1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Conversion.

Discussion in 'Programming' started by BishPop, Sep 18, 2010.

  1. BishPop

    BishPop New Member

    Did I convert this script correctly?

    Code (Text):
    1.  
    2. [enable]
    3. alloc(Fadex,60)
    4. label(PerRet)
    5.  
    6. 00AFB094:
    7. db 90 90 90
    8. call Fadex
    9.  
    10. Fadex:
    11. mov edx,[00d824ac]//A1 ? ? ? ? 3B C7 0F 84 ? ? ? ? 6A FF
    12. test edx,edx
    13. je PerRet
    14. mov edx,[edx+189c]//8B 81 ? ? ? ? 83 65 ? 00 85 C0 56 8B 75 ? 89 06 74 06
    15. mov edx,[edx+194]
    16. cmp edi,edx
    17. je PerRet
    18. mov eax,000faded
    19. PerRet:
    20. mov [ebp+0c],eax
    21. jmp 005850f2 //Orginal Opcode Call Address
    22.  
    23. [disable]
    24. 00AFB094://89 45 0C E8 ? ? ? FF DD 47 ? D8 C9 8D 4E ? DA 45 0C DD
    25. db 89 45 0c e8 56 a0 a8 ff
    26. dealloc(Fadex)
    27.  
    to

    Code (Text):
    1.  
    2. BYTE FadedMem[8];
    3. DWORD FadedPointer = 0x00AFB094;
    4. DWORD FadedRet = FadedPointer + 5 + 3;
    5.  
    6. __declspec(naked) void __stdcall Faded()
    7. {
    8.     __asm
    9.     {
    10.         mov edx, [0x00D824AC]
    11.         test edx, edx
    12.         je FadedLol
    13.         mov edx, [edx+ 0x189C]
    14.         mov edx, [edx+ 0x194]
    15.         cmp dword ptr[edi], edx
    16.         je FadedLol
    17.         mov eax, [0x000faded]
    18.  
    19.         FadedLol:
    20.         mov [ebp + 0x0C], eax
    21.         jmp [FadedRet]
    22.     }
    23. }
    24.  
    25. void Form1::checkBox1_CheckedChanged(System::Object^  sender, System::EventArgs^  e)
    26. {
    27.      if(checkBox1->Checked)
    28.      {
    29.         memcpy(FadedMem, (void*)FadedPointer, 8);
    30.         Jump(FadedPointer, Faded, 3);
    31.      }
    32.      else
    33.      {
    34.         memcpy((void*)FadedPointer, FadedMem, 8);
    35.      }
    36. }
    37.  
     
  2. Nazgul1444

    Nazgul1444 Dedicated Supporter Dedicated Donor

    If it works it's right else not.

    Start maple -> inject .dll -> Start CE -> tick hack in trainer -> go to address in CE -> check the asm for mistakes etc

    Why does noone ever think about that? After I failed once, i came fast up with this solution, so I did not need to ask these questions.
     
  3. spunge

    spunge Well-Known Member Retired

    Code (Text):
    1. mov eax, [0x000faded]
    Code (Text):
    1. cmp dword ptr[edi], edx
    Code (Text):
    1. DWORD FadedRet = FadedPointer + 5 + 3
    Wrong.
     
  4. BishPop

    BishPop New Member

    How do I fix it? :3
     
  5. Nazgul1444

    Nazgul1444 Dedicated Supporter Dedicated Donor

    Look at my post, don't ask everything, do it urself
     
  6. Nazgul1444

    Nazgul1444 Dedicated Supporter Dedicated Donor

    It does NOT work on a VC studio compiler, maybe in RAD idk, but they are few lines of crash
     
  7. Nazgul1444

    Nazgul1444 Dedicated Supporter Dedicated Donor

    not weird, different.
     
  8. spunge

    spunge Well-Known Member Retired

    Code (Text):
    1. const DWORD  dwPervac = 0x00AFB094;
    2. const DWORD  dwReturn = 0x005850F2;
    3.  
    4. __declspec(naked) void PervacStub()
    5. {
    6.   __asm
    7.   {
    8.     mov   edx, dword ptr ds:[0x00D824AC]
    9.     test  edx, edx
    10.     jz    original
    11.  
    12.     mov   edx, dword ptr ds:[edx+0x189C]
    13.     mov   edx, dword ptr ds:[edx+0x194]
    14.     cmp   edi, edx
    15.     je    original
    16.  
    17.     mov   eax, 0x000FADED
    18.    
    19.     original:
    20.     mov   dword ptr ss:[ebp+0x0C], eax
    21.     jmp   dword ptr ds:[dwReturn]
    22.   }
     
  9. Nebbis

    Nebbis Banned Banned

    I can't seem to find anything wrong in the script.
     
  10. Ketskroket

    Ketskroket Well-Known Member


    it seems me almost good but what the hell? FadedRet = FadedPointer =5 =3; that not seems me possible
     
  11. Danny1994

    Danny1994 Likes to contribute Coder

    If you converted it wrong then yes.
    Else no.
     

Share This Page