- UID
- 175467
- 帖子
- 24534
- 主題
- 1257
- 精華
- 0
- 積分
- 3026
- 楓幣
- 7830
- 威望
- 2441
- 存款
- 137915
- 贊助金額
- 1500
- 推廣
- 0
- GP
- 6087
- 閱讀權限
- 150
- 在線時間
- 4208 小時
- 註冊時間
- 2017-1-18
- 最後登入
- 2024-12-4
|
本帖最後由 btb 於 2021-7-1 11:15 編輯
示範:
[MACRO]
//addressbase
scan address aob A1 ?? ?? ?? ?? 85 c0 74 ?? 8d 88
var addressbase $address
add addressbase 1
read addressbase $addressbase
scan offset aob 8d 85 ?? ff ff ff 50 57 ff 15,1
add offset 2
#read offset $offset
load offset
or offset ffff0000
neg offset
result offset $offset value 4
scan addressoffset aob 8d 8b ?? ?? ?? ?? e8 ?? ?? ?? ?? 8d 45 ?? 50 ff 15
var addressoffset1 $addressoffset
add addressoffset1 2
read addressoffset2 $addressoffset1
var addressoffset3 $addressoffset
add addressoffset3 15
var addressoffset4 $addressoffset
add addressoffset4 11
read icsentry $addressoffset4
var ret $addressoffset3
scan qpgjzctz_call aob 55 8B EC 56 57 8D B9 ? ? 00 00 8D 4F ? E8 ? ? ? ? 8B 75 ? 8B CF 89 06 E8 ? ? ? ? 89 46 ? 8B C6 5F 5E 5D C2 04 00 CC CC CC CC CC CC 8B 01
scan qpgjzctz_call2 aob e8 ?? ?? ?? ?? 6a 00 6a 00 8b cf e8 ?? ?? ?? ?? 3d
add qpgjzctz_call2 1
getoffset qpgjzctz_call2
[SCRIPT]
//TwMs v%version% ICS 全職全圖打
[ENABLE]
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)
qpgjzctz_SW:
dd 1
VariantInit_H:
cmp [esp],%ret%
je qpgjzctz_
db 90
jmp VariantInit
qpgjzctz_:
cmp [qpgjzctz_SW],0
je VariantInit
mov [esp],qpgjzctz
jmp VariantInit
qpgjzctz:
mov ecx,[%addressbase%]
add ecx,04
lea eax,[ebp-%offset%]
push eax
call %qpgjzctz_call%
push eax
lea ecx,[ebx+%addressoffset2%]
call %qpgjzctz_call2%
jmp %ret%
%icsentry%:
DD VariantInit_H
[DISABLE]
%icsentry%:
dd VariantInit
dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)
輸出:
//TwMS v219.2 ICS 全職全圖打
[ENABLE]
alloc(VariantInit_H,1024)
alloc(qpgjzctz_SW,4)
alloc(qpgjzctz,128)
registersymbol(qpgjzctz_SW)
label(qpgjzctz_)
qpgjzctz_SW:
dd 1
VariantInit_H:
cmp [esp],01557156
je qpgjzctz_
db 90
jmp VariantInit
qpgjzctz_:
cmp [qpgjzctz_SW],0
je VariantInit
mov [esp],qpgjzctz
jmp VariantInit
qpgjzctz:
mov ecx,[03B21C0C]
add ecx,04
lea eax,[ebp-000000C0]
push eax
call 023688E0
push eax
lea ecx,[ebx+0000054C]
call 00CFED70
jmp 01557156
033C9438:
DD VariantInit_H
[DISABLE]
033C9438:
dd VariantInit
dealloc(VariantInit_H)
dealloc(qpgjzctz_SW)
dealloc(qpgjzctz)
unregistersymbol(qpgjzctz_SW)
|
-
總評分: 楓幣 + 56
威望 + 3
GP + 4
查看全部評分
|