minh7777
10th December 2006, 23:55
Hi, this is a threat concerning about trickster,
I have found 3 addresses, its linked to your drill's life
028354C, the 2 other addresses CHANGE
if you search on your UCE, you should see that the address' value is your Drill's life. IM NOT SURE if the address is the same for every drills, character. ALSO, you should find 3 or more address when searching for your DrillsLife, it should be these value
http://img240.imageshack.us/my.php?image=screenshot0001mi3.jpg
AFTER that, i traced "what writes to this address"
THEN IM STUCK!!!!!!!!! trying to modify the code that access the address gives me the Exceptional Error, then disconnects me
IM trying to STOP the decreasing of the drills life, I "think" we need a CodeCave that reverse the decrease into an increase.
----Further things into the CodeCave----
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
004B8E61:
jmp newmem
nop
returnhere:
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
mov [eax+28],edx
mov ecx,[ecx+0c]
exit:
jmp returnhere
is the BASIC codecave, I DONT UNDERSTAND ONE BIT of this code, A decent explanation of wtf is going on in this code is good for me, then i can find the things THEN RELEASE THIS to the Trickster Hacking Community
Once i have found the way to stop the drill's life from decreasing, i will release the hack to the community, and give proper credit to anyone who deserves it.
(excuse my english, im from vietnam) :cry:
thank you, and have a good day
I have found 3 addresses, its linked to your drill's life
028354C, the 2 other addresses CHANGE
if you search on your UCE, you should see that the address' value is your Drill's life. IM NOT SURE if the address is the same for every drills, character. ALSO, you should find 3 or more address when searching for your DrillsLife, it should be these value
http://img240.imageshack.us/my.php?image=screenshot0001mi3.jpg
AFTER that, i traced "what writes to this address"
THEN IM STUCK!!!!!!!!! trying to modify the code that access the address gives me the Exceptional Error, then disconnects me
IM trying to STOP the decreasing of the drills life, I "think" we need a CodeCave that reverse the decrease into an increase.
----Further things into the CodeCave----
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
004B8E61:
jmp newmem
nop
returnhere:
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
originalcode:
mov [eax+28],edx
mov ecx,[ecx+0c]
exit:
jmp returnhere
is the BASIC codecave, I DONT UNDERSTAND ONE BIT of this code, A decent explanation of wtf is going on in this code is good for me, then i can find the things THEN RELEASE THIS to the Trickster Hacking Community
Once i have found the way to stop the drill's life from decreasing, i will release the hack to the community, and give proper credit to anyone who deserves it.
(excuse my english, im from vietnam) :cry:
thank you, and have a good day