Szukam kogoś do pomocy w tworzeniu hacka

rigis · 20 Marca 2014

Może ktoś powiedzieć co z tym zrobić by to działało ? Tzn. jakim programem co i jak krok po kroku...

QUOTE=nilath;8002827]Anti-Debugger (It's not the anti-cheat system.)

[ENABLE]
"KERNEL32.DLL"+250D8:
xor eax, eax
ret
int 3
int 3
int 3
int 3
 
[DISABLE]
"KERNEL32.DLL"+250D8:
jmp dword ptr [KERNEL32.WriteConsoleOutputW+81EC]

Infinite Bullet

/*
   - Infinite Bullet
   - MPGH
   - Made by nilath
*/
 
[ENABLE]
alloc(newmem,512)
label(returnhere)
label(originalcode)
label(exit)
 
newmem:
mov ax, 1000   // Bullet Count (Integer)
 
originalcode:
mov [ecx],ax
movzx eax,ax
 
exit:
jmp returnhere
 
Warframe.exe+4F67CA:
jmp newmem
nop
returnhere:
 
[DISABLE]
Warframe.exe+4F67CA:
mov [ecx],ax
movzx eax,ax
dealloc(newmem)

Infinite Stamina

/*
   - Infinite Stamina
   - MPGH
   - Made by nilath
*/
[ENABLE]
alloc(newmem,512)
label(returnhere)
label(originalcode)
label(exit)
 
newmem:
 
originalcode:
//movss [esi+00001E94],xmm0
mov [esi+00001EF4], (float)80       // Basic stamina is 80 (Float type)
 
exit:
jmp returnhere
 
Warframe.exe+5E2731:
jmp newmem
nop
nop
nop
returnhere:
 
[DISABLE]
Warframe.exe+5E2731:
db F3 0F 11 86 F4 1E 00 00
dealloc(newmem)

Money

- Because you would be banned if you ended with tons of money, I searched money bunches function.

- If you get a bunch of money, your money will increase 1000 for each.

/*
   - Money
   - MPGH
   - Made by nilath
*/
 
[ENABLE]
alloc(newmem,512)
label(returnhere)
label(originalcode)
label(exit)
 
newmem:
mov eax, 0x3E8     // add 1000 for each money bunch (Integer Type)
 
originalcode:
mov ecx,[esp+24]
mov edx,[ecx+08]
 
exit:
jmp returnhere
 
Warframe.exe+A60ECB:
jmp newmem
nop
nop
returnhere:
 
[DISABLE]
Warframe.exe+A60ECB:
mov ecx,[esp+24]
mov edx,[ecx+08]
dealloc(newmem)

And the next things are another things, but I didn't update these.

It means, you should update these if you want to use.

Assembly codes are next to scripts.

Use "Find Assembly codes or Bytes." You can find the addresses easily.

Health

/*
   - Health
   - MPGH
   - Made by nilath
*/
 
// If you use this script on the defense mission with 0 as an ecx, waves are just passed away without mobs.
[ENABLE]
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
 
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
 
originalcode:
mov edx,[eax]
xor edx,eax
// Health has an Integer type
mov ecx, 0
mov [eax],ecx
 
exit:
jmp returnhere
 
Warframe.exe+194601:
jmp newmem
nop
returnhere:
 
 
 
[DISABLE]
Warframe.exe+194601:
mov edx,[eax]
xor edx,eax
mov [eax],ecx
dealloc(newmem)
 
 
 
/*
Changed to Warframe.exe+194601 - 8B 10                 - mov edx,[eax]
Changed to Warframe.exe+338FC1 - 8B 10                 - mov edx,[eax]
        And the codes are a little bit changed so that I rewrited below
Warframe.exe+338F80 - 56                    - push esi
Warframe.exe+338F81 - 8B F1                 - mov esi,ecx
Warframe.exe+338F83 - 8B 4E 08              - mov ecx,[esi+08]
Warframe.exe+338F86 - 57                    - push edi
Warframe.exe+338F87 - 85 C9                 - test ecx,ecx
Warframe.exe+338F89 - 74 0B                 - je Warframe.exe+338F96
Warframe.exe+338F8B - 8B 01                 - mov eax,[ecx]
Warframe.exe+338F8D - 8B 50 04              - mov edx,[eax+04]
Warframe.exe+338F90 - FF D2                 - call edx
Warframe.exe+338F92 - 84 C0                 - test al,al
Warframe.exe+338F94 - 75 10                 - jne Warframe.exe+338FA6
Warframe.exe+338F96 - 68 0CEA3301           - push Warframe.exe+F3EA0C
Warframe.exe+338F9B - FF 15 B8973101        - call dword ptr [Warframe.exe+F197B8]
Warframe.exe+338FA1 - 85 C0                 - test eax,eax
Warframe.exe+338FA3 - 74 01                 - je Warframe.exe+338FA6
Warframe.exe+338FA5 - CC                    - int 3
Warframe.exe+338FA6 - 8B 56 04              - mov edx,[esi+04]
Warframe.exe+338FA9 - 8B 7C 24 0C           - mov edi,[esp+0C]
Warframe.exe+338FAD - 8B 0F                 - mov ecx,[edi]
Warframe.exe+338FAF - 8D 46 04              - lea eax,[esi+04]
Warframe.exe+338FB2 - 33 D0                 - xor edx,eax
Warframe.exe+338FB4 - 81 F2 B10F442FC1CA    - xor edx,2F440FB1 : [00013194]
Warframe.exe+338FBC - 03 3B                 - add edi,[ebx]
Warframe.exe+338FBE - D1                    - db D1
Warframe.exe+338FBF - 74 75                 - je Warframe.exe+339036
Warframe.exe+338FC1 - 8B 10                 - mov edx,[eax]                       <- !!!
                    // 03 * D1 74 * 8B * 31
                    Warframe.exe+136767 - 8B 06                 - mov eax,[esi]
                    Warframe.exe+13838D - 8D 56 04              - lea edx,[esi+04]
 
56 8B F1 8B 4E 08 57
Warframe.exe+338FC3 - 31 C2                 - xor edx,eax                         // This spot is totally changed after the patch
Warframe.exe+338FC5 - 89 08                 - mov [eax],ecx
Warframe.exe+338FC7 - 81 F2 B10F442FC1CA    - xor edx,2F440FB1 : [00013194]
Warframe.exe+338FCF - 03 C1                 - add eax,ecx
Warframe.exe+338FD1 - C1 03 33              - rol [ebx],33
Warframe.exe+338FD4 - C8 81F1 B1            - enter F181,B1
Warframe.exe+338FD8 - 0F44 2F               - cmove ebp,[edi]
Warframe.exe+338FDB - 89 08                 - mov [eax],ecx
Warframe.exe+338FDD - 8B 06                 - mov eax,[esi]
Warframe.exe+338FDF - 83 C8 01              - or eax,01
Warframe.exe+338FE2 - 89 06                 - mov [esi],eax
Warframe.exe+338FE4 - 83 E0 FE              - and eax,FE
Warframe.exe+338FE7 - 89 54 24 0C           - mov [esp+0C],edx
Warframe.exe+338FEB - 74 08                 - je Warframe.exe+338FF5
Warframe.exe+338FED - BA 01000000           - mov edx,00000001
Warframe.exe+338FF2 - 66 89 10              - mov [eax],dx
Warframe.exe+338FF5 - 80 7E 18 00           - cmp byte ptr [esi+18],00
Warframe.exe+338FF9 - 74 3B                 - je Warframe.exe+339036
Warframe.exe+338FFB - 53                    - push ebx
Warframe.exe+338FFC - 8A 1D 521E3E01        - mov bl,[Warframe.exe+FE1E52]
Warframe.exe+339002 - C6 05 521E3E01 01     - mov byte ptr [Warframe.exe+FE1E52],01
Warframe.exe+339009 - 83 7E 08 00           - cmp dword ptr [esi+08],00
Warframe.exe+33900D - 75 10                 - jne Warframe.exe+33901F
Warframe.exe+33900F - 68 2CE93301           - push Warframe.exe+F3E92C
Warframe.exe+339014 - FF 15 B8973101        - call dword ptr [Warframe.exe+F197B8]
Warframe.exe+33901A - 85 C0                 - test eax,eax
Warframe.exe+33901C - 74 01                 - je Warframe.exe+33901F
Warframe.exe+33901E - CC                    - int 3
Warframe.exe+33901F - 8B 4E 08              - mov ecx,[esi+08]
Warframe.exe+339022 - 8B 01                 - mov eax,[ecx]
Warframe.exe+339024 - 8B 40 10              - mov eax,[eax+10]
Warframe.exe+339027 - 8D 54 24 10           - lea edx,[esp+10]
Warframe.exe+33902B - 52                    - push edx
Warframe.exe+33902C - 57                    - push edi
Warframe.exe+33902D - FF D0                 - call eax
Warframe.exe+33902F - 88 1D 521E3E01        - mov [Warframe.exe+FE1E52],bl
Warframe.exe+339035 - 5B                    - pop ebx
Warframe.exe+339036 - 5F                    - pop edi
Warframe.exe+339037 - 5E                    - pop esi
Warframe.exe+339038 - C2 0400               - ret 0004
 
*/

Shield

/*
   - Shield
   - MPGH
   - Made by nilath
*/
 
[ENABLE]
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
 
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
 
originalcode:
movss [edx],xmm4
//mov [eax], 0x44960000     // xmm register value. 0x44960000 means 1200 as an integer
mov [edx], 0x44960000     // 300
//mov [eax], 0x42960000     // 75
//mov [eax], 0x428c0000     // 70
// mov [eax], 0x0FDB1707    // 9
mov eax,[edx]
 
exit:
jmp returnhere
 
Warframe.exe+6976B:
jmp newmem
nop
returnhere:
 
 
 
[DISABLE]
Warframe.exe+6976B:
movss [edx],xmm4
mov eax,[edx]
dealloc(newmem)
 
 
 
 
/*
Warframe.exe+69700 - 51                    - push ecx
Warframe.exe+69701 - F3 0F10 41 04         - movss xmm0,[ecx+04]
Warframe.exe+69706 - F3 0F10 1D 00A21401   - movss xmm3,[Warframe.exe+D4A200]
Warframe.exe+6970E - 8D 51 04              - lea edx,[ecx+04]
Warframe.exe+69711 - F3 0F11 04 24         - movss [esp],xmm0
Warframe.exe+69716 - 8B C2                 - mov eax,edx
Warframe.exe+69718 - 33 04 24              - xor eax,[esp]
Warframe.exe+6971B - 35 B10F442F           - xor eax,2F440FB1
Warframe.exe+69720 - C1 C8 03              - ror eax,03
Warframe.exe+69723 - 89 04 24              - mov [esp],eax
Warframe.exe+69726 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+6972A - F3 0F10 20            - movss xmm4,[eax]
Warframe.exe+6972E - F3 0F10 0C 24         - movss xmm1,[esp]
Warframe.exe+69733 - 0F28 C4               - movaps xmm0,xmm4
Warframe.exe+69736 - 0F28 D0               - movaps xmm2,xmm0
Warframe.exe+69739 - F3 0F5C D1            - subss xmm2,xmm1
Warframe.exe+6973D - 0F54 C3               - andps xmm0,xmm3
Warframe.exe+69740 - 0F54 CB               - andps xmm1,xmm3
Warframe.exe+69743 - 0F2F C1               - comiss xmm0,xmm1
Warframe.exe+69746 - 0F54 D3               - andps xmm2,xmm3
Warframe.exe+69749 - 77 03                 - ja Warframe.exe+6974E
Warframe.exe+6974B - 0F28 C1               - movaps xmm0,xmm1
Warframe.exe+6974E - F3 0F10 0D 849E1401   - movss xmm1,[Warframe.exe+D49E84]
Warframe.exe+69756 - 0F2F C8               - comiss xmm1,xmm0
Warframe.exe+69759 - 76 03                 - jna Warframe.exe+6975E
Warframe.exe+6975B - 0F28 C1               - movaps xmm0,xmm1
Warframe.exe+6975E - F3 0F59 05 E05A1501   - mulss xmm0,[Warframe.exe+D55AE0]
Warframe.exe+69766 - 0F2F C2               - comiss xmm0,xmm2
Warframe.exe+69769 - 73 46                 - jae Warframe.exe+697B1
Warframe.exe+6976B - F3 0F11 22            - movss [edx],xmm4                  <- !!!
 
Warframe.exe+6976F - 8B 02                 - mov eax,[edx]
Warframe.exe+69771 - C1 C0 03              - rol eax,03
Warframe.exe+69774 - 33 C2                 - xor eax,edx
Warframe.exe+69776 - 35 B10F442F           - xor eax,2F440FB1
Warframe.exe+6977B - 89 44 24 08           - mov [esp+08],eax
Warframe.exe+6977F - F3 0F10 44 24 08      - movss xmm0,[esp+08]
Warframe.exe+69785 - 35 7F0DD312           - xor eax,12D30D7F
Warframe.exe+6978A - F3 0F11 02            - movss [edx],xmm0
Warframe.exe+6978E - 89 44 24 08           - mov [esp+08],eax
Warframe.exe+69792 - 8B 01                 - mov eax,[ecx]
Warframe.exe+69794 - F3 0F10 44 24 08      - movss xmm0,[esp+08]
Warframe.exe+6979A - 83 C8 01              - or eax,01
Warframe.exe+6979D - 89 01                 - mov [ecx],eax
Warframe.exe+6979F - 83 E0 FE              - and eax,FE
Warframe.exe+697A2 - F3 0F11 41 08         - movss [ecx+08],xmm0
Warframe.exe+697A7 - 74 08                 - je Warframe.exe+697B1
Warframe.exe+697A9 - B9 01000000           - mov ecx,00000001
Warframe.exe+697AE - 66 89 08              - mov [eax],cx
Warframe.exe+697B1 - 59                    - pop ecx
Warframe.exe+697B2 - C2 0400               - ret 0004
*/

Weapon Exp & Lv

/*
   - Weapon Lv UP to 30.
   - MPGH
   - Made by nilath
*/
 
[ENABLE]
alloc(newmem,2048) //2kb should be enough
label(returnhere)
label(originalcode)
label(exit)
 
newmem: //this is allocated memory, you have read,write,execute access
//place your code here
 
originalcode:
mov edx,[eax]
xor edx,eax
add ecx, 0x10000
mov [eax],ecx
 
exit:
jmp returnhere
 
Warframe.exe+338881:
jmp newmem
nop
returnhere:
 
[DISABLE]
Warframe.exe+338881:
mov edx,[eax]
xor edx,eax
mov [eax],ecx
dealloc(newmem)
 
 
 
/*
Changed to Warframe.exe+194601 - 8B 10                 - mov edx,[eax]  // not here
        or to Warframe.exe+1946C1 - 8B 10                 - mov edx,[eax]   the function is totally same
Changed to Warframe.exe+338FC1 - 8B 10                 - mov edx,[eax]
 
Changed to Warframe.exe+33BAF1 - 8B 10                 - mov edx,[eax] // not correct, this is the health
Changed to Warframe.exe+33BBB1 - 8B 10                 - mov edx,[eax]
 
 
Warframe.exe+33CE70 - 56                    - push esi
Warframe.exe+33CE71 - 8B F1                 - mov esi,ecx
Warframe.exe+33CE73 - 8B 4E 08              - mov ecx,[esi+08]
Warframe.exe+33CE76 - 57                    - push edi
Warframe.exe+33CE77 - 85 C9                 - test ecx,ecx
Warframe.exe+33CE79 - 74 0B                 - je Warframe.exe+33CE86
Warframe.exe+33CE7B - 8B 01                 - mov eax,[ecx]
Warframe.exe+33CE7D - 8B 50 04              - mov edx,[eax+04]
Warframe.exe+33CE80 - FF D2                 - call edx
Warframe.exe+33CE82 - 84 C0                 - test al,al
Warframe.exe+33CE84 - 75 10                 - jne Warframe.exe+33CE96
Warframe.exe+33CE86 - 68 6C393301           - push Warframe.exe+F3396C
Warframe.exe+33CE8B - FF 15 B8E73001        - call dword ptr [Warframe.exe+F0E7B8]
Warframe.exe+33CE91 - 85 C0                 - test eax,eax
Warframe.exe+33CE93 - 74 01                 - je Warframe.exe+33CE96
Warframe.exe+33CE95 - CC                    - int 3
Warframe.exe+33CE96 - 8B 56 04              - mov edx,[esi+04]
Warframe.exe+33CE99 - 8B 7C 24 0C           - mov edi,[esp+0C]
Warframe.exe+33CE9D - 8B 0F                 - mov ecx,[edi]
Warframe.exe+33CE9F - 8D 46 04              - lea eax,[esi+04]
Warframe.exe+33CEA2 - 33 D0                 - xor edx,eax
Warframe.exe+33CEA4 - 81 F2 B10F442FC1CA    - xor edx,2F440FB1 : [D0C1B997]
Warframe.exe+33CEAC - 03 3B                 - add edi,[ebx]
Warframe.exe+33CEAE - D1                    - db D1                               <- MILESTONE
Warframe.exe+33CEAF - 74 75                 - je Warframe.exe+33CF26
Warframe.exe+33CEB1 - 8B 10                 - mov edx,[eax]                       <- !!!
                    // 8B 10 * * 89 08 81 F2 * * * * * * 03 C1
8B * * 8B * * * 8B * 8D * * 33 *
   Warframe.exe+338881 - 8B 11                 - mov edx,[ecx]
   Warframe.exe+338951 - 8B 11                 - mov edx,[ecx]
Warframe.exe+33CEB3 - 31 C2                 - xor edx,eax
Warframe.exe+33CEB5 - 89 08                 - mov [eax],ecx
Warframe.exe+33CEB7 - 81 F2 B10F442FC1CA    - xor edx,2F440FB1 : [D0C1B997]
Warframe.exe+33CEBF - 03 C1                 - add eax,ecx
Warframe.exe+33CEC1 - C1 03 33              - rol [ebx],33
Warframe.exe+33CEC4 - C8 81F1 B1            - enter F181,B1
Warframe.exe+33CEC8 - 0F44 2F               - cmove ebp,[edi]
Warframe.exe+33CECB - 89 08                 - mov [eax],ecx
Warframe.exe+33CECD - 8B 06                 - mov eax,[esi]
Warframe.exe+33CECF - 83 C8 01              - or eax,01
Warframe.exe+33CED2 - 89 06                 - mov [esi],eax
Warframe.exe+33CED4 - 83 E0 FE              - and eax,FE
Warframe.exe+33CED7 - 89 54 24 0C           - mov [esp+0C],edx
Warframe.exe+33CEDB - 74 08                 - je Warframe.exe+33CEE5
Warframe.exe+33CEDD - BA 01000000           - mov edx,00000001
Warframe.exe+33CEE2 - 66 89 10              - mov [eax],dx
Warframe.exe+33CEE5 - 80 7E 18 00           - cmp byte ptr [esi+18],00
Warframe.exe+33CEE9 - 74 3B                 - je Warframe.exe+33CF26
Warframe.exe+33CEEB - 53                    - push ebx
Warframe.exe+33CEEC - 8A 1D 625F3D01        - mov bl,[Warframe.exe+FD5F62]
Warframe.exe+33CEF2 - C6 05 625F3D01 01     - mov byte ptr [Warframe.exe+FD5F62],01
Warframe.exe+33CEF9 - 83 7E 08 00           - cmp dword ptr [esi+08],00
Warframe.exe+33CEFD - 75 10                 - jne Warframe.exe+33CF0F
Warframe.exe+33CEFF - 68 AC383301           - push Warframe.exe+F338AC
Warframe.exe+33CF04 - FF 15 B8E73001        - call dword ptr [Warframe.exe+F0E7B8]
Warframe.exe+33CF0A - 85 C0                 - test eax,eax
Warframe.exe+33CF0C - 74 01                 - je Warframe.exe+33CF0F
Warframe.exe+33CF0E - CC                    - int 3
Warframe.exe+33CF0F - 8B 4E 08              - mov ecx,[esi+08]
Warframe.exe+33CF12 - 8B 01                 - mov eax,[ecx]
Warframe.exe+33CF14 - 8B 40 10              - mov eax,[eax+10]
Warframe.exe+33CF17 - 8D 54 24 10           - lea edx,[esp+10]
Warframe.exe+33CF1B - 52                    - push edx
Warframe.exe+33CF1C - 57                    - push edi
Warframe.exe+33CF1D - FF D0                 - call eax
Warframe.exe+33CF1F - 88 1D 625F3D01        - mov [Warframe.exe+FD5F62],bl
Warframe.exe+33CF25 - 5B                    - pop ebx
Warframe.exe+33CF26 - 5F                    - pop edi
Warframe.exe+33CF27 - 5E                    - pop esi
Warframe.exe+33CF28 - C2 0400               - ret 0004
*/

// ANTI-CHEAT CODES

// This game is calling GetProcessMemoryInfo procedure, if you run warframe.

// This procedure is for watching another process, means this game watches another process through this procedure.

// If you remove this procedure properly, you can avoid the anti-cheat system.

// I don't know there are another anti-cheat code systems, because the dev teams patched the program once again after I uploaded this codes. I think they've seen this forum. Though, I don't care cuz I deleted the game.

MSDN: http://msdn.microsoft.com/en-us/library/windows/desktop/ms683219(v=vs.85).aspx

PSAPI.GetProcessMemoryInfo - 8B FF                 - mov edi,edi
called at KERNELBASE.K32GetProcessMemoryInfo - 8B FF                 - mov edi,edi
called at Warframe.exe+BD68D4 - FF 25 7C731401        - jmp dword ptr [Warframe.exe+D4737C]
called at Warframe.exe+5B5E61 - E8 6E0A6200           - call Warframe.exe+BD68D4
            Warframe.exe+5B5E66 - 85 C0                 - test eax,eax
 
Warframe.exe+1D610 - E8 B992BB00           - call Warframe.exe+BD68CE
 
 
 
 
 
 
 
Warframe.exe+BD68B0 - FF 25 48751401        - jmp dword ptr [Warframe.exe+D47548]
-> VERSION.VerQueryValueW - 8B FF                 - mov edi,edi
Warframe.exe+BD68B6 - FF 25 44751401        - jmp dword ptr [Warframe.exe+D47544]
-> VERSION.GetFileVersionInfoW - 8B FF                 - mov edi,edi
Warframe.exe+BD68BC - FF 25 40751401        - jmp dword ptr [Warframe.exe+D47540]
-> VERSION.GetFileVersionInfoSizeW - 8B FF                 - mov edi,edi
Warframe.exe+BD68C2 - FF 25 74731401        - jmp dword ptr [Warframe.exe+D47374]
-> PSAPI.GetModuleInformation - 8B FF                 - mov edi,edi
Warframe.exe+BD68C8 - FF 25 80731401        - jmp dword ptr [Warframe.exe+D47380]
-> PSAPI.EnumProcessModules - 8B FF                 - mov edi,edi
Warframe.exe+BD68CE - FF 25 78731401        - jmp dword ptr [Warframe.exe+D47378]
-> PSAPI.GetModuleFileNameExW - 8B FF                 - mov edi,edi
Warframe.exe+BD68D4 - FF 25 7C731401        - jmp dword ptr [Warframe.exe+D4737C]
-> PSAPI.GetProcessMemoryInfo - 8B FF                 - mov edi,edi
Warframe.exe+BD68DA - FF 25 70731401        - jmp dword ptr [Warframe.exe+D47370]
-> PSAPI.EnumProcesses - 8B FF                 - mov edi,edi
Warframe.exe+BD68E0 - FF 25 6C731401        - jmp dword ptr [Warframe.exe+D4736C]
-> PSAPI.GetPerformanceInfo - 8B FF                 - mov edi,edi

Encryption/Decryption

decryption
Warframe.exe+A86120 - 8B 91 00080000 * * * *- mov edx,[ecx+00000800] // 차선책: 캡쳐해서 아이템 먹고 diff
Warframe.exe+A8612C - 33 D0 * * * * * * * * - xor edx,eax
Warframe.exe+A8612F - 81 F2 B10F442F578B * *- xor edx,2F440FB1
Warframe.exe+A8614C - C1 CA 03 * * * * * * *- ror edx,03
 
 
- to C Language
struct *pointer = malloc(struct_character);
*(pointer+0x800) = 7FECECAF; // initiate. 7FECECAF means 0*
 
int edx = *(pointer+offset_value);
edx ^= pointer;
edx ^= 0x2F440FB1;
edx << 3;

// If you want to change your items, do reverse engineering this part.

// the addresses are old, you can find by using "Find memory" or "Find Assembly Codes"

Warframe.exe+AD1D80 - 8B 54 24 08           - mov edx,[esp+08]
Warframe.exe+AD1D84 - 8B 02                 - mov eax,[edx]
Warframe.exe+AD1D86 - 56                    - push esi
 
// Only called when you get any item (Mods, Money, Balls, Mods... everything)
Warframe.exe+AD1D87 - 3B 05 AC6A3B01        - cmp eax,[Warframe.exe+FB6AAC]
Warframe.exe+AD1D8D - 75 11                 - jne Warframe.exe+AD1DA0
Warframe.exe+AD1D8F - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1D93 - 66 FF 40 2C           - inc word ptr [eax+2C]
Warframe.exe+AD1D97 - 0FB7 70 2C            - movzx esi,word ptr [eax+2C]
Warframe.exe+AD1D9B - E9 03010000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1DA0 - 3B 05 B46A3B01        - cmp eax,[Warframe.exe+FB6AB4]
Warframe.exe+AD1DA6 - 75 11                 - jne Warframe.exe+AD1DB9
Warframe.exe+AD1DA8 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1DAC - 66 FF 40 28           - inc word ptr [eax+28]
Warframe.exe+AD1DB0 - 0FB7 70 28            - movzx esi,word ptr [eax+28]
Warframe.exe+AD1DB4 - E9 EA000000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1DB9 - 3B 05 B86A3B01        - cmp eax,[Warframe.exe+FB6AB8]
Warframe.exe+AD1DBF - 75 11                 - jne Warframe.exe+AD1DD2
Warframe.exe+AD1DC1 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1DC5 - 66 FF 40 2A           - inc word ptr [eax+2A]
Warframe.exe+AD1DC9 - 0FB7 70 2A            - movzx esi,word ptr [eax+2A]
Warframe.exe+AD1DCD - E9 D1000000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1DD2 - 3B 05 C06A3B01        - cmp eax,[Warframe.exe+FB6AC0]
Warframe.exe+AD1DD8 - 75 11                 - jne Warframe.exe+AD1DEB
Warframe.exe+AD1DDA - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1DDE - 66 FF 40 1E           - inc word ptr [eax+1E]
Warframe.exe+AD1DE2 - 0FB7 70 1E            - movzx esi,word ptr [eax+1E]
Warframe.exe+AD1DE6 - E9 B8000000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1DEB - 3B 05 C86A3B01        - cmp eax,[Warframe.exe+FB6AC8]
Warframe.exe+AD1DF1 - 75 11                 - jne Warframe.exe+AD1E04
Warframe.exe+AD1DF3 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1DF7 - 66 FF 40 1C           - inc word ptr [eax+1C]
Warframe.exe+AD1DFB - 0FB7 70 1C            - movzx esi,word ptr [eax+1C]
Warframe.exe+AD1DFF - E9 9F000000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E04 - 3B 05 D86A3B01        - cmp eax,[Warframe.exe+FB6AD8]
Warframe.exe+AD1E0A - 75 11                 - jne Warframe.exe+AD1E1D
Warframe.exe+AD1E0C - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E10 - 66 FF 40 2E           - inc word ptr [eax+2E]
Warframe.exe+AD1E14 - 0FB7 70 2E            - movzx esi,word ptr [eax+2E]
Warframe.exe+AD1E18 - E9 86000000           - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E1D - 3B 05 DC6A3B01        - cmp eax,[Warframe.exe+FB6ADC]
Warframe.exe+AD1E23 - 75 0E                 - jne Warframe.exe+AD1E33
Warframe.exe+AD1E25 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E29 - 66 FF 40 20           - inc word ptr [eax+20]
Warframe.exe+AD1E2D - 0FB7 70 20            - movzx esi,word ptr [eax+20]
Warframe.exe+AD1E31 - EB 70                 - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E33 - 3B 05 E06A3B01        - cmp eax,[Warframe.exe+FB6AE0]
Warframe.exe+AD1E39 - 75 0E                 - jne Warframe.exe+AD1E49
Warframe.exe+AD1E3B - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E3F - 66 FF 40 30           - inc word ptr [eax+30]
Warframe.exe+AD1E43 - 0FB7 70 30            - movzx esi,word ptr [eax+30]
Warframe.exe+AD1E47 - EB 5A                 - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E49 - 3B 05 E46A3B01        - cmp eax,[Warframe.exe+FB6AE4]
Warframe.exe+AD1E4F - 75 10                 - jne Warframe.exe+AD1E61
Warframe.exe+AD1E51 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E55 - 8B 74 24 10           - mov esi,[esp+10]
Warframe.exe+AD1E59 - 01 70 38              - add [eax+38],esi
Warframe.exe+AD1E5C - 8B 70 38              - mov esi,[eax+38]
Warframe.exe+AD1E5F - EB 42                 - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E61 - 3B 05 E86A3B01        - cmp eax,[Warframe.exe+FB6AE8]
Warframe.exe+AD1E67 - 75 10                 - jne Warframe.exe+AD1E79
Warframe.exe+AD1E69 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E6D - 8B 74 24 10           - mov esi,[esp+10]
Warframe.exe+AD1E71 - 01 70 3C              - add [eax+3C],esi
Warframe.exe+AD1E74 - 8B 70 3C              - mov esi,[eax+3C]
Warframe.exe+AD1E77 - EB 2A                 - jmp Warframe.exe+AD1EA3
 
Warframe.exe+AD1E79 - 3B 05 8CFB3D01        - cmp eax,[Warframe.exe+FDFB8C]
Warframe.exe+AD1E7F - 75 0E                 - jne Warframe.exe+AD1E8F
Warframe.exe+AD1E81 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E85 - 66 FF 40 32           - inc word ptr [eax+32]
Warframe.exe+AD1E89 - 0FB7 70 32            - movzx esi,word ptr [eax+32]
Warframe.exe+AD1E8D - EB 14                 - jmp Warframe.exe+AD1EA3
 
 
!!!
// Only called when you get only mods (Mods)
Warframe.exe+AD1E8F - 3B 05 88FB3D01        - cmp eax,[Warframe.exe+FDFB88]
Warframe.exe+AD1E95 - 75 1F                 - jne Warframe.exe+AD1EB6
Warframe.exe+AD1E97 - 8B 44 24 08           - mov eax,[esp+08]
Warframe.exe+AD1E9B - 66 FF 40 34           - inc word ptr [eax+34]
Warframe.exe+AD1E9F - 0FB7 70 34            - movzx esi,word ptr [eax+34]
 
Warframe.exe+AD1EA3 - 83 FE FF              - cmp esi,FF
Warframe.exe+AD1EA6 - 74 0E                 - je Warframe.exe+AD1EB6
Warframe.exe+AD1EA8 - 52                    - push edx
Warframe.exe+AD1EA9 - 81 C1 FC000000        - add ecx,000000FC
Warframe.exe+AD1EAF - E8 8CFBFFFF           - call Warframe.exe+AD1A40
Warframe.exe+AD1EB4 - 89 30                 - mov [eax],esi
Warframe.exe+AD1EB6 - 5E                    - pop esi
Warframe.exe+AD1EB7 - C2 0C00               - ret 000C

Sorry for my poor English.

Yellow♫ · 21 Marca 2014

Stary wkręcają cie a ty tego nie widzisz nie ma czitów do warframe i raczej nie będzie...

Zaloguj się

👋 Witaj na MPCForum!

Szukam kogoś do pomocy w tworzeniu hacka

Rekomendowane odpowiedzi

rigis

rigis

Yellow♫

Yellow♫

Zarchiwizowany