1
General Modding & Programming / Other Games / World In Conflict Beta
« on: July 25, 2007, 01:41:16 pm »
hello... i'm trying to hack the beta of World in conflict, i don't know if you play it but this is my problem:
let's start saying that the game give you points and with that points you can "buy" armors, infantry etc etc.
The game start giving you 2000 points and decrease if you "buy" something.
I look with tsearch for an exact value of 2000 4bytes and found many adress.
then i go back to the game and i brought something then go back to tsearch and look for a value that is changed, go back into the game and go back to tsearch etc etc.
I finally find an adress that store the value. I open the autohack and after a while it give me 3 adress.
If i breakpoint them into the game nothing happen then there must be something i'm missing....
here the code:
76e21c mov ecx,[esi+0x24] <<<<<<<< first breakpoint
76e21f cmp eax,ecx
76e221 je short 0x0076E281
76e223 ???
76e226 dec esi
76e227 or [edi],cl
76e229 das
76e22a enter 0x4576,0x3B
76e22e sar dword ptr [ebp+0x41],0x8B
76e232 shr dword ptr [ebx],1
76e234 ???
76e235 ???
76e238 retn 0x158B
76e23b xchg esi,ebx
76e23e add bl,dh
76e240 ???
76e242 add eax,0xDC1D30
76e247 push edi
76e248 ???
76e24b clc
76e24c add edx,edi
76e24e sub ecx,edx
76e250 cmp ecx,eax
76e252 mov [0xDE8764],edx
76e258 pop edi
76e259 jl short 0x0076E298
76e25b mov eax,[esi+0x1C]
76e25e push eax
76e25f call 0x005AD400
76e264 mov eax,[esi+0x24]
76e267 add esp,0x4
76e26a sub eax,[0xDE8764]
76e270 pop esi
76e271 retn
76e272 mov [esi+0x24],eax
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
------------------------------------------------------------------------------------
76e272 mov [esi+0x24],eax <<<<<<<<<<<<< second breakpoint
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
76e29c int3
76e29d int3
76e29e int3
76e29f int3
76e2a0 push ecx
76e2a1 ???
76e2a4 add eax,0xDC1D1C
76e2a9 mov eax,[0xDE7778]
76e2ae ???
76e2b1 add al,0x24
76e2b3 ???
76e2b6 inc eax
76e2b7 adc [esi-0xD],dl
76e2ba ???
76e2bc lock push edi
76e2be ???
76e2c1 into
76e2c2 mov edi,ecx
76e2c4 ???
76e2c7 ???
76e2c8 ???
76e2cb add eax,0xBC119C
76e2d0 ???
76e2d3 enter 0x8B51,0x4F
76e2d7 or al,0xE8
76e2d9 jecxz short 0x0076E344
76e2db or eax,0x20478B00
76e2e0 cmp esi,eax
76e2e2 je 0x0076E377
76e2e8 ???
76e2eb inc edi
76e2ec adc [edi],cl
76e2ee das
76e2ef inc esp
----------------------------------------------------------------------------------
76e264 mov eax,[esi+0x24] <<<<<<<<<<<< third breakpoint
76e267 add esp,0x4
76e26a sub eax,[0xDE8764]
76e270 pop esi
76e271 retn
76e272 mov [esi+0x24],eax
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
76e29c int3
76e29d int3
76e29e int3
76e29f int3
76e2a0 push ecx
76e2a1 ???
76e2a4 add eax,0xDC1D1C
76e2a9 mov eax,[0xDE7778]
76e2ae ???
76e2b1 add al,0x24
76e2b3 ???
76e2b6 inc eax
76e2b7 adc [esi-0xD],dl
76e2ba ???
76e2bc lock push edi
76e2be ???
76e2c1 into
76e2c2 mov edi,ecx
76e2c4 ???
76e2c7 ???
76e2c8 ???
76e2cb add eax,0xBC119C
76e2d0 ???
76e2d3 enter 0x8B51,0x4F
76e2d7 or al,0xE8
76e2d9 jecxz short 0x0076E344
76e2db or eax,0x20478B00
76e2e0 cmp esi,eax
76e2e2 je 0x0076E377
---------------------------------------------------------
As you know i'm a newbie and maybe all this code won't tell you anything, but i'm trying to learn and if someone can read this and help me i will be happy
Ciao.
let's start saying that the game give you points and with that points you can "buy" armors, infantry etc etc.
The game start giving you 2000 points and decrease if you "buy" something.
I look with tsearch for an exact value of 2000 4bytes and found many adress.
then i go back to the game and i brought something then go back to tsearch and look for a value that is changed, go back into the game and go back to tsearch etc etc.
I finally find an adress that store the value. I open the autohack and after a while it give me 3 adress.
If i breakpoint them into the game nothing happen then there must be something i'm missing....
here the code:
76e21c mov ecx,[esi+0x24] <<<<<<<< first breakpoint
76e21f cmp eax,ecx
76e221 je short 0x0076E281
76e223 ???
76e226 dec esi
76e227 or [edi],cl
76e229 das
76e22a enter 0x4576,0x3B
76e22e sar dword ptr [ebp+0x41],0x8B
76e232 shr dword ptr [ebx],1
76e234 ???
76e235 ???
76e238 retn 0x158B
76e23b xchg esi,ebx
76e23e add bl,dh
76e240 ???
76e242 add eax,0xDC1D30
76e247 push edi
76e248 ???
76e24b clc
76e24c add edx,edi
76e24e sub ecx,edx
76e250 cmp ecx,eax
76e252 mov [0xDE8764],edx
76e258 pop edi
76e259 jl short 0x0076E298
76e25b mov eax,[esi+0x1C]
76e25e push eax
76e25f call 0x005AD400
76e264 mov eax,[esi+0x24]
76e267 add esp,0x4
76e26a sub eax,[0xDE8764]
76e270 pop esi
76e271 retn
76e272 mov [esi+0x24],eax
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
------------------------------------------------------------------------------------
76e272 mov [esi+0x24],eax <<<<<<<<<<<<< second breakpoint
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
76e29c int3
76e29d int3
76e29e int3
76e29f int3
76e2a0 push ecx
76e2a1 ???
76e2a4 add eax,0xDC1D1C
76e2a9 mov eax,[0xDE7778]
76e2ae ???
76e2b1 add al,0x24
76e2b3 ???
76e2b6 inc eax
76e2b7 adc [esi-0xD],dl
76e2ba ???
76e2bc lock push edi
76e2be ???
76e2c1 into
76e2c2 mov edi,ecx
76e2c4 ???
76e2c7 ???
76e2c8 ???
76e2cb add eax,0xBC119C
76e2d0 ???
76e2d3 enter 0x8B51,0x4F
76e2d7 or al,0xE8
76e2d9 jecxz short 0x0076E344
76e2db or eax,0x20478B00
76e2e0 cmp esi,eax
76e2e2 je 0x0076E377
76e2e8 ???
76e2eb inc edi
76e2ec adc [edi],cl
76e2ee das
76e2ef inc esp
----------------------------------------------------------------------------------
76e264 mov eax,[esi+0x24] <<<<<<<<<<<< third breakpoint
76e267 add esp,0x4
76e26a sub eax,[0xDE8764]
76e270 pop esi
76e271 retn
76e272 mov [esi+0x24],eax
76e275 mov dword ptr [0xDE8764],0x0
76e27f pop esi
76e280 retn
76e281 ???
76e284 add eax,0xBC0DD8
76e289 ???
76e28c inc esi
76e28d or bh,al
76e28f add eax,0xDE8764
76e294 add [eax],al
76e296 add [eax],al
76e298 pop esi
76e299 retn
76e29a int3
76e29b int3
76e29c int3
76e29d int3
76e29e int3
76e29f int3
76e2a0 push ecx
76e2a1 ???
76e2a4 add eax,0xDC1D1C
76e2a9 mov eax,[0xDE7778]
76e2ae ???
76e2b1 add al,0x24
76e2b3 ???
76e2b6 inc eax
76e2b7 adc [esi-0xD],dl
76e2ba ???
76e2bc lock push edi
76e2be ???
76e2c1 into
76e2c2 mov edi,ecx
76e2c4 ???
76e2c7 ???
76e2c8 ???
76e2cb add eax,0xBC119C
76e2d0 ???
76e2d3 enter 0x8B51,0x4F
76e2d7 or al,0xE8
76e2d9 jecxz short 0x0076E344
76e2db or eax,0x20478B00
76e2e0 cmp esi,eax
76e2e2 je 0x0076E377
---------------------------------------------------------
As you know i'm a newbie and maybe all this code won't tell you anything, but i'm trying to learn and if someone can read this and help me i will be happy
Ciao.