Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [ENABLE]
- aobscanmodule(InjectNPCCoords,DarkSoulsIII.exe,66 0F 7F B3 ? ? ? ? 0F 57 C0 C6 83) // should be unique
- alloc(newmem,$1000,InjectNPCCoords)
- label(InjectedCode)
- label(OriginalCode)
- label(return)
- newmem:
- //rbx is the base of the NPC's coordinate structure
- //rbx+80 takes us to the npc's movement coordinates
- //rbx+d0 takes us to the npc's home coordinates
- TeleportToAnorLondoGarden:
- mov dword ptr[rbx+80],2409FD43 //43FD0924
- mov dword ptr[rbx+150],2409FD43
- mov dword ptr[rbx+84],96595DC3 //C35D5996
- mov dword ptr[rbx+154],96595DC3
- mov dword ptr[rbx+88],539C94C4 //C4949C53
- mov dword ptr[rbx+158],539C94C4
- jmp return
- InjectedCode:
- //Hex in comments is Little Endian, as from mem view
- //Got to swap the bytes around to get Big Endian for DS3
- //Compare the spawn coordinates
- cmp dword ptr[rbx+150],084C0D44 //440D4C08
- jne EndOfSulyvahnsBeastAnorLondo01Check
- cmp dword ptr[rbx+154],00C077C3 //C377C000
- jne EndOfSulyvahnsBeastAnorLondo01Check
- cmp dword ptr[rbx+158],730893C4 //C4930873
- jne EndOfSulyvahnsBeastAnorLondo01Check
- jmp TeleportToAnorLondoGarden
- EndOfSulyvahnsBeastAnorLondo01Check:
- OriginalCode:
- movdqa [rbx+00000080],xmm6
- jmp return
- InjectNPCCoords:
- jmp InjectedCode
- nop
- nop
- nop
- return:
- registersymbol(InjectNPCCoords)
- [DISABLE]
- InjectNPCCoords:
- db 66 0F 7F B3 80 00 00 00
- unregistersymbol(InjectNPCCoords)
- dealloc(newmem)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
