15
"Mono"
0000FF
Auto Assembler Script
[ENABLE]
{$lua}
LaunchMonoDataCollector()
[DISABLE]
//code from here till the end of the code will be used to disable the cheat
31
"EXP"
1
26
"AOB: Add XP x+"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscan(addXPAOB,89 48 04 48 63 8D D8 F6 FF FF) // should be unique
alloc(newmem,$1000,addXPAOB)
label(code)
label(return)
label(iAdd)
registersymbol(iAdd)
newmem:
code:
push rax
xor rax,rax
mov eax,[iadd]
add ecx,eax
pop rax
mov [rax+04],ecx
movsxd rcx,dword ptr [rbp-00000928]
jmp return
iAdd:
dd #100
addXPAOB:
jmp newmem
nop 5
return:
registersymbol(addXPAOB)
[DISABLE]
addXPAOB:
db 89 48 04 48 63 8D D8 F6 FF FF
unregistersymbol(addXPAOB)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 28BB9591440
28BB959140A: 03 D0 - add edx,eax
28BB959140C: 48 8B CD - mov rcx,rbp
28BB959140F: 48 81 C1 D0 F6 FF FF - add rcx,FFFFFFFFFFFFF6D0
28BB9591416: 49 BB D0 7F EB A3 8B 02 00 00 - mov r11,0000028BA3EB7FD0
28BB9591420: 41 FF D3 - call r11
28BB9591423: 48 8B 85 50 F4 FF FF - mov rax,[rbp-00000BB0]
28BB959142A: 48 05 D4 00 00 00 - add rax,000000D4
28BB9591430: 48 63 8D D0 F6 FF FF - movsxd rcx,dword ptr [rbp-00000930]
28BB9591437: 89 08 - mov [rax],ecx
28BB9591439: 48 63 8D D4 F6 FF FF - movsxd rcx,dword ptr [rbp-0000092C]
// ---------- INJECTING HERE ----------
28BB9591440: 89 48 04 - mov [rax+04],ecx
28BB9591443: 48 63 8D D8 F6 FF FF - movsxd rcx,dword ptr [rbp-00000928]
// ---------- DONE INJECTING ----------
28BB959144A: 89 48 08 - mov [rax+08],ecx
28BB959144D: 48 63 8D DC F6 FF FF - movsxd rcx,dword ptr [rbp-00000924]
28BB9591454: 89 48 0C - mov [rax+0C],ecx
28BB9591457: 48 63 8D E0 F6 FF FF - movsxd rcx,dword ptr [rbp-00000920]
28BB959145E: 89 48 10 - mov [rax+10],ecx
28BB9591461: 48 89 BD D0 F3 FF FF - mov [rbp-00000C30],rdi
28BB9591468: 48 8B 85 80 F3 FF FF - mov rax,[rbp-00000C80]
28BB959146F: 48 8B 80 B8 01 00 00 - mov rax,[rax+000001B8]
28BB9591476: 48 63 8D 48 F4 FF FF - movsxd rcx,dword ptr [rbp-00000BB8]
28BB959147D: 48 63 C9 - movsxd rcx,ecx
}
24
"Mono: Add XP x+"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscanregion(aobXP,PrimroseBattle:MBAPOGNNPJK,PrimroseBattle:MBAPOGNNPJK+2000,D4 F6 FF FF 89 48 04 ) // should be unique
alloc(newmem,$1000,aobXP)
label(code)
label(return)
label(iadd)
registersymbol(iadd)
newmem:
code:
push rax
xor rax,rax
mov eax,[iadd]
add ecx,eax
pop rax
mov [rax+04],ecx
movsxd rcx,dword ptr [rbp-00000928]
jmp return
iadd:
dd #100
aobXP+4:
jmp newmem
nop 5
return:
registersymbol(aobXP)
[DISABLE]
aobXP+4:
db 89 48 04 48 63 8D D8 F6 FF FF
unregistersymbol(aobXP)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 1D54B441440
1D54B44140A: 03 D0 - add edx,eax
1D54B44140C: 48 8B CD - mov rcx,rbp
1D54B44140F: 48 81 C1 D0 F6 FF FF - add rcx,FFFFFFFFFFFFF6D0
1D54B441416: 49 BB D0 7F 45 3A D5 01 00 00 - mov r11,000001D53A457FD0
1D54B441420: 41 FF D3 - call r11
1D54B441423: 48 8B 85 50 F4 FF FF - mov rax,[rbp-00000BB0]
1D54B44142A: 48 05 D4 00 00 00 - add rax,000000D4
1D54B441430: 48 63 8D D0 F6 FF FF - movsxd rcx,dword ptr [rbp-00000930]
1D54B441437: 89 08 - mov [rax],ecx
1D54B441439: 48 63 8D D4 F6 FF FF - movsxd rcx,dword ptr [rbp-0000092C]
// ---------- INJECTING HERE ----------
1D54B441440: 89 48 04 - mov [rax+04],ecx
1D54B441443: 48 63 8D D8 F6 FF FF - movsxd rcx,dword ptr [rbp-00000928]
// ---------- DONE INJECTING ----------
1D54B44144A: 89 48 08 - mov [rax+08],ecx
1D54B44144D: 48 63 8D DC F6 FF FF - movsxd rcx,dword ptr [rbp-00000924]
1D54B441454: 89 48 0C - mov [rax+0C],ecx
1D54B441457: 48 63 8D E0 F6 FF FF - movsxd rcx,dword ptr [rbp-00000920]
1D54B44145E: 89 48 10 - mov [rax+10],ecx
1D54B441461: 48 89 BD D0 F3 FF FF - mov [rbp-00000C30],rdi
1D54B441468: 48 8B 85 80 F3 FF FF - mov rax,[rbp-00000C80]
1D54B44146F: 48 8B 80 B8 01 00 00 - mov rax,[rax+000001B8]
1D54B441476: 48 63 8D 48 F4 FF FF - movsxd rcx,dword ptr [rbp-00000BB8]
1D54B44147D: 48 63 C9 - movsxd rcx,ecx
}
25
"x+"
??:Activate 1 Script!
FF8000
4 Bytes
iAdd
32
"Coins"
1
29
"Mono: Coins/Currency"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscanregion(aobmonocoin,MLODMCNJKCG:DMKCCPHDFDF,MLODMCNJKCG:DMKCCPHDFDF+50,89 48 04) // should be unique
alloc(newmem,$1000,aobmonocoin)
label(code)
label(return)
newmem:
code:
add ecx,10000
mov [rax+04],ecx
movsxd rcx,dword ptr [rbp-28]
jmp return
aobmonocoin:
jmp newmem
nop 2
return:
registersymbol(aobmonocoin)
[DISABLE]
aobmonocoin:
db 89 48 04 48 63 4D D8
unregistersymbol(aobmonocoin)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 2A2D4FA76CF
2A2D4FA76A3: 48 83 C1 D0 - add rcx,-30
2A2D4FA76A7: 48 63 55 C0 - movsxd rdx,dword ptr [rbp-40]
2A2D4FA76AB: 66 66 90 - nop
2A2D4FA76AE: 49 BB 75 73 B8 C7 A2 02 00 00 - mov r11,000002A2C7B87375
2A2D4FA76B8: 41 FF D3 - call r11
2A2D4FA76BB: 48 8B 45 C8 - mov rax,[rbp-38]
2A2D4FA76BF: 48 05 D8 00 00 00 - add rax,000000D8
2A2D4FA76C5: 48 63 4D D0 - movsxd rcx,dword ptr [rbp-30]
2A2D4FA76C9: 89 08 - mov [rax],ecx
2A2D4FA76CB: 48 63 4D D4 - movsxd rcx,dword ptr [rbp-2C]
// ---------- INJECTING HERE ----------
2A2D4FA76CF: 89 48 04 - mov [rax+04],ecx
2A2D4FA76D2: 48 63 4D D8 - movsxd rcx,dword ptr [rbp-28]
// ---------- DONE INJECTING ----------
2A2D4FA76D6: 89 48 08 - mov [rax+08],ecx
2A2D4FA76D9: 48 63 4D DC - movsxd rcx,dword ptr [rbp-24]
2A2D4FA76DD: 89 48 0C - mov [rax+0C],ecx
2A2D4FA76E0: 48 63 4D E0 - movsxd rcx,dword ptr [rbp-20]
2A2D4FA76E4: 89 48 10 - mov [rax+10],ecx
2A2D4FA76E7: 48 8D 65 00 - lea rsp,[rbp+00]
2A2D4FA76EB: 5D - pop rbp
2A2D4FA76EC: C3 - ret
2A2D4FA76ED: 00 00 - add [rax],al
2A2D4FA76EF: 00 01 - add [rcx],al
}
30
"AOB: Coins/Currency"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscan(aobte,D8 00 00 00 48 63 4D D0 89 08 48 63 4D D4 89 48 04) // should be unique
alloc(newmem,$1000,aobte)
label(code)
label(return)
newmem:
code:
movsxd rcx,dword ptr [rbp-2C]
add ecx,10000
mov [rax+04],ecx
jmp return
aobte+0A:
jmp newmem
nop 2
return:
registersymbol(aobte)
[DISABLE]
aobte+0A:
db 48 63 4D D4 89 48 04
unregistersymbol(aobte)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 2A2D4FA76CB
2A2D4FA76A0: 48 8B CD - mov rcx,rbp
2A2D4FA76A3: 48 83 C1 D0 - add rcx,-30
2A2D4FA76A7: 48 63 55 C0 - movsxd rdx,dword ptr [rbp-40]
2A2D4FA76AB: 66 66 90 - nop
2A2D4FA76AE: 49 BB 75 73 B8 C7 A2 02 00 00 - mov r11,000002A2C7B87375
2A2D4FA76B8: 41 FF D3 - call r11
2A2D4FA76BB: 48 8B 45 C8 - mov rax,[rbp-38]
2A2D4FA76BF: 48 05 D8 00 00 00 - add rax,000000D8
2A2D4FA76C5: 48 63 4D D0 - movsxd rcx,dword ptr [rbp-30]
2A2D4FA76C9: 89 08 - mov [rax],ecx
// ---------- INJECTING HERE ----------
2A2D4FA76CB: 48 63 4D D4 - movsxd rcx,dword ptr [rbp-2C]
2A2D4FA76CF: 89 48 04 - mov [rax+04],ecx
// ---------- DONE INJECTING ----------
2A2D4FA76D2: 48 63 4D D8 - movsxd rcx,dword ptr [rbp-28]
2A2D4FA76D6: 89 48 08 - mov [rax+08],ecx
2A2D4FA76D9: 48 63 4D DC - movsxd rcx,dword ptr [rbp-24]
2A2D4FA76DD: 89 48 0C - mov [rax+0C],ecx
2A2D4FA76E0: 48 63 4D E0 - movsxd rcx,dword ptr [rbp-20]
2A2D4FA76E4: 89 48 10 - mov [rax+10],ecx
2A2D4FA76E7: 48 8D 65 00 - lea rsp,[rbp+00]
2A2D4FA76EB: 5D - pop rbp
2A2D4FA76EC: C3 - ret
2A2D4FA76ED: 00 00 - add [rax],al
}
43
"Health"
1
38
"AOB: Get Health"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscan(aobhealth,48 63 48 04 89 8D 94 FD FF FF 48 63 48 08 89 8D 98 FD FF FF 48 63 48) // should be unique
alloc(newmem,$1000,aobhealth)
label(code)
label(return)
alloc(nBase,$38)
registersymbol(nBase)
alloc(counter,4)
newmem:
code:
push rdx
xor rdx,rdx
mov rdx,[counter]
add rdx,8
push rbx
mov rbx,nBase
mov [rbx+rdx],rax
pop rbx
mov [counter],rdx
pop rdx
movsxd rcx,dword ptr [rax+04]
mov [rbp-0000026C],ecx
jmp return
counter:
dd 0
aobhealth:
jmp newmem
nop 5
return:
registersymbol(aobhealth)
[DISABLE]
aobhealth:
db 48 63 48 04 89 8D 94 FD FF FF
unregistersymbol(aobhealth)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 2271AFFBC9A
2271AFFBC6A: 0F 83 18 11 00 00 - jae 2271AFFCD88
2271AFFBC70: 48 8B 85 38 FC FF FF - mov rax,[rbp-000003C8]
2271AFFBC77: 48 8B 40 10 - mov rax,[rax+10]
2271AFFBC7B: 48 63 8D 30 FC FF FF - movsxd rcx,dword ptr [rbp-000003D0]
2271AFFBC82: 48 63 C9 - movsxd rcx,ecx
2271AFFBC85: 48 8D 44 C8 20 - lea rax,[rax+rcx*8+20]
2271AFFBC8A: 48 8B 00 - mov rax,[rax]
2271AFFBC8D: 48 83 C0 44 - add rax,44
2271AFFBC91: 48 63 08 - movsxd rcx,dword ptr [rax]
2271AFFBC94: 89 8D 90 FD FF FF - mov [rbp-00000270],ecx
// ---------- INJECTING HERE ----------
2271AFFBC9A: 48 63 48 04 - movsxd rcx,dword ptr [rax+04]
2271AFFBC9E: 89 8D 94 FD FF FF - mov [rbp-0000026C],ecx
// ---------- DONE INJECTING ----------
2271AFFBCA4: 48 63 48 08 - movsxd rcx,dword ptr [rax+08]
2271AFFBCA8: 89 8D 98 FD FF FF - mov [rbp-00000268],ecx
2271AFFBCAE: 48 63 48 0C - movsxd rcx,dword ptr [rax+0C]
2271AFFBCB2: 89 8D 9C FD FF FF - mov [rbp-00000264],ecx
2271AFFBCB8: 48 63 40 10 - movsxd rax,dword ptr [rax+10]
2271AFFBCBC: 89 85 A0 FD FF FF - mov [rbp-00000260],eax
2271AFFBCC2: 48 B9 C0 B9 60 11 27 02 00 00 - mov rcx,000002271160B9C0
2271AFFBCCC: 66 90 - nop
2271AFFBCCE: 49 BB A0 0F 87 02 27 02 00 00 - mov r11,0000022702870FA0
2271AFFBCD8: 41 FF D3 - call r11
}
39
"Mono: Get Health"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-03
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscanregion(monohelath,PrimroseNexoPad:FKNPLCAPHCH,PrimroseNexoPad:FKNPLCAPHCH+1000,89 8D 90 FD FF FF 48 63 48 04) // should be unique
alloc(newmem,$1000,monohelath)
label(code)
label(return)
alloc(nBase,$38)
registersymbol(nBase)
alloc(counter,4)
newmem:
code:
push rdx
xor rdx,rdx
mov rdx,[counter]
add rdx,8
push rbx
mov rbx,nBase
mov [rbx+rdx],rax
pop rbx
mov [counter],rdx
pop rdx
movsxd rcx,dword ptr [rax+04]
mov [rbp-0000026C],ecx
jmp return
counter:
dd 0
monohelath+6:
jmp newmem
nop 5
return:
registersymbol(monohelath)
[DISABLE]
monohelath+6:
db 48 63 48 04 89 8D 94 FD FF FF
unregistersymbol(monohelath)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 2271AFFBC9A
2271AFFBC6A: 0F 83 18 11 00 00 - jae 2271AFFCD88
2271AFFBC70: 48 8B 85 38 FC FF FF - mov rax,[rbp-000003C8]
2271AFFBC77: 48 8B 40 10 - mov rax,[rax+10]
2271AFFBC7B: 48 63 8D 30 FC FF FF - movsxd rcx,dword ptr [rbp-000003D0]
2271AFFBC82: 48 63 C9 - movsxd rcx,ecx
2271AFFBC85: 48 8D 44 C8 20 - lea rax,[rax+rcx*8+20]
2271AFFBC8A: 48 8B 00 - mov rax,[rax]
2271AFFBC8D: 48 83 C0 44 - add rax,44
2271AFFBC91: 48 63 08 - movsxd rcx,dword ptr [rax]
2271AFFBC94: 89 8D 90 FD FF FF - mov [rbp-00000270],ecx
// ---------- INJECTING HERE ----------
2271AFFBC9A: 48 63 48 04 - movsxd rcx,dword ptr [rax+04]
2271AFFBC9E: 89 8D 94 FD FF FF - mov [rbp-0000026C],ecx
// ---------- DONE INJECTING ----------
2271AFFBCA4: 48 63 48 08 - movsxd rcx,dword ptr [rax+08]
2271AFFBCA8: 89 8D 98 FD FF FF - mov [rbp-00000268],ecx
2271AFFBCAE: 48 63 48 0C - movsxd rcx,dword ptr [rax+0C]
2271AFFBCB2: 89 8D 9C FD FF FF - mov [rbp-00000264],ecx
2271AFFBCB8: 48 63 40 10 - movsxd rax,dword ptr [rax+10]
2271AFFBCBC: 89 85 A0 FD FF FF - mov [rbp-00000260],eax
2271AFFBCC2: 48 B9 C0 B9 60 11 27 02 00 00 - mov rcx,000002271160B9C0
2271AFFBCCC: 66 90 - nop
2271AFFBCCE: 49 BB A0 0F 87 02 27 02 00 00 - mov r11,0000022702870FA0
2271AFFBCD8: 41 FF D3 - call r11
}
40
"Slot 1"
1
4 Bytes
[nBase+8]+4
41
"Slot 2"
1
4 Bytes
[nBase+10]+4
42
"Slot 3"
1
4 Bytes
[nBase+18]+4
44
"Slot 4"
1
4 Bytes
[nBase+20]+4
45
"Slot 5"
1
4 Bytes
[nBase+28]+4
46
"Slot 6"
1
4 Bytes
[nBase+30]+4
14
""
1
7
"Get Pointer"
Auto Assembler Script
{ Game : Nexomon.exe
Version:
Date : 2019-12-02
Author : cfe
This script does blah blah blah
}
[ENABLE]
aobscanregion(aobHealth,FLEIMFKJBBP:ONBILJMJDLL,FLEIMFKJBBP:ONBILJMJDLL+233e,89 48 04 ) // should be unique
alloc(newmem,$1000,aobHealth)
label(code)
label(return)
alloc(Health,8)
registersymbol(Health)
newmem:
code:
mov [Health],rax
mov [rax+04],ecx
movsxd rcx,dword ptr [rbp-00000100]
jmp return
aobHealth:
jmp newmem
nop 5
return:
registersymbol(aobHealth)
[DISABLE]
aobHealth:
db 89 48 04 48 63 8D 00 FF FF FF
unregistersymbol(aobHealth)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: 1550000C1AE
1550000C179: 48 81 C1 F8 FE FF FF - add rcx,FFFFFFFFFFFFFEF8
1550000C180: 48 8D 64 24 00 - lea rsp,[rsp+00]
1550000C185: 90 - nop
1550000C186: 49 BB D0 7F FD EE 54 01 00 00 - mov r11,00000154EEFD7FD0
1550000C190: 41 FF D3 - call r11
1550000C193: 48 8B 85 28 FC FF FF - mov rax,[rbp-000003D8]
1550000C19A: 48 83 C0 44 - add rax,44
1550000C19E: 48 63 8D F8 FE FF FF - movsxd rcx,dword ptr [rbp-00000108]
1550000C1A5: 89 08 - mov [rax],ecx
1550000C1A7: 48 63 8D FC FE FF FF - movsxd rcx,dword ptr [rbp-00000104]
// ---------- INJECTING HERE ----------
1550000C1AE: 89 48 04 - mov [rax+04],ecx
1550000C1B1: 48 63 8D 00 FF FF FF - movsxd rcx,dword ptr [rbp-00000100]
// ---------- DONE INJECTING ----------
1550000C1B8: 89 48 08 - mov [rax+08],ecx
1550000C1BB: 48 63 8D 04 FF FF FF - movsxd rcx,dword ptr [rbp-000000FC]
1550000C1C2: 89 48 0C - mov [rax+0C],ecx
1550000C1C5: 48 63 8D 08 FF FF FF - movsxd rcx,dword ptr [rbp-000000F8]
1550000C1CC: 89 48 10 - mov [rax+10],ecx
1550000C1CF: 48 8B 46 10 - mov rax,[rsi+10]
1550000C1D3: 48 8B 40 10 - mov rax,[rax+10]
1550000C1D7: 48 8B 40 58 - mov rax,[rax+58]
1550000C1DB: 48 8B 48 10 - mov rcx,[rax+10]
1550000C1DF: 48 8D AD 00 00 00 00 - lea rbp,[rbp+00000000]
}
10
"Value"
??:Get Hit To Activate!
4 Bytes
[Health]+4
RAX=0000023556D113A4
RBX=0000000000000000
RCX=000000000006C811
RDX=0000000000000000
RSI=00000235592D0840
RDI=0000023558FA4390
RSP=00000056CDF0E420
RBP=00000056CDF0E8D0
RIP=000002353CCCDD21
R8=0000023541036CF8
R9=0000023541036990
R10=00000235388B6930
R11=00000235460C7740
R12=0000023558FA4390
R13=0000023558ECCB40
R14=0000000000000003
R15=0000023558ECCAE0
RAX=000001FF16D03164
RBX=000000000000007D
RCX=000000000006C813
RDX=0000000000000000
RSI=000001FF16C9AB10
RDI=000001FF1A3C2D10
RSP=000000F615F8E3B0
RBP=000000F615F8E860
RIP=000001FF0668C769
R8=000001FF7E80DF18
R9=000001FF7E80BED0
R10=000001FF78076930
R11=000001FF02E87740
R12=000001FF17684380
R13=000001FF176933A0
R14=0000000000000004
R15=000001FF17693340
//////////////////////
RAX=0000023556D11284
RBX=0000000000000000
RCX=000000000006C81D
RDX=0000000000000000
RSI=000002355900E930
RDI=0000023558FA4E40
RSP=00000056CDF0E420
RBP=00000056CDF0E8D0
RIP=000002353CCCDD21
R8=0000023541036CF8
R9=0000023541036F30
R10=00000235388B6930
R11=00000235460C7740
R12=0000023558FA4E40
R13=0000023558DDD320
R14=0000000000000003
R15=0000023558DDD2C0
RAX=000001FF19FD4EE4
RBX=000000000000007D
RCX=000000000006C810
RDX=0000000000000000
RSI=000001FF16CBC750
RDI=000001FF1A09B390
RSP=000000F615F8E3B0
RBP=000000F615F8E860
RIP=000001FF0668C769
R8=000001FF7E80DF18
R9=000001FF7E80BB10
R10=000001FF78076930
R11=000001FF02E87740
R12=000001FF7A8EB9A0
R13=000001FF34835F40
R14=0000000000000003
R15=000001FF34835EC0