冰楓論壇

標題: 使用iAutoUpdater 更新時會碰到的寫法 [打印本頁]

---

作者: btb    時間: 2019-9-20 21:55
標題: 使用iAutoUpdater 更新時會碰到的寫法


示範:
[MACRO]

//addressbase
scan address aob  A1 ?? ?? ?? ?? 85 c0 74 ?? 8d 88
var addressbase $address
add addressbase 1
read addressbase $addressbase

scan offset aob 8d 85 ?? ff ff ff 50 57 ff 15,1
add offset 2
#read offset $offset
load offset
or offset ffff0000
neg offset
result offset $offset value 4

scan addressoffset aob 8d 8b ?? ?? ?? ?? e8 ?? ?? ?? ?? 8d 45 ?? 50 ff 15
var addressoffset1 $addressoffset
add addressoffset1 2
read addressoffset2 $addressoffset1

var addressoffset3 $addressoffset
add addressoffset3 15
var addressoffset4 $addressoffset
add addressoffset4 11
read icsentry $addressoffset4

var ret $addressoffset3


scan qpgjzctz_call aob 55 8B EC 56 57 8D B9 ? ? 00 00 8D 4F ? E8 ? ? ? ? 8B 75 ? 8B CF 89 06 E8 ? ? ? ? 89 46 ? 8B C6 5F 5E 5D C2 04 00 CC CC CC CC CC CC 8B 01

scan qpgjzctz_call2 aob e8 ?? ?? ?? ?? 6a 00 6a 00 8b cf e8 ?? ?? ?? ?? 3d
add qpgjzctz_call2 1
getoffset qpgjzctz_call2




[SCRIPT]
//TwMS v%version% ICS 全職全圖打
[ENABLE]
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)

qpgjzctz_SW:
dd 1

VariantInit_H:
cmp [esp],%ret%
je qpgjzctz_
db 90
jmp VariantInit

qpgjzctz_:
cmp [qpgjzctz_SW],0
je VariantInit
mov [esp],qpgjzctz
jmp VariantInit

qpgjzctz:
mov ecx,[%addressbase%]
add ecx,04
lea eax,[ebp-%offset%]
push eax
call %qpgjzctz_call%
push eax
lea ecx,[ebx+%addressoffset2%]
call %qpgjzctz_call2%
jmp %ret%

%icsentry%:
DD VariantInit_H

[DISABLE]
%icsentry%:
dd VariantInit

dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)

輸出:
//TwMS v219.2 ICS 全職全圖打
[ENABLE]
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)

qpgjzctz_SW:
dd 1

VariantInit_H:
cmp [esp],01557156
je qpgjzctz_
db 90
jmp VariantInit

qpgjzctz_:
cmp [qpgjzctz_SW],0
je VariantInit
mov [esp],qpgjzctz
jmp VariantInit

qpgjzctz:
mov ecx,[03B21C0C]
add ecx,04
lea eax,[ebp-000000C0]
push eax
call 023688E0
push eax
lea ecx,[ebx+0000054C]
call 00CFED70
jmp 01557156

033C9438:
DD VariantInit_H

[DISABLE]
033C9438:
dd VariantInit

dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)

---

作者: lgf328    時間: 2021-5-2 00:52
感谢大大， 这个是好东西，真是需要这个东西

---

作者: a535404515    時間: 2021-5-17 20:16
楓幣負數 ~~ 要占下樓

---

作者: a535404515    時間: 2021-5-17 20:16
大三大四的阿斯倒薩倒薩

---

作者: a535404515    時間: 2021-5-17 20:16
撒旦法阿薩德發生的發撒旦法

---

作者: ayoyollg    時間: 2021-7-1 11:04
來拿1楓幣 路過~~

---

作者: caizunmiao1991    時間: 2021-12-3 12:23
為什麼會提示該腳本是無效的啊

---

歡迎光臨 冰楓論壇 (https://bingfong.com/)

Powered by 冰楓