B20: 48 89 5C 24 10 - mov [rsp+10],rbx
"SpaceHulkGame-Win64-Shipping.exe"+249B25: 48 89 6C 24 18 - mov [rsp+18],rbp
"SpaceHulkGame-Win64-Shipping.exe"+249B2A: 56 - push rsi
"SpaceHulkGame-Win64-Shipping.exe"+249B2B: 57 - push rdi
"SpaceHulkGame-Win64-Shipping.exe"+249B2C: 41 54 - push r12
"SpaceHulkGame-Win64-Shipping.exe"+249B2E: 41 56 - push r14
"SpaceHulkGame-Win64-Shipping.exe"+249B30: 41 57 - push r15
}
142
"Sprint Speed"
Auto Assembler Script
{ Game : SpaceHulkGame-Win64-Shipping.exe
Version:
Date : 2019-02-21
Author : 0
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Sprint,SpaceHulkGame-Win64-Shipping.exe,C6 81 C4 0D 00 00 00) // should be unique
alloc(newmem,$1000,"SpaceHulkGame-Win64-Shipping.exe"+326390)
alloc(SSpeed2,256)
label(code)
label(return)
label(SSpeed)
registersymbol(SSpeed)
SSpeed2:
SSpeed:
dd (float)2
newmem:
push eax
mov eax,[SSpeed]
mov [rcx+00000DB0],(float)100.0 //Breath/stamina
mov [rcx+00000DAC],(float)100.0
mov [rcx+00000E0C],eax //Sprint Speed
pop eax
code:
mov byte ptr [rcx+00000DC4],00
jmp return
Sprint:
jmp newmem
nop
nop
return:
registersymbol(Sprint)
[DISABLE]
Sprint:
db C6 81 C4 0D 00 00 00
unregistersymbol(Sprint)
unregistersymbol(SSpeed)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "SpaceHulkGame-Win64-Shipping.exe"+326390
"SpaceHulkGame-Win64-Shipping.exe"+32637C: 48 83 C4 20 - add rsp,20
"SpaceHulkGame-Win64-Shipping.exe"+326380: 5B - pop rbx
"SpaceHulkGame-Win64-Shipping.exe"+326381: E9 6A 55 F6 00 - jmp SpaceHulkGame-Win64-Shipping.exe+128B8F0
"SpaceHulkGame-Win64-Shipping.exe"+326386: 48 83 C4 20 - add rsp,20
"SpaceHulkGame-Win64-Shipping.exe"+32638A: 5B - pop rbx
"SpaceHulkGame-Win64-Shipping.exe"+32638B: C3 - ret
"SpaceHulkGame-Win64-Shipping.exe"+32638C: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32638D: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32638E: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32638F: CC - int 3
// ---------- INJECTING HERE ----------
"SpaceHulkGame-Win64-Shipping.exe"+326390: C6 81 C4 0D 00 00 00 - mov byte ptr [rcx+00000DC4],00
// ---------- DONE INJECTING ----------
"SpaceHulkGame-Win64-Shipping.exe"+326397: C3 - ret
"SpaceHulkGame-Win64-Shipping.exe"+326398: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+326399: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639A: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639B: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639C: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639D: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639E: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+32639F: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+3263A0: 40 57 - push rdi
}
146
"Speed (2 = original)"
Float
SSpeed
105
"Ammo2"
Auto Assembler Script
{ Game : SpaceHulkGame-Win64-Shipping.exe
Version:
Date : 2019-02-21
Author : 0
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Ammo2,SpaceHulkGame-Win64-Shipping.exe,2B C2 33 D2 85 C0) // should be unique
alloc(newmem,$1000,"SpaceHulkGame-Win64-Shipping.exe"+2BAB0E)
label(code)
label(return)
newmem:
code:
// sub eax,edx
xor edx,edx
test eax,eax
jmp return
Ammo2:
jmp newmem
nop
return:
registersymbol(Ammo2)
[DISABLE]
Ammo2:
db 2B C2 33 D2 85 C0
unregistersymbol(Ammo2)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "SpaceHulkGame-Win64-Shipping.exe"+2BAB0E
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFA: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFB: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFC: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFD: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFE: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAAFF: CC - int 3
"SpaceHulkGame-Win64-Shipping.exe"+2BAB00: 85 D2 - test edx,edx
"SpaceHulkGame-Win64-Shipping.exe"+2BAB02: 7E 2B - jle SpaceHulkGame-Win64-Shipping.exe+2BAB2F
"SpaceHulkGame-Win64-Shipping.exe"+2BAB04: 44 8B 81 30 04 00 00 - mov r8d,[rcx+00000430]
"SpaceHulkGame-Win64-Shipping.exe"+2BAB0B: 41 8B C0 - mov eax,r8d
// ---------- INJECTING HERE ----------
"SpaceHulkGame-Win64-Shipping.exe"+2BAB0E: 2B C2 - sub eax,edx
"SpaceHulkGame-Win64-Shipping.exe"+2BAB10: 33 D2 - xor edx,edx
"SpaceHulkGame-Win64-Shipping.exe"+2BAB12: 85 C0 - test eax,eax
// ---------- DONE INJECTING ----------
"SpaceHulkGame-Win64-Shipping.exe"+2BAB14: 0F 4E C2 - cmovle eax,edx
"SpaceHulkGame-Win64-Shipping.exe"+2BAB17: 38 91 48 04 00 00 - cmp [rcx+00000448],dl
"SpaceHulkGame-Win64-Shipping.exe"+2BAB1D: 74 05 - je SpaceHulkGame-Win64-Shipping.exe+2BAB24
"SpaceHulkGame-Win64-Shipping.exe"+2BAB1F: 41 3B C0 - cmp eax,r8d
"SpaceHulkGame-Win64-Shipping.exe"+2BAB22: 7C 0B - jl SpaceHulkGame-Win64-Shipping.exe+2BAB2F
"SpaceHulkGame-Win64-Shipping.exe"+2BAB24: 89 81 30 04 00 00 - mov [rcx+00000430],eax
"SpaceHulkGame-Win64-Shipping.exe"+2BAB2A: E9 C1 15 FF FF - jmp SpaceHulkGame-Win64-Shipping.exe+2AC0F0
"SpaceHulkGame-Win64-Shipping.exe"+2BAB2F: C3 - ret
"SpaceHulkGame-Win64-Shipping.exe"+2BAB30: 48 89 5C 24 08 - mov [rsp+08],rbx
"SpaceHulkGame-Win64-Shipping.exe"+2BAB35: 57 - push rdi
}