Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- { Game : KSP_x64.exe
- Version:
- Date : 2019-05-25
- Author : Zach
- This script does blah blah blah
- }
- [ENABLE]
- aobscanmodule(INJECT,KSP_x64.exe,89 81 F8 00 00 00 C3 CC CC CC CC CC CC CC CC CC) // should be unique
- alloc(newmem,$1000,"KSP_x64.exe"+4E2ADC)
- label(code)
- label(return)
- newmem:
- code:
- mov [rcx+000000F8],eax
- jmp return
- INJECT:
- jmp newmem
- nop
- return:
- registersymbol(INJECT)
- [DISABLE]
- INJECT:
- db 89 81 F8 00 00 00
- unregistersymbol(INJECT)
- dealloc(newmem)
- {
- // ORIGINAL CODE - INJECTION POINT: "KSP_x64.exe"+4E2ADC
- "KSP_x64.exe"+4E2AB3: F3 0F 11 41 58 - movss [rcx+58],xmm0
- "KSP_x64.exe"+4E2AB8: F3 0F 10 81 F8 00 00 00 - movss xmm0,[rcx+000000F8]
- "KSP_x64.exe"+4E2AC0: 0F 2F D0 - comiss xmm2,xmm0
- "KSP_x64.exe"+4E2AC3: F3 0F 11 44 24 10 - movss [rsp+10],xmm0
- "KSP_x64.exe"+4E2AC9: 76 0A - jna KSP_x64.exe+4E2AD5
- "KSP_x64.exe"+4E2ACB: 8B 41 48 - mov eax,[rcx+48]
- "KSP_x64.exe"+4E2ACE: 89 81 F8 00 00 00 - mov [rcx+000000F8],eax
- "KSP_x64.exe"+4E2AD4: C3 - ret
- "KSP_x64.exe"+4E2AD5: 48 8D 44 24 10 - lea rax,[rsp+10]
- "KSP_x64.exe"+4E2ADA: 8B 00 - mov eax,[rax]
- // ---------- INJECTING HERE ----------
- "KSP_x64.exe"+4E2ADC: 89 81 F8 00 00 00 - mov [rcx+000000F8],eax
- // ---------- DONE INJECTING ----------
- "KSP_x64.exe"+4E2AE2: C3 - ret
- "KSP_x64.exe"+4E2AE3: CC - int 3
- "KSP_x64.exe"+4E2AE4: CC - int 3
- "KSP_x64.exe"+4E2AE5: CC - int 3
- "KSP_x64.exe"+4E2AE6: CC - int 3
- "KSP_x64.exe"+4E2AE7: CC - int 3
- "KSP_x64.exe"+4E2AE8: CC - int 3
- "KSP_x64.exe"+4E2AE9: CC - int 3
- "KSP_x64.exe"+4E2AEA: CC - int 3
- "KSP_x64.exe"+4E2AEB: CC - int 3
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
