API tools faq
paste
Advertisement
Guest User

Hitman2-Ansel-Unpause

a guest
Aug 22nd, 2019
949
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
XML 8.16 KB | None | 0 0
raw download clone embed print report
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <CheatTable>
  3.   <CheatEntries>
  4.     <CheatEntry>
  5.       <ID>11105</ID>
  6.       <Description>"[Game State] (F5="Resume", F6="Pause")"</Description>
  7.       <LastState Activated="1"/>
  8.       <Color>FF0000</Color>
  9.       <VariableType>Auto Assembler Script</VariableType>
  10.       <AssemblerScript>// Game   : HITMAN2.exe
  11. // Version: 2.50.3
  12. [ENABLE]
  13. aobscanmodule(_GameState,hitman2.exe,48 89 43 40 48 8B 43 30)
  14. registersymbol(_GameState)
  15. alloc(injected__GameState,1024,_GameState)
  16. fullAccess(_GameState,0x1000)
  17. label(original__GameState)
  18. label(return__GameState)
  19. //
  20. globalalloc(pGameStateA,8)
  21. //
  22. injected__GameState:
  23.   push rdx
  24.   lea rdx,[rbx+70]
  25.   mov [pGameStateA],rdx
  26.   pop rdx
  27.  
  28. original__GameState:
  29.   mov [rbx+40],rax
  30.   mov rax,[rbx+30]
  31.   jmp return__GameState
  32.  
  33. _GameState:
  34.   jmp injected__GameState
  35.   nop
  36.   nop
  37.   nop
  38. return__GameState:
  39. //---------------------------------------------------------------------//
  40. aobscanmodule(_GameStatePaused,hitman2.exe,C7 47 68 02 00 00 00 48 8D 15)
  41. registersymbol(_GameStatePaused)
  42. alloc(injected__GameStatePaused,1024,_GameStatePaused)
  43. fullAccess(_GameStatePaused,0x1000)
  44. label(original__GameStatePaused)
  45. label(return__GameStatePaused)
  46. //
  47. globalalloc(pGameStateB,8)
  48. //
  49. injected__GameStatePaused:
  50.   push rdx
  51.   lea rdx,[rdi+68]
  52.   mov [pGameStateB],rdx
  53.   pop rdx
  54.  
  55. original__GameStatePaused:
  56.   mov [rdi+68],00000002
  57.   jmp return__GameStatePaused
  58.  
  59. _GameStatePaused:
  60.   jmp injected__GameStatePaused
  61.   nop
  62.   nop
  63. return__GameStatePaused:
  64.  
  65. [DISABLE]
  66. _GameState:
  67.   db 48 89 43 40 48 8B 43 30
  68. _GameStatePaused:
  69.   db C7 47 68 02 00 00 00
  70.  
  71. unregistersymbol(_GameState)
  72. dealloc(injected__GameState)
  73. unregistersymbol(_GameStatePaused)
  74. dealloc(injected__GameStatePaused)
  75.  
  76. {
  77. // ORIGINAL CODE (original__GameState) - INJECTION POINT: "hitman2.exe"+EAD2B0
  78. "hitman2.exe"+EAD291: 48 03 D1                       -  add rdx,rcx
  79. "hitman2.exe"+EAD294: 48 3B C2                       -  cmp rax,rdx
  80. "hitman2.exe"+EAD297: 48 0F 4E D0                    -  cmovle rdx,rax
  81. "hitman2.exe"+EAD29B: 48 C1 E2 14                    -  shl rdx,14
  82. "hitman2.exe"+EAD29F: 48 8B C2                       -  mov rax,rdx
  83. "hitman2.exe"+EAD2A2: 48 99                          -  cqo
  84. "hitman2.exe"+EAD2A4: 48 F7 7B 08                    -  idiv [rbx+08]
  85. "hitman2.exe"+EAD2A8: 48 8B C8                       -  mov rcx,rax
  86. "hitman2.exe"+EAD2AB: 48 3B C7                       -  cmp rax,rdi
  87. "hitman2.exe"+EAD2AE: 7E B5                          -  jle hitman2.exe+EAD265
  88. // ---------- INJECTING HERE ----------
  89. "hitman2.exe"+EAD2B0: 48 89 43 40                    -  mov [rbx+40],rax
  90. "hitman2.exe"+EAD2B4: 48 8B 43 30                    -  mov rax,[rbx+30]
  91. // ---------- DONE INJECTING  ----------
  92. "hitman2.exe"+EAD2B8: 48 89 43 38                    -  mov [rbx+38],rax
  93. "hitman2.exe"+EAD2BC: 48 01 4B 30                    -  add [rbx+30],rcx
  94. // ---------- MODIFYING HERE ----------
  95. "hitman2.exe"+EAD2C0: 80 7B 70 00                    -  cmp byte ptr [rbx+70],00
  96. // ---------- DONE MODIFYING ----------
  97. "hitman2.exe"+EAD2C4: 74 15                          -  je hitman2.exe+EAD2DB
  98. "hitman2.exe"+EAD2C6: 48 C7 43 28 00 00 00 00        -  mov qword ptr [rbx+28],00000000
  99. "hitman2.exe"+EAD2CE: 48 8B 43 18                    -  mov rax,[rbx+18]
  100. "hitman2.exe"+EAD2D2: 48 89 43 20                    -  mov [rbx+20],rax
  101. "hitman2.exe"+EAD2D6: E9 81 00 00 00                 -  jmp hitman2.exe+EAD35C
  102. "hitman2.exe"+EAD2DB: 48 83 7B 60 00                 -  cmp qword ptr [rbx+60],00
  103. "hitman2.exe"+EAD2E0: 75 41                          -  jne hitman2.exe+EAD323
  104. //
  105. //-----------------------------------------------------------------------------//
  106. // ORIGINAL CODE (original__GameStatePaused) - INJECTION POINT: "hitman2.exe"+E9A4F8
  107. "hitman2.exe"+E9A4CB: 48 8B 5C 24 50           -  mov rbx,[rsp+50]
  108. "hitman2.exe"+E9A4D0: 48 3B C8                 -  cmp rcx,rax
  109. "hitman2.exe"+E9A4D3: 74 13                    -  je hitman2.exe+E9A4E8
  110. "hitman2.exe"+E9A4D5: 48 83 C1 10              -  add rcx,10
  111. "hitman2.exe"+E9A4D9: 4C 8D 44 24 30           -  lea r8,[rsp+30]
  112. "hitman2.exe"+E9A4DE: 48 8D 54 24 20           -  lea rdx,[rsp+20]
  113. "hitman2.exe"+E9A4E3: E8 A8 10 FE FF           -  call hitman2.exe+E7B590
  114. "hitman2.exe"+E9A4E8: 48 8D 4C 24 20           -  lea rcx,[rsp+20]
  115. "hitman2.exe"+E9A4ED: E8 FE BA 24 FF           -  call hitman2.exe+E5FF0
  116. "hitman2.exe"+E9A4F2: 41 B8 07 00 00 00        -  mov r8d,00000007
  117. // ---------- INJECTING HERE ----------
  118. "hitman2.exe"+E9A4F8: C7 47 68 02 00 00 00     -  mov [rdi+68],00000002
  119. // ---------- DONE INJECTING  ----------
  120. "hitman2.exe"+E9A4FF: 48 8D 15 8A 65 96 00     -  lea rdx,[hitman2.exe+1800A90]
  121. "hitman2.exe"+E9A506: 48 8D 4C 24 30           -  lea rcx,[rsp+30]
  122. "hitman2.exe"+E9A50B: E8 A0 EF 23 FF           -  call hitman2.exe+D94B0
  123. "hitman2.exe"+E9A510: 41 B8 09 00 00 00        -  mov r8d,00000009
  124. "hitman2.exe"+E9A516: 48 8D 15 CB A6 80 00     -  lea rdx,[hitman2.exe+16A4BE8]
  125. "hitman2.exe"+E9A51D: 48 8D 4C 24 20           -  lea rcx,[rsp+20]
  126. "hitman2.exe"+E9A522: E8 89 EF 23 FF           -  call hitman2.exe+D94B0
  127. "hitman2.exe"+E9A527: E8 D4 D3 24 FF           -  call hitman2.exe+E7900
  128. "hitman2.exe"+E9A52C: 48 8B C8                 -  mov rcx,rax
  129. "hitman2.exe"+E9A52F: E8 7C 36 75 00           -  call hitman2.exe+15EDBB0
  130. //
  131. }
  132. </AssemblerScript>
  133.       <CheatEntries>
  134.         <CheatEntry>
  135.           <ID>11109</ID>
  136.           <Description>"IsGamePaused"</Description>
  137.           <DropDownList ReadOnly="1" DescriptionOnly="1" DisplayValueAsItem="1">0:Running
  138. 1:Paused
  139. </DropDownList>
  140.           <LastState Value="1" RealAddress="142C479B0"/>
  141.           <VariableType>Byte</VariableType>
  142.           <Address>pGameStateA</Address>
  143.           <Offsets>
  144.             <Offset>0</Offset>
  145.           </Offsets>
  146.           <Hotkeys>
  147.             <Hotkey>
  148.               <Action>Set Value</Action>
  149.               <Keys>
  150.                 <Key>116</Key>
  151.               </Keys>
  152.               <Value>0</Value>
  153.               <Description>"Resume"</Description>
  154.               <ID>0</ID>
  155.             </Hotkey>
  156.             <Hotkey>
  157.               <Action>Activate</Action>
  158.               <Keys>
  159.                 <Key>116</Key>
  160.               </Keys>
  161.               <ID>1</ID>
  162.             </Hotkey>
  163.             <Hotkey>
  164.               <Action>Set Value</Action>
  165.               <Keys>
  166.                 <Key>117</Key>
  167.               </Keys>
  168.               <Value>1</Value>
  169.               <Description>"Pause"</Description>
  170.               <ID>2</ID>
  171.             </Hotkey>
  172.             <Hotkey>
  173.               <Action>Deactivate</Action>
  174.               <Keys>
  175.                 <Key>117</Key>
  176.               </Keys>
  177.               <ID>3</ID>
  178.             </Hotkey>
  179.           </Hotkeys>
  180.         </CheatEntry>
  181.         <CheatEntry>
  182.           <ID>11110</ID>
  183.           <Description>"GameState"</Description>
  184.           <DropDownList ReadOnly="1" DescriptionOnly="1" DisplayValueAsItem="1">3:Running
  185. 2:Paused
  186. </DropDownList>
  187.           <LastState Value="2" RealAddress="142C47AE8"/>
  188.           <VariableType>Byte</VariableType>
  189.           <Address>pGameStateB</Address>
  190.           <Offsets>
  191.             <Offset>0</Offset>
  192.           </Offsets>
  193.           <Hotkeys>
  194.             <Hotkey>
  195.               <Action>Set Value</Action>
  196.               <Keys>
  197.                 <Key>116</Key>
  198.               </Keys>
  199.               <Value>3</Value>
  200.               <Description>"Resume"</Description>
  201.               <ID>0</ID>
  202.             </Hotkey>
  203.             <Hotkey>
  204.               <Action>Activate</Action>
  205.               <Keys>
  206.                 <Key>116</Key>
  207.               </Keys>
  208.               <ID>1</ID>
  209.             </Hotkey>
  210.             <Hotkey>
  211.               <Action>Set Value</Action>
  212.               <Keys>
  213.                 <Key>117</Key>
  214.               </Keys>
  215.               <Value>2</Value>
  216.               <ID>2</ID>
  217.             </Hotkey>
  218.             <Hotkey>
  219.               <Action>Deactivate</Action>
  220.               <Keys>
  221.                 <Key>117</Key>
  222.               </Keys>
  223.               <ID>3</ID>
  224.             </Hotkey>
  225.           </Hotkeys>
  226.         </CheatEntry>
  227.       </CheatEntries>
  228.     </CheatEntry>
  229.   </CheatEntries>
  230. </CheatTable>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!