supex0 wrote: ↑Mon Feb 07, 2022 11:17 am
some stuff I did, works on latest steam version (last checked february 7th 2022)
// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.3.0
// Module Version :
// Script Date : 2022-02-05
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_survivorsense,gamedll_ph_x64_rwdi.dll,0F B6 85 50 06 00 00)
registersymbol(aob_survivorsense)
alloc(newmem_survivorsense,1024,gamedll_ph_x64_rwdi.dll)
label(return_survivorsense)
label(set_survivorsense)
label(quit_survivorsense)
newmem_survivorsense:
set_survivorsense:
mov byte ptr [rbp+00000650],1
//jmp quit_survivorsense
quit_survivorsense:
movzx eax,byte ptr [rbp+00000650]
jmp return_survivorsense
aob_survivorsense:
jmp newmem_survivorsense
nop 2
return_survivorsense:
[DISABLE]
aob_survivorsense:
db 0F B6 85 50 06 00 00
unregistersymbol(aob_survivorsense)
dealloc(newmem_survivorsense)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+1251195
gamedll_ph_x64_rwdi.dll+1251114: 48 8B 88 F8 1C 00 00 - mov rcx,[rax+00001CF8]
gamedll_ph_x64_rwdi.dll+125111B: 48 85 C9 - test rcx,rcx
gamedll_ph_x64_rwdi.dll+125111E: 74 0F - je gamedll_ph_x64_rwdi.dll+125112F
gamedll_ph_x64_rwdi.dll+1251120: C5 78 2F 89 F4 00 00 00 - vcomiss xmm9,[rcx+000000F4]
gamedll_ph_x64_rwdi.dll+1251128: 0F 92 85 50 06 00 00 - setb byte ptr [rbp+00000650]
gamedll_ph_x64_rwdi.dll+125112F: 48 39 BB D8 00 00 00 - cmp [rbx+000000D8],rdi
gamedll_ph_x64_rwdi.dll+1251136: 74 09 - je gamedll_ph_x64_rwdi.dll+1251141
gamedll_ph_x64_rwdi.dll+1251138: 48 8B 8B E0 00 00 00 - mov rcx,[rbx+000000E0]
gamedll_ph_x64_rwdi.dll+125113F: EB 03 - jmp gamedll_ph_x64_rwdi.dll+1251144
gamedll_ph_x64_rwdi.dll+1251141: 48 8B CF - mov rcx,rdi
gamedll_ph_x64_rwdi.dll+1251144: 48 8B 01 - mov rax,[rcx]
gamedll_ph_x64_rwdi.dll+1251147: FF 90 C0 01 00 00 - call qword ptr [rax+000001C0]
gamedll_ph_x64_rwdi.dll+125114D: C5 F8 28 F0 - vmovaps xmm6,xmm0
gamedll_ph_x64_rwdi.dll+1251151: 45 84 ED - test r13l,r13l
gamedll_ph_x64_rwdi.dll+1251154: 74 3F - je gamedll_ph_x64_rwdi.dll+1251195
gamedll_ph_x64_rwdi.dll+1251156: 48 39 BB D8 00 00 00 - cmp [rbx+000000D8],rdi
gamedll_ph_x64_rwdi.dll+125115D: 74 09 - je gamedll_ph_x64_rwdi.dll+1251168
gamedll_ph_x64_rwdi.dll+125115F: 48 8B 8B E0 00 00 00 - mov rcx,[rbx+000000E0]
gamedll_ph_x64_rwdi.dll+1251166: EB 03 - jmp gamedll_ph_x64_rwdi.dll+125116B
gamedll_ph_x64_rwdi.dll+1251168: 48 8B CF - mov rcx,rdi
gamedll_ph_x64_rwdi.dll+125116B: E8 E0 06 45 00 - call gamedll_ph_x64_rwdi.dll+16A1850
gamedll_ph_x64_rwdi.dll+1251170: C4 C1 78 2F C1 - vcomiss xmm0,xmm9
gamedll_ph_x64_rwdi.dll+1251175: 76 1E - jna gamedll_ph_x64_rwdi.dll+1251195
gamedll_ph_x64_rwdi.dll+1251177: 48 39 BB D8 00 00 00 - cmp [rbx+000000D8],rdi
gamedll_ph_x64_rwdi.dll+125117E: 74 09 - je gamedll_ph_x64_rwdi.dll+1251189
gamedll_ph_x64_rwdi.dll+1251180: 48 8B 8B E0 00 00 00 - mov rcx,[rbx+000000E0]
gamedll_ph_x64_rwdi.dll+1251187: EB 03 - jmp gamedll_ph_x64_rwdi.dll+125118C
gamedll_ph_x64_rwdi.dll+1251189: 48 8B CF - mov rcx,rdi
gamedll_ph_x64_rwdi.dll+125118C: E8 BF 06 45 00 - call gamedll_ph_x64_rwdi.dll+16A1850
gamedll_ph_x64_rwdi.dll+1251191: C5 F8 28 F0 - vmovaps xmm6,xmm0
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+1251195: 0F B6 85 50 06 00 00 - movzx eax,byte ptr [rbp+00000650]
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+125119C: 48 8B 8B D8 00 00 00 - mov rcx,[rbx+000000D8]
gamedll_ph_x64_rwdi.dll+12511A3: C5 F9 6E C0 - vmovd xmm0,eax
gamedll_ph_x64_rwdi.dll+12511A7: C5 F9 6E CF - vmovd xmm1,edi
gamedll_ph_x64_rwdi.dll+12511AB: C5 F9 76 D1 - vpcmpeqd xmm2,xmm0,xmm1
gamedll_ph_x64_rwdi.dll+12511AF: C5 FA 10 0D 8D 92 BB 00 - vmovss xmm1,[gamedll_ph_x64_rwdi.dll+1E0A444]
gamedll_ph_x64_rwdi.dll+12511B7: C4 E3 71 4A C6 20 - vblendvps xmm0,xmm1,xmm6,xmm2
gamedll_ph_x64_rwdi.dll+12511BD: C5 FA 11 44 24 20 - vmovss [rsp+20],xmm0
gamedll_ph_x64_rwdi.dll+12511C3: 48 85 C9 - test rcx,rcx
gamedll_ph_x64_rwdi.dll+12511C6: 74 09 - je gamedll_ph_x64_rwdi.dll+12511D1
gamedll_ph_x64_rwdi.dll+12511C8: 48 8B 83 E0 00 00 00 - mov rax,[rbx+000000E0]
gamedll_ph_x64_rwdi.dll+12511CF: EB 03 - jmp gamedll_ph_x64_rwdi.dll+12511D4
gamedll_ph_x64_rwdi.dll+12511D1: 48 8B C7 - mov rax,rdi
gamedll_ph_x64_rwdi.dll+12511D4: 0F B6 80 A2 00 00 00 - movzx eax,byte ptr [rax+000000A2]
gamedll_ph_x64_rwdi.dll+12511DB: 38 83 F9 00 00 00 - cmp [rbx+000000F9],al
gamedll_ph_x64_rwdi.dll+12511E1: 74 25 - je gamedll_ph_x64_rwdi.dll+1251208
gamedll_ph_x64_rwdi.dll+12511E3: 48 85 C9 - test rcx,rcx
gamedll_ph_x64_rwdi.dll+12511E6: 74 09 - je gamedll_ph_x64_rwdi.dll+12511F1
gamedll_ph_x64_rwdi.dll+12511E8: 48 8B 83 E0 00 00 00 - mov rax,[rbx+000000E0]
gamedll_ph_x64_rwdi.dll+12511EF: EB 03 - jmp gamedll_ph_x64_rwdi.dll+12511F4
gamedll_ph_x64_rwdi.dll+12511F1: 48 8B C7 - mov rax,rdi
gamedll_ph_x64_rwdi.dll+12511F4: 0F B6 80 A2 00 00 00 - movzx eax,byte ptr [rax+000000A2]
gamedll_ph_x64_rwdi.dll+12511FB: 80 8B F8 00 00 00 01 - or byte ptr [rbx+000000F8],01
gamedll_ph_x64_rwdi.dll+1251202: 88 83 F9 00 00 00 - mov [rbx+000000F9],al
gamedll_ph_x64_rwdi.dll+1251208: C5 FA 10 44 24 20 - vmovss xmm0,[rsp+20]
gamedll_ph_x64_rwdi.dll+125120E: C5 F8 2E 83 10 02 00 00 - vucomiss xmm0,[rbx+00000210]
gamedll_ph_x64_rwdi.dll+1251216: 74 21 - je gamedll_ph_x64_rwdi.dll+1251239
gamedll_ph_x64_rwdi.dll+1251218: 48 8B 03 - mov rax,[rbx]
gamedll_ph_x64_rwdi.dll+125121B: 41 B8 00 00 01 00 - mov r8d,00010000
gamedll_ph_x64_rwdi.dll+1251221: C5 FA 11 83 10 02 00 00 - vmovss [rbx+00000210],xmm0
gamedll_ph_x64_rwdi.dll+1251229: 48 8B 15 D8 0A D3 01 - mov rdx,[gamedll_ph_x64_rwdi.dll+2F81D08]
}
{ Game : DyingLightGame_x64_rwdi.exe
Version:
Date : 2022-02-07
Author : supex0
This script does blah blah blah
}
[ENABLE]
aobscanmodule(blastmod_infinite,gamedll_ph_x64_rwdi.dll,C5 FA 10 44 D7 5C) // should be unique
alloc(newmem,$1000,blastmod_infinite)
label(code)
label(return)
newmem:
mov dword[rdi+rdx*8+5C],(float)100.0
code:
vmovss xmm0,[rdi+rdx*8+5C]
jmp return
blastmod_infinite:
jmp newmem
nop
return:
registersymbol(blastmod_infinite)
[DISABLE]
blastmod_infinite:
db C5 FA 10 44 D7 5C
unregistersymbol(blastmod_infinite)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+1900516
gamedll_ph_x64_rwdi.dll+19004F5: 57 - push rdi
gamedll_ph_x64_rwdi.dll+19004F6: 48 83 EC 20 - sub rsp,20
gamedll_ph_x64_rwdi.dll+19004FA: 48 63 DA - movsxd rbx,edx
gamedll_ph_x64_rwdi.dll+19004FD: 48 8B F9 - mov rdi,rcx
gamedll_ph_x64_rwdi.dll+1900500: 83 FB 03 - cmp ebx,03
gamedll_ph_x64_rwdi.dll+1900503: 77 2A - ja gamedll_ph_x64_rwdi.dll+190052F
gamedll_ph_x64_rwdi.dll+1900505: 48 8B 01 - mov rax,[rcx]
gamedll_ph_x64_rwdi.dll+1900508: FF 90 D8 02 00 00 - call qword ptr [rax+000002D8]
gamedll_ph_x64_rwdi.dll+190050E: C5 F0 57 C9 - vxorps xmm1,xmm1,xmm1
gamedll_ph_x64_rwdi.dll+1900512: 48 8D 14 5B - lea rdx,[rbx+rbx*2]
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+1900516: C5 FA 10 44 D7 5C - vmovss xmm0,[rdi+rdx*8+5C]
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+190051C: C5 F2 2A C8 - vcvtsi2ss xmm1,ecx,eax
gamedll_ph_x64_rwdi.dll+1900520: C5 FA 5E C1 - vdivss xmm0,xmm0,xmm1
gamedll_ph_x64_rwdi.dll+1900524: 48 8B 5C 24 30 - mov rbx,[rsp+30]
gamedll_ph_x64_rwdi.dll+1900529: 48 83 C4 20 - add rsp,20
gamedll_ph_x64_rwdi.dll+190052D: 5F - pop rdi
gamedll_ph_x64_rwdi.dll+190052E: C3 - ret
gamedll_ph_x64_rwdi.dll+190052F: 48 8B 5C 24 30 - mov rbx,[rsp+30]
gamedll_ph_x64_rwdi.dll+1900534: C5 F8 57 C0 - vxorps xmm0,xmm0,xmm0
gamedll_ph_x64_rwdi.dll+1900538: 48 83 C4 20 - add rsp,20
gamedll_ph_x64_rwdi.dll+190053C: 5F - pop rdi
}
------
update february 8th, some more stuff I worked on:
// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.4.0
// Module Version :
// Script Date : 2022-02-07
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_survivor_sense_always_show_compass,gamedll_ph_x64_rwdi.dll,49 BD 00 00 00 00 00 00 00 20 E8)
registersymbol(aob_survivor_sense_always_show_compass)
aob_survivor_sense_always_show_compass+0F:
xor rax,rax
[DISABLE]
aob_survivor_sense_always_show_compass+0F:
mov r15,rax
unregistersymbol(aob_survivor_sense_always_show_compass)
dealloc(newmem_survivor_sense_always_show_compass)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+8C71FD
gamedll_ph_x64_rwdi.dll+8C718C: 74 37 - je gamedll_ph_x64_rwdi.dll+8C71C5
gamedll_ph_x64_rwdi.dll+8C718E: 8B D3 - mov edx,ebx
gamedll_ph_x64_rwdi.dll+8C7190: 48 8D 4D 77 - lea rcx,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7194: E8 B7 F7 0A 00 - call gamedll_ph_x64_rwdi.dll+976950
gamedll_ph_x64_rwdi.dll+8C7199: 48 8B 45 77 - mov rax,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C719D: 49 8B D5 - mov rdx,r13
gamedll_ph_x64_rwdi.dll+8C71A0: 49 23 C4 - and rax,r12
gamedll_ph_x64_rwdi.dll+8C71A3: 89 58 F8 - mov [rax-08],ebx
gamedll_ph_x64_rwdi.dll+8C71A6: 48 8B 7D 77 - mov rdi,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C71AA: 49 23 FC - and rdi,r12
gamedll_ph_x64_rwdi.dll+8C71AD: 8B DB - mov ebx,ebx
gamedll_ph_x64_rwdi.dll+8C71AF: 48 8B CF - mov rcx,rdi
gamedll_ph_x64_rwdi.dll+8C71B2: 44 8B C3 - mov r8d,ebx
gamedll_ph_x64_rwdi.dll+8C71B5: E8 56 3E 3C 01 - call gamedll_ph_x64_rwdi.dll+1C8B010
gamedll_ph_x64_rwdi.dll+8C71BA: C6 04 3B 00 - mov byte ptr [rbx+rdi],00
gamedll_ph_x64_rwdi.dll+8C71BE: 48 8D 3D 4B AB 67 01 - lea rdi,[gamedll_ph_x64_rwdi.dll+1F41D10]
gamedll_ph_x64_rwdi.dll+8C71C5: 4C 8D 05 24 68 31 02 - lea r8,[gamedll_ph_x64_rwdi.dll+2BDD9F0]
gamedll_ph_x64_rwdi.dll+8C71CC: 49 8B CF - mov rcx,r15
gamedll_ph_x64_rwdi.dll+8C71CF: 48 8D 55 77 - lea rdx,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C71D3: E8 E8 63 C5 FF - call gamedll_ph_x64_rwdi.dll+51D5C0
gamedll_ph_x64_rwdi.dll+8C71D8: 48 8B 45 77 - mov rax,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C71DC: 48 B9 00 00 00 00 00 00 00 E0 - mov rcx,E000000000000000
gamedll_ph_x64_rwdi.dll+8C71E6: 48 85 C1 - test rcx,rax
gamedll_ph_x64_rwdi.dll+8C71E9: 74 12 - je gamedll_ph_x64_rwdi.dll+8C71FD
gamedll_ph_x64_rwdi.dll+8C71EB: 49 23 C4 - and rax,r12
gamedll_ph_x64_rwdi.dll+8C71EE: 74 0D - je gamedll_ph_x64_rwdi.dll+8C71FD
gamedll_ph_x64_rwdi.dll+8C71F0: 48 8D 48 F8 - lea rcx,[rax-08]
gamedll_ph_x64_rwdi.dll+8C71F4: 8B 40 FC - mov eax,[rax-04]
gamedll_ph_x64_rwdi.dll+8C71F7: 83 E0 07 - and eax,07
gamedll_ph_x64_rwdi.dll+8C71FA: FF 14 C7 - call qword ptr [rdi+rax*8]
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+8C71FD: 49 BD 00 00 00 00 00 00 00 20 - mov r13,2000000000000000
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+8C7207: E8 D4 94 9D 00 - call gamedll_ph_x64_rwdi.dll+12A06E0
gamedll_ph_x64_rwdi.dll+8C720C: 4C 8B F8 - mov r15,rax
gamedll_ph_x64_rwdi.dll+8C720F: 48 85 C0 - test rax,rax
gamedll_ph_x64_rwdi.dll+8C7212: 0F 84 A5 00 00 00 - je gamedll_ph_x64_rwdi.dll+8C72BD
gamedll_ph_x64_rwdi.dll+8C7218: 4C 89 6D 77 - mov [rbp+77],r13
gamedll_ph_x64_rwdi.dll+8C721C: 4C 8D 2D C5 DF 03 02 - lea r13,[gamedll_ph_x64_rwdi.dll+29051E8]
gamedll_ph_x64_rwdi.dll+8C7223: 48 FF C6 - inc rsi
gamedll_ph_x64_rwdi.dll+8C7226: 42 80 3C 2E 00 - cmp byte ptr [rsi+r13],00
gamedll_ph_x64_rwdi.dll+8C722B: 75 F6 - jne gamedll_ph_x64_rwdi.dll+8C7223
gamedll_ph_x64_rwdi.dll+8C722D: 85 F6 - test esi,esi
gamedll_ph_x64_rwdi.dll+8C722F: 74 30 - je gamedll_ph_x64_rwdi.dll+8C7261
gamedll_ph_x64_rwdi.dll+8C7231: 8B D6 - mov edx,esi
gamedll_ph_x64_rwdi.dll+8C7233: 48 8D 4D 77 - lea rcx,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7237: E8 14 F7 0A 00 - call gamedll_ph_x64_rwdi.dll+976950
gamedll_ph_x64_rwdi.dll+8C723C: 48 8B 45 77 - mov rax,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7240: 49 8B D5 - mov rdx,r13
gamedll_ph_x64_rwdi.dll+8C7243: 49 23 C4 - and rax,r12
gamedll_ph_x64_rwdi.dll+8C7246: 44 8B C6 - mov r8d,esi
gamedll_ph_x64_rwdi.dll+8C7249: 8B DE - mov ebx,esi
gamedll_ph_x64_rwdi.dll+8C724B: 89 70 F8 - mov [rax-08],esi
gamedll_ph_x64_rwdi.dll+8C724E: 48 8B 7D 77 - mov rdi,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7252: 49 23 FC - and rdi,r12
gamedll_ph_x64_rwdi.dll+8C7255: 48 8B CF - mov rcx,rdi
gamedll_ph_x64_rwdi.dll+8C7258: E8 B3 3D 3C 01 - call gamedll_ph_x64_rwdi.dll+1C8B010
gamedll_ph_x64_rwdi.dll+8C725D: C6 04 3B 00 - mov byte ptr [rbx+rdi],00
gamedll_ph_x64_rwdi.dll+8C7261: 48 8D 55 77 - lea rdx,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7265: 49 8B CF - mov rcx,r15
gamedll_ph_x64_rwdi.dll+8C7268: E8 53 69 5D 00 - call gamedll_ph_x64_rwdi.dll+E9DBC0
gamedll_ph_x64_rwdi.dll+8C726D: 48 8B 4D 77 - mov rcx,[rbp+77]
gamedll_ph_x64_rwdi.dll+8C7271: 48 8B D8 - mov rbx,rax
}
// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.3.0
// Module Version :
// Script Date : 2022-02-07
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_infinite_targets,gamedll_ph_x64_rwdi.dll,C5 F8 2F 80 78 5F 00 00)
registersymbol(aob_infinite_targets)
alloc(newmem_infinite_targets,1024,gamedll_ph_x64_rwdi.dll)
label(return_infinite_targets)
label(set_infinite_targets)
label(quit_infinite_targets)
newmem_infinite_targets:
set_infinite_targets:
mov dword[rax+5F78],(float)79
//jmp quit_infinite_targets
quit_infinite_targets:
vcomiss xmm0,[rax+00005F78]
jmp return_infinite_targets
aob_infinite_targets:
jmp newmem_infinite_targets
nop 3
return_infinite_targets:
[DISABLE]
aob_infinite_targets:
db C5 F8 2F 80 78 5F 00 00
unregistersymbol(aob_infinite_targets)
dealloc(newmem_infinite_targets)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+4AF6A4
gamedll_ph_x64_rwdi.dll+4AF634: E8 E7 15 C7 00 - call gamedll_ph_x64_rwdi.dll+1120C20
gamedll_ph_x64_rwdi.dll+4AF639: 3B C3 - cmp eax,ebx
gamedll_ph_x64_rwdi.dll+4AF63B: EB 03 - jmp gamedll_ph_x64_rwdi.dll+4AF640
gamedll_ph_x64_rwdi.dll+4AF63D: 39 5D 10 - cmp [rbp+10],ebx
gamedll_ph_x64_rwdi.dll+4AF640: 49 8B CE - mov rcx,r14
gamedll_ph_x64_rwdi.dll+4AF643: 40 0F 9E C5 - setle bpl
gamedll_ph_x64_rwdi.dll+4AF647: E8 54 03 00 00 - call gamedll_ph_x64_rwdi.dll+4AF9A0
gamedll_ph_x64_rwdi.dll+4AF64C: 84 C0 - test al,al
gamedll_ph_x64_rwdi.dll+4AF64E: 74 37 - je gamedll_ph_x64_rwdi.dll+4AF687
gamedll_ph_x64_rwdi.dll+4AF650: 8B 15 12 1C 73 02 - mov edx,[gamedll_ph_x64_rwdi.dll+2BE1268]
gamedll_ph_x64_rwdi.dll+4AF656: 83 FA FF - cmp edx,-01
gamedll_ph_x64_rwdi.dll+4AF659: 75 16 - jne gamedll_ph_x64_rwdi.dll+4AF671
gamedll_ph_x64_rwdi.dll+4AF65B: 8B 05 5F 67 AE 02 - mov eax,[gamedll_ph_x64_rwdi.dll+2F95DC0]
gamedll_ph_x64_rwdi.dll+4AF661: 8B D0 - mov edx,eax
gamedll_ph_x64_rwdi.dll+4AF663: 89 05 FF 1B 73 02 - mov [gamedll_ph_x64_rwdi.dll+2BE1268],eax
gamedll_ph_x64_rwdi.dll+4AF669: FF C0 - inc eax
gamedll_ph_x64_rwdi.dll+4AF66B: 89 05 4F 67 AE 02 - mov [gamedll_ph_x64_rwdi.dll+2F95DC0],eax
gamedll_ph_x64_rwdi.dll+4AF671: 49 8B CE - mov rcx,r14
gamedll_ph_x64_rwdi.dll+4AF674: E8 A7 D9 72 00 - call gamedll_ph_x64_rwdi.dll+BDD020
gamedll_ph_x64_rwdi.dll+4AF679: 48 8B C8 - mov rcx,rax
gamedll_ph_x64_rwdi.dll+4AF67C: E8 EF 06 C3 00 - call gamedll_ph_x64_rwdi.dll+10DFD70
gamedll_ph_x64_rwdi.dll+4AF681: 3B C3 - cmp eax,ebx
gamedll_ph_x64_rwdi.dll+4AF683: 40 0F 9E C5 - setle bpl
gamedll_ph_x64_rwdi.dll+4AF687: 49 8B 06 - mov rax,[r14]
gamedll_ph_x64_rwdi.dll+4AF68A: 49 8B CE - mov rcx,r14
gamedll_ph_x64_rwdi.dll+4AF68D: FF 90 C0 05 00 00 - call qword ptr [rax+000005C0]
gamedll_ph_x64_rwdi.dll+4AF693: C5 F8 57 C0 - vxorps xmm0,xmm0,xmm0
gamedll_ph_x64_rwdi.dll+4AF697: C5 FA 2A C3 - vcvtsi2ss xmm0,eax,ebx
gamedll_ph_x64_rwdi.dll+4AF69B: 40 0F B6 CD - movzx ecx,bpl
gamedll_ph_x64_rwdi.dll+4AF69F: BA 01 00 00 00 - mov edx,00000001
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+4AF6A4: C5 F8 2F 80 78 5F 00 00 - vcomiss xmm0,[rax+00005F78]
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+4AF6AC: 0F 43 CA - cmovae ecx,edx
gamedll_ph_x64_rwdi.dll+4AF6AF: 84 C9 - test cl,cl
gamedll_ph_x64_rwdi.dll+4AF6B1: 74 62 - je gamedll_ph_x64_rwdi.dll+4AF715
gamedll_ph_x64_rwdi.dll+4AF6B3: 49 8B 0F - mov rcx,[r15]
gamedll_ph_x64_rwdi.dll+4AF6B6: 48 8B DE - mov rbx,rsi
gamedll_ph_x64_rwdi.dll+4AF6B9: C5 FA 10 35 67 2B 7E 01 - vmovss xmm6,[gamedll_ph_x64_rwdi.dll+1C92228]
gamedll_ph_x64_rwdi.dll+4AF6C1: 48 85 C9 - test rcx,rcx
gamedll_ph_x64_rwdi.dll+4AF6C4: 74 07 - je gamedll_ph_x64_rwdi.dll+4AF6CD
gamedll_ph_x64_rwdi.dll+4AF6C6: E8 85 62 4C 00 - call gamedll_ph_x64_rwdi.dll+975950
gamedll_ph_x64_rwdi.dll+4AF6CB: EB 03 - jmp gamedll_ph_x64_rwdi.dll+4AF6D0
gamedll_ph_x64_rwdi.dll+4AF6CD: 48 8B C6 - mov rax,rsi
gamedll_ph_x64_rwdi.dll+4AF6D0: 48 85 C0 - test rax,rax
gamedll_ph_x64_rwdi.dll+4AF6D3: 74 40 - je gamedll_ph_x64_rwdi.dll+4AF715
gamedll_ph_x64_rwdi.dll+4AF6D5: C5 F8 2F F7 - vcomiss xmm6,xmm7
gamedll_ph_x64_rwdi.dll+4AF6D9: 72 07 - jb gamedll_ph_x64_rwdi.dll+4AF6E2
gamedll_ph_x64_rwdi.dll+4AF6DB: C5 F8 2F 70 F0 - vcomiss xmm6,[rax-10]
gamedll_ph_x64_rwdi.dll+4AF6E0: 76 08 - jna gamedll_ph_x64_rwdi.dll+4AF6EA
gamedll_ph_x64_rwdi.dll+4AF6E2: C5 FA 10 70 F0 - vmovss xmm6,[rax-10]
gamedll_ph_x64_rwdi.dll+4AF6E7: 48 8B D8 - mov rbx,rax
gamedll_ph_x64_rwdi.dll+4AF6EA: 48 8B C8 - mov rcx,rax
gamedll_ph_x64_rwdi.dll+4AF6ED: E8 4E 5C 4C 00 - call gamedll_ph_x64_rwdi.dll+975340
gamedll_ph_x64_rwdi.dll+4AF6F2: 48 85 C0 - test rax,rax
gamedll_ph_x64_rwdi.dll+4AF6F5: 75 DE - jne gamedll_ph_x64_rwdi.dll+4AF6D5
gamedll_ph_x64_rwdi.dll+4AF6F7: 48 85 DB - test rbx,rbx
gamedll_ph_x64_rwdi.dll+4AF6FA: 74 19 - je gamedll_ph_x64_rwdi.dll+4AF715
gamedll_ph_x64_rwdi.dll+4AF6FC: 48 8B D3 - mov rdx,rbx
gamedll_ph_x64_rwdi.dll+4AF6FF: 49 8B CF - mov rcx,r15
gamedll_ph_x64_rwdi.dll+4AF702: E8 39 5F 4C 00 - call gamedll_ph_x64_rwdi.dll+975640
gamedll_ph_x64_rwdi.dll+4AF707: 41 FF 4F 08 - dec [r15+08]
gamedll_ph_x64_rwdi.dll+4AF70B: 48 8D 4B E8 - lea rcx,[rbx-18]
}
// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.3.0
// Module Version :
// Script Date : 2022-02-07
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_boomstick_infammo,gamedll_ph_x64_rwdi.dll,89 03 48 8D 4B 30 48 8B)
registersymbol(aob_boomstick_infammo)
alloc(newmem_boomstick_infammo,1024,gamedll_ph_x64_rwdi.dll)
label(return_boomstick_infammo)
newmem_boomstick_infammo:
mov eax,15
mov [rbx],eax
lea rcx,[rbx+30]
jmp return_boomstick_infammo
aob_boomstick_infammo:
jmp newmem_boomstick_infammo
nop
return_boomstick_infammo:
[DISABLE]
aob_boomstick_infammo:
db 89 03 48 8D 4B 30
unregistersymbol(aob_boomstick_infammo)
dealloc(newmem_boomstick_infammo)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+9FE3937
gamedll_ph_x64_rwdi.dll+9FE38BD: 41 09 C7 - or r15d,eax
gamedll_ph_x64_rwdi.dll+9FE38C0: 0F 89 AA A4 DA 02 - jns gamedll_ph_x64_rwdi.dll+CD8DD70
gamedll_ph_x64_rwdi.dll+9FE38C6: 4C 8B 3C 24 - mov r15,[rsp]
gamedll_ph_x64_rwdi.dll+9FE38CA: 48 8D 64 24 08 - lea rsp,[rsp+08]
gamedll_ph_x64_rwdi.dll+9FE38CF: 58 - pop rax
gamedll_ph_x64_rwdi.dll+9FE38D0: 48 89 5C 24 08 - mov [rsp+08],rbx
gamedll_ph_x64_rwdi.dll+9FE38D5: 48 89 6C 24 10 - mov [rsp+10],rbp
gamedll_ph_x64_rwdi.dll+9FE38DA: 48 89 74 24 18 - mov [rsp+18],rsi
gamedll_ph_x64_rwdi.dll+9FE38DF: 57 - push rdi
gamedll_ph_x64_rwdi.dll+9FE38E0: 48 83 EC 20 - sub rsp,20
gamedll_ph_x64_rwdi.dll+9FE38E4: 8B 29 - mov ebp,[rcx]
gamedll_ph_x64_rwdi.dll+9FE38E6: 89 D6 - mov esi,edx
gamedll_ph_x64_rwdi.dll+9FE38E8: 48 89 CB - mov rbx,rcx
gamedll_ph_x64_rwdi.dll+9FE38EB: E8 A0 E9 91 F6 - call gamedll_ph_x64_rwdi.dll+902290
gamedll_ph_x64_rwdi.dll+9FE38F0: 84 C0 - test al,al
gamedll_ph_x64_rwdi.dll+9FE38F2: 0F 84 A2 00 00 00 - je gamedll_ph_x64_rwdi.dll+9FE399A
gamedll_ph_x64_rwdi.dll+9FE38F8: 48 8B 43 30 - mov rax,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE38FC: 48 8D 4B 30 - lea rcx,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3900: FF 90 30 0C 00 00 - call qword ptr [rax+00000C30]
gamedll_ph_x64_rwdi.dll+9FE3906: 48 85 C0 - test rax,rax
gamedll_ph_x64_rwdi.dll+9FE3909: 0F 84 8B 00 00 00 - je gamedll_ph_x64_rwdi.dll+9FE399A
gamedll_ph_x64_rwdi.dll+9FE390F: 48 8B 43 30 - mov rax,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3913: 48 8D 4B 30 - lea rcx,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3917: FF 90 40 03 00 00 - call qword ptr [rax+00000340]
gamedll_ph_x64_rwdi.dll+9FE391D: 44 8A 05 7D EE 24 02 - mov r8l,[gamedll_ph_x64_rwdi.dll+C2327A1]
gamedll_ph_x64_rwdi.dll+9FE3924: 4C 01 05 96 F0 37 FB - add [gamedll_ph_x64_rwdi.dll+53629C1],r8
gamedll_ph_x64_rwdi.dll+9FE392B: 31 D2 - xor edx,edx
gamedll_ph_x64_rwdi.dll+9FE392D: 89 F1 - mov ecx,esi
gamedll_ph_x64_rwdi.dll+9FE392F: 41 89 C0 - mov r8d,eax
gamedll_ph_x64_rwdi.dll+9FE3932: E8 49 ED A0 F6 - call gamedll_ph_x64_rwdi.dll+9F2680
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+9FE3937: 89 03 - mov [rbx],eax
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+9FE3939: 48 8D 4B 30 - lea rcx,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE393D: 48 8B 43 30 - mov rax,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3941: FF 90 20 02 00 00 - call qword ptr [rax+00000220]
gamedll_ph_x64_rwdi.dll+9FE3947: 83 C0 E9 - add eax,-17
gamedll_ph_x64_rwdi.dll+9FE394A: 83 F8 13 - cmp eax,13
gamedll_ph_x64_rwdi.dll+9FE394D: 77 4D - ja gamedll_ph_x64_rwdi.dll+9FE399C
gamedll_ph_x64_rwdi.dll+9FE394F: 48 8D 0D AA C6 01 F6 - lea rcx,[gamedll_ph_x64_rwdi.dll]
gamedll_ph_x64_rwdi.dll+9FE3956: 48 98 - cdqe
gamedll_ph_x64_rwdi.dll+9FE3958: 0F B6 84 01 18 09 90 00 - movzx eax,byte ptr [rcx+rax+00900918]
gamedll_ph_x64_rwdi.dll+9FE3960: 8B 94 81 10 09 90 00 - mov edx,[rcx+rax*4+00900910]
gamedll_ph_x64_rwdi.dll+9FE3967: 48 01 CA - add rdx,rcx
gamedll_ph_x64_rwdi.dll+9FE396A: FF E2 - jmp rdx
gamedll_ph_x64_rwdi.dll+9FE396C: 3B 2B - cmp ebp,[rbx]
gamedll_ph_x64_rwdi.dll+9FE396E: 7E 2C - jle gamedll_ph_x64_rwdi.dll+9FE399C
gamedll_ph_x64_rwdi.dll+9FE3970: 48 8B 43 30 - mov rax,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3974: 48 8D 4B 30 - lea rcx,[rbx+30]
gamedll_ph_x64_rwdi.dll+9FE3978: FF 90 F8 0A 00 00 - call qword ptr [rax+00000AF8]
gamedll_ph_x64_rwdi.dll+9FE397E: C5 F0 57 C9 - vxorps xmm1,xmm1,xmm1
gamedll_ph_x64_rwdi.dll+9FE3982: C5 F8 2F C1 - vcomiss xmm0,xmm1
gamedll_ph_x64_rwdi.dll+9FE3986: 76 14 - jna gamedll_ph_x64_rwdi.dll+9FE399C
gamedll_ph_x64_rwdi.dll+9FE3988: C5 FA 10 0D 78 28 CE F7 - vmovss xmm1,[gamedll_ph_x64_rwdi.dll+1CC6208]
gamedll_ph_x64_rwdi.dll+9FE3990: 48 89 D9 - mov rcx,rbx
gamedll_ph_x64_rwdi.dll+9FE3993: E8 F8 D4 91 F6 - call gamedll_ph_x64_rwdi.dll+900E90
gamedll_ph_x64_rwdi.dll+9FE3998: EB 02 - jmp gamedll_ph_x64_rwdi.dll+9FE399C
gamedll_ph_x64_rwdi.dll+9FE399A: 89 33 - mov [rbx],esi
gamedll_ph_x64_rwdi.dll+9FE399C: 48 8B 5C 24 30 - mov rbx,[rsp+30]
gamedll_ph_x64_rwdi.dll+9FE39A1: 48 8B 6C 24 38 - mov rbp,[rsp+38]
gamedll_ph_x64_rwdi.dll+9FE39A6: 48 8B 74 24 40 - mov rsi,[rsp+40]
gamedll_ph_x64_rwdi.dll+9FE39AB: 48 83 C4 20 - add rsp,20
gamedll_ph_x64_rwdi.dll+9FE39AF: 5F - pop rdi
}
-----
update february 9th
some more codes, some in auto assembly format, some in table-pastefriendly format
<?xml version="1.0" encoding="utf-8"?>
<CheatTable>
<CheatEntries>
<CheatEntry>
<ID>526</ID>
<Description>"Moonjump"</Description>
<LastState Activated="1"/>
<Color>FF8080</Color>
<VariableType>Auto Assembler Script</VariableType>
<AssemblerScript>// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.4.0
// Module Version : 1.0.0.0
// Script Date : 2022-02-09
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_moonjump_test,engine_x64_rwdi.dll,C5 FB 11 81 34 03 00 00)
registersymbol(aob_moonjump_test)
alloc(newmem_moonjump_test,1024,engine_x64_rwdi.dll)
label(return_moonjump_test)
label(set_moonjump_test)
label(quit_moonjump_test)
label(moonjump_emptyval)
label(moonjump_temp_xmm)
label(moonjump_prev_height)
label(moonjump_add_height)
label(moonjump_diff)
label(moonjump_key)
registersymbol(moonjump_key)
registersymbol(moonjump_diff)
registersymbol(moonjump_add_height)
registersymbol(moonjump_prev_height)
newmem_moonjump_test:
vmovsd [rcx+00000334],xmm0
fld [moonjump_prev_height]
fsub [rcx+338]
fstp [moonjump_diff]
fld [rcx+338]
fstp [moonjump_prev_height]
set_moonjump_test:
//check if we're mid-air
cmp byte[rcx+391],01
je quit_moonjump_test
//check if we're descending
//[rcx+14C] = if [rcx+14C] < 0.0f = descending
movss [moonjump_temp_xmm],xmm0
//movss xmm0,[rcx+14c]
movss xmm0,[moonjump_diff]
ucomiss xmm0,[moonjump_emptyval]
movss xmm0,[moonjump_temp_xmm]
jb quit_moonjump_test
//check if VK_SPACE is pressed
push rax
push rcx
push rdx
push r8
push r9
push r10
push r11
sub rsp,28
xor rcx,rcx
mov cl,[moonjump_key]
call USER32.GetAsyncKeyState
add rsp,28
pop r11
pop r10
pop r9
pop r8
pop rdx
pop rcx
test ax,8001
pop rax
je @f
//we're in the air, we're descending and we're pressing VK_SPACE right now -> add +1.0f to Z coord
fld [rcx+338]
fadd [moonjump_diff] //fixup for descend
fadd [moonjump_add_height]
fstp [rcx+338]
//jmp quit_moonjump_test
quit_moonjump_test:
jmp return_moonjump_test
moonjump_key:
db 20
moonjump_diff:
dd 0
moonjump_prev_height:
dd 0
moonjump_emptyval:
dd 0
moonjump_temp_xmm:
dd 0
moonjump_add_height:
dd (float)0.05
aob_moonjump_test:
jmp newmem_moonjump_test
nop 3
return_moonjump_test:
[DISABLE]
aob_moonjump_test:
db C5 FB 11 81 34 03 00 00
unregistersymbol(*)
dealloc(*)
{
// ORIGINAL CODE - INJECTION POINT: engine_x64_rwdi.dll+C86DD7
engine_x64_rwdi.dll+C86D76: 4C 8D 9C 24 D0 01 00 00 - lea r11,[rsp+000001D0]
engine_x64_rwdi.dll+C86D7E: 49 8B 5B 20 - mov rbx,[r11+20]
engine_x64_rwdi.dll+C86D82: 49 8B 73 28 - mov rsi,[r11+28]
engine_x64_rwdi.dll+C86D86: 49 8B 7B 30 - mov rdi,[r11+30]
engine_x64_rwdi.dll+C86D8A: 4D 8B 63 38 - mov r12,[r11+38]
engine_x64_rwdi.dll+C86D8E: C4 C1 78 28 73 F0 - vmovaps xmm6,[r11-10]
engine_x64_rwdi.dll+C86D94: C5 F8 2F C7 - vcomiss xmm0,xmm7
engine_x64_rwdi.dll+C86D98: C4 C1 78 28 7B E0 - vmovaps xmm7,[r11-20]
engine_x64_rwdi.dll+C86D9E: 0F 92 C0 - setb al
engine_x64_rwdi.dll+C86DA1: 49 8B E3 - mov rsp,r11
engine_x64_rwdi.dll+C86DA4: 41 5F - pop r15
engine_x64_rwdi.dll+C86DA6: 41 5E - pop r14
engine_x64_rwdi.dll+C86DA8: 5D - pop rbp
engine_x64_rwdi.dll+C86DA9: C3 - ret
engine_x64_rwdi.dll+C86DAA: CC - int 3
engine_x64_rwdi.dll+C86DAB: CC - int 3
engine_x64_rwdi.dll+C86DAC: CC - int 3
engine_x64_rwdi.dll+C86DAD: CC - int 3
engine_x64_rwdi.dll+C86DAE: CC - int 3
engine_x64_rwdi.dll+C86DAF: CC - int 3
engine_x64_rwdi.dll+C86DB0: 48 8B C4 - mov rax,rsp
engine_x64_rwdi.dll+C86DB3: 48 89 58 08 - mov [rax+08],rbx
engine_x64_rwdi.dll+C86DB7: 48 89 70 10 - mov [rax+10],rsi
engine_x64_rwdi.dll+C86DBB: 57 - push rdi
engine_x64_rwdi.dll+C86DBC: 48 81 EC B0 00 00 00 - sub rsp,000000B0
engine_x64_rwdi.dll+C86DC3: C5 FB 10 02 - vmovsd xmm0,[rdx]
engine_x64_rwdi.dll+C86DC7: C5 F8 29 70 E8 - vmovaps [rax-18],xmm6
engine_x64_rwdi.dll+C86DCC: 48 8B DA - mov rbx,rdx
engine_x64_rwdi.dll+C86DCF: C5 F8 29 78 D8 - vmovaps [rax-28],xmm7
engine_x64_rwdi.dll+C86DD4: 48 8B F1 - mov rsi,rcx
// ---------- INJECTING HERE ----------
engine_x64_rwdi.dll+C86DD7: C5 FB 11 81 34 03 00 00 - vmovsd [rcx+00000334],xmm0
// ---------- DONE INJECTING ----------
engine_x64_rwdi.dll+C86DDF: C5 78 29 40 C8 - vmovaps [rax-38],xmm8
engine_x64_rwdi.dll+C86DE4: C5 78 29 48 B8 - vmovaps [rax-48],xmm9
engine_x64_rwdi.dll+C86DE9: 8B 42 08 - mov eax,[rdx+08]
engine_x64_rwdi.dll+C86DEC: B2 01 - mov dl,01
engine_x64_rwdi.dll+C86DEE: 89 81 3C 03 00 00 - mov [rcx+0000033C],eax
engine_x64_rwdi.dll+C86DF4: 48 8B 89 C0 07 00 00 - mov rcx,[rcx+000007C0]
engine_x64_rwdi.dll+C86DFB: E8 30 89 F7 FF - call engine_x64_rwdi.dll+BFF730
engine_x64_rwdi.dll+C86E00: 48 8B 8E C0 07 00 00 - mov rcx,[rsi+000007C0]
engine_x64_rwdi.dll+C86E07: 48 8D 54 24 20 - lea rdx,[rsp+20]
engine_x64_rwdi.dll+C86E0C: 48 83 C1 10 - add rcx,10
engine_x64_rwdi.dll+C86E10: E8 DB 7E F7 FF - call engine_x64_rwdi.dll+BFECF0
engine_x64_rwdi.dll+C86E15: 48 8B 86 D0 07 00 00 - mov rax,[rsi+000007D0]
engine_x64_rwdi.dll+C86E1C: BF 03 00 00 00 - mov edi,00000003
engine_x64_rwdi.dll+C86E21: C5 FA 10 03 - vmovss xmm0,[rbx]
engine_x64_rwdi.dll+C86E25: C5 FA 58 78 3C - vaddss xmm7,xmm0,[rax+3C]
engine_x64_rwdi.dll+C86E2A: C5 FA 10 40 44 - vmovss xmm0,[rax+44]
engine_x64_rwdi.dll+C86E2F: C5 FA 10 48 40 - vmovss xmm1,[rax+40]
engine_x64_rwdi.dll+C86E34: C5 7A 58 4B 08 - vaddss xmm9,xmm0,[rbx+08]
engine_x64_rwdi.dll+C86E39: C5 72 58 43 04 - vaddss xmm8,xmm1,[rbx+04]
engine_x64_rwdi.dll+C86E3E: 48 8D 5C 24 30 - lea rbx,[rsp+30]
engine_x64_rwdi.dll+C86E43: 48 8B CB - mov rcx,rbx
engine_x64_rwdi.dll+C86E46: E8 95 45 3F FF - call engine_x64_rwdi.CRTTIObject::GetSerializationUID
engine_x64_rwdi.dll+C86E4B: 48 83 C3 10 - add rbx,10
engine_x64_rwdi.dll+C86E4F: 48 83 EF 01 - sub rdi,01
engine_x64_rwdi.dll+C86E53: 75 EE - jne engine_x64_rwdi.dll+C86E43
engine_x64_rwdi.dll+C86E55: C5 F8 10 44 24 20 - vmovups xmm0,[rsp+20]
engine_x64_rwdi.dll+C86E5B: 48 8D 54 24 20 - lea rdx,[rsp+20]
engine_x64_rwdi.dll+C86E60: 48 8D 4C 24 30 - lea rcx,[rsp+30]
engine_x64_rwdi.dll+C86E65: C5 F9 7F 44 24 20 - vmovdqa [rsp+20],xmm0
engine_x64_rwdi.dll+C86E6B: C5 C8 57 F6 - vxorps xmm6,xmm6,xmm6
}
</AssemblerScript>
<CheatEntries>
<CheatEntry>
<ID>527</ID>
<Description>"moonjump_add_height"</Description>
<LastState Value="0.05000000075" RealAddress="7FFC28BB00BC"/>
<ShowAsSigned>0</ShowAsSigned>
<Color>FF8080</Color>
<VariableType>Float</VariableType>
<Address>moonjump_add_height</Address>
</CheatEntry>
<CheatEntry>
<ID>530</ID>
<Description>"moonjump_diff"</Description>
<LastState Value="0" RealAddress="7FFC28BB00AC"/>
<ShowAsSigned>0</ShowAsSigned>
<VariableType>Float</VariableType>
<Address>moonjump_diff</Address>
</CheatEntry>
<CheatEntry>
<ID>539</ID>
<Description>"moonjump_diff hex"</Description>
<LastState Value="00000000" RealAddress="7FFC28BB00AC"/>
<ShowAsHex>1</ShowAsHex>
<ShowAsSigned>0</ShowAsSigned>
<VariableType>Float</VariableType>
<Address>moonjump_diff</Address>
</CheatEntry>
<CheatEntry>
<ID>532</ID>
<Description>"moonjump_prev_height"</Description>
<LastState Value="35.26804352" RealAddress="7FFC28BB00B0"/>
<ShowAsSigned>0</ShowAsSigned>
<VariableType>Float</VariableType>
<Address>moonjump_prev_height</Address>
</CheatEntry>
<CheatEntry>
<ID>547</ID>
<Description>"moonjump_key"</Description>
<LastState Value="05" RealAddress="7FFC28BB00AB"/>
<ShowAsHex>1</ShowAsHex>
<ShowAsSigned>0</ShowAsSigned>
<VariableType>Byte</VariableType>
<Address>moonjump_key</Address>
</CheatEntry>
</CheatEntries>
</CheatEntry>
</CheatEntries>
</CheatTable>
// Game Executable : DyingLightGame_x64_rwdi.exe
// Author : supex0
// Executable Version: 1.0.4.0
// Module Version :
// Script Date : 2022-02-09
// Created with : customAOBInjectionTemplates version: 1.3.9
[ENABLE]
aobscanmodule(aob_afterburst_infinite_time_to_press,gamedll_ph_x64_rwdi.dll,D9 * * * * * * * * C5 FA 11 93 E0 02 00 00)
registersymbol(aob_afterburst_infinite_time_to_press)
alloc(newmem_afterburst_infinite_time_to_press,1024,gamedll_ph_x64_rwdi.dll)
label(return_afterburst_infinite_time_to_press)
label(set_afterburst_infinite_time_to_press)
label(quit_afterburst_infinite_time_to_press)
newmem_afterburst_infinite_time_to_press:
set_afterburst_infinite_time_to_press:
mov [rbx+000002E0],(float)999999
//jmp quit_afterburst_infinite_time_to_press
quit_afterburst_infinite_time_to_press:
//vmovss [rbx+000002E0],xmm2
jmp return_afterburst_infinite_time_to_press
aob_afterburst_infinite_time_to_press+09:
jmp newmem_afterburst_infinite_time_to_press
nop 3
return_afterburst_infinite_time_to_press:
[DISABLE]
aob_afterburst_infinite_time_to_press+09:
db C5 FA 11 93 E0 02 00 00
unregistersymbol(aob_afterburst_infinite_time_to_press)
dealloc(newmem_afterburst_infinite_time_to_press)
{
// ORIGINAL CODE - INJECTION POINT: gamedll_ph_x64_rwdi.dll+1367C66A
gamedll_ph_x64_rwdi.dll+1367C5EF: 5F - pop rdi
gamedll_ph_x64_rwdi.dll+1367C5F0: C3 - ret
gamedll_ph_x64_rwdi.dll+1367C5F1: 83 FF 02 - cmp edi,02
gamedll_ph_x64_rwdi.dll+1367C5F4: 75 22 - jne gamedll_ph_x64_rwdi.dll+1367C618
gamedll_ph_x64_rwdi.dll+1367C5F6: 48 8B 01 - mov rax,[rcx]
gamedll_ph_x64_rwdi.dll+1367C5F9: FF 90 70 08 00 00 - call qword ptr [rax+00000870]
gamedll_ph_x64_rwdi.dll+1367C5FF: 48 89 C1 - mov rcx,rax
gamedll_ph_x64_rwdi.dll+1367C602: 48 8B 10 - mov rdx,[rax]
gamedll_ph_x64_rwdi.dll+1367C605: FF 92 C0 05 00 00 - call qword ptr [rdx+000005C0]
gamedll_ph_x64_rwdi.dll+1367C60B: 80 B8 40 77 00 00 00 - cmp byte ptr [rax+00007740],00
gamedll_ph_x64_rwdi.dll+1367C612: 0F 84 80 00 00 00 - je gamedll_ph_x64_rwdi.dll+1367C698
gamedll_ph_x64_rwdi.dll+1367C618: C5 F8 57 C0 - vxorps xmm0,xmm0,xmm0
gamedll_ph_x64_rwdi.dll+1367C61C: C5 F8 2F F8 - vcomiss xmm7,xmm0
gamedll_ph_x64_rwdi.dll+1367C620: C5 F8 29 74 24 30 - vmovaps [rsp+30],xmm6
gamedll_ph_x64_rwdi.dll+1367C626: 73 20 - jae gamedll_ph_x64_rwdi.dll+1367C648
gamedll_ph_x64_rwdi.dll+1367C628: 48 8B 03 - mov rax,[rbx]
gamedll_ph_x64_rwdi.dll+1367C62B: 48 89 D9 - mov rcx,rbx
gamedll_ph_x64_rwdi.dll+1367C62E: FF 90 70 08 00 00 - call qword ptr [rax+00000870]
gamedll_ph_x64_rwdi.dll+1367C634: 48 89 C1 - mov rcx,rax
gamedll_ph_x64_rwdi.dll+1367C637: 48 8B 10 - mov rdx,[rax]
gamedll_ph_x64_rwdi.dll+1367C63A: FF 92 C0 05 00 00 - call qword ptr [rdx+000005C0]
gamedll_ph_x64_rwdi.dll+1367C640: C5 FA 10 B8 C0 76 00 00 - vmovss xmm7,[rax+000076C0]
gamedll_ph_x64_rwdi.dll+1367C648: 48 8B 03 - mov rax,[rbx]
gamedll_ph_x64_rwdi.dll+1367C64B: 48 89 D9 - mov rcx,rbx
gamedll_ph_x64_rwdi.dll+1367C64E: C5 FA 10 B3 E0 02 00 00 - vmovss xmm6,[rbx+000002E0]
gamedll_ph_x64_rwdi.dll+1367C656: FF 90 28 07 00 00 - call qword ptr [rax+00000728]
gamedll_ph_x64_rwdi.dll+1367C65C: 48 8B 03 - mov rax,[rbx]
gamedll_ph_x64_rwdi.dll+1367C65F: 48 89 D9 - mov rcx,rbx
gamedll_ph_x64_rwdi.dll+1367C662: C5 F2 58 C9 - vaddss xmm1,xmm1,xmm1
gamedll_ph_x64_rwdi.dll+1367C666: C5 F2 5F D6 - vmaxss xmm2,xmm1,xmm6
// ---------- INJECTING HERE ----------
gamedll_ph_x64_rwdi.dll+1367C66A: C5 FA 11 93 E0 02 00 00 - vmovss [rbx+000002E0],xmm2
// ---------- DONE INJECTING ----------
gamedll_ph_x64_rwdi.dll+1367C672: FF 90 28 07 00 00 - call qword ptr [rax+00000728]
gamedll_ph_x64_rwdi.dll+1367C678: C5 FA 10 8B E0 02 00 00 - vmovss xmm1,[rbx+000002E0]
gamedll_ph_x64_rwdi.dll+1367C680: C5 F8 28 74 24 30 - vmovaps xmm6,[rsp+30]
gamedll_ph_x64_rwdi.dll+1367C686: C5 F2 5C C0 - vsubss xmm0,xmm1,xmm0
gamedll_ph_x64_rwdi.dll+1367C68A: C5 FA 11 83 E8 02 00 00 - vmovss [rbx+000002E8],xmm0
gamedll_ph_x64_rwdi.dll+1367C692: 89 BB EC 02 00 00 - mov [rbx+000002EC],edi
gamedll_ph_x64_rwdi.dll+1367C698: 48 8B 5C 24 50 - mov rbx,[rsp+50]
gamedll_ph_x64_rwdi.dll+1367C69D: C5 F8 28 7C 24 20 - vmovaps xmm7,[rsp+20]
gamedll_ph_x64_rwdi.dll+1367C6A3: 48 83 C4 40 - add rsp,40
gamedll_ph_x64_rwdi.dll+1367C6A7: 5F - pop rdi
gamedll_ph_x64_rwdi.dll+1367C6A8: C3 - ret
gamedll_ph_x64_rwdi.dll+1367C6A9: CC - int 3
gamedll_ph_x64_rwdi.dll+1367C6AA: A4 - movsb
gamedll_ph_x64_rwdi.dll+1367C6AB: 07 - pop es
gamedll_ph_x64_rwdi.dll+1367C6AC: 0F A2 - cpuid
gamedll_ph_x64_rwdi.dll+1367C6AE: DF B6 5E 3C 00 00 - fbstp tword ptr [rsi+00003C5E]
gamedll_ph_x64_rwdi.dll+1367C6B4: 00 00 - add [rax],al
gamedll_ph_x64_rwdi.dll+1367C6B6: C7 - db -39
gamedll_ph_x64_rwdi.dll+1367C6B7: 7D C6 - jnl gamedll_ph_x64_rwdi.dll+1367C67F
gamedll_ph_x64_rwdi.dll+1367C6B9: EC - in al,dx
gamedll_ph_x64_rwdi.dll+1367C6BA: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6BB: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6BC: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6BD: FF AE 18 BF 8B FF - jmp far [rsi-007440E8]
gamedll_ph_x64_rwdi.dll+1367C6C3: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6C4: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6C5: FF - db -01
gamedll_ph_x64_rwdi.dll+1367C6C6: 79 62 - jns gamedll_ph_x64_rwdi.dll+1367C72A
gamedll_ph_x64_rwdi.dll+1367C6C8: AE - scasb
gamedll_ph_x64_rwdi.dll+1367C6C9: 83 74 E0 0F A2 - xor dword ptr [rax+0F],-5E
}