View previous topic :: View next topic |
Author |
Message |
DinamoXP How do I cheat? Reputation: 0
Joined: 21 Sep 2017 Posts: 3
|
Posted: Thu Sep 21, 2017 2:50 am Post subject: Shadowrun 2007 - Disable file checking |
|
|
Howdy,
Shadowrun 2007 is using CryptHash to check its files for modification and I'm having a really hard time disabling that.
I tried to find some info about it but there is absolutely no information about this and how to disable it with cheat engine.
(I just want to disable this protection so I can mod the game.)
Is it even possible to do this with cheat engine?
List of protection found in the game.
Code: | offset num description [bits.endian.size]
--------------------------------------------
0018c0f1 3051 compression algorithm seen in the game DreamKiller [32.be.12&]
00b0a4b8 3048 DMC compression [32.le.16&]
00b31853 3050 compression algorithm seen in the game DreamKiller [32.le.12&]
00b65708 841 ima_adpcm step table [16.le.178]
00bf3a30 641 CRC-32-IEEE 802.3 [crc32.0x04c11db7 le rev int_min.1024]
00bf3a30 648 CRC-32-IEEE 802.3 [crc32.0xedb88320 lenorev 1.1024]
00bf4430 2291 zinflate_lengthStarts [32.le.116]
00bf44ad 2295 zinflate_lengthExtraBits [32.be.116]
00bf44b0 2294 zinflate_lengthExtraBits [32.le.116]
00bf4530 2298 zinflate_distanceStarts [32.le.120]
00bf45a8 2303 zinflate_distanceExtraBits [32.le.120]
00bf5810 3038 unlzx table_three [32.le.64]
00bf5ea0 1086 Zlib dist_code [..512]
00bf60a0 1087 Zlib length_code [..256]
00bf61a0 1089 Zlib base_length [32.le.116]
00bf61fd 2417 MBC2 [32.le.248&]
00bf6218 1091 Zlib base_dist [32.le.120]
00cf91c7 1038 padding used in hashing algorithms (0x80 0 ... 0) [..64]
00d92a80 1286 Windows CryptHashData [..14]
00d92a90 1284 Windows CryptCreateHash [..16]
00d92acc 1285 Windows CryptImportKey [..15]
00d92ade 1283 Windows CryptAcquireContext [..21]
00d93cd0 2545 anti-debug: IsDebuggerPresent [..17]
010be076 917 SSH RSA id-sha1 OBJ.ID. oiw(14) secsig(3) algorithms(2) 26 [..15]
- 24 signatures found in the file in 9 seconds
- done
List of signatures found in Shadowrun.exe |
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8516 Location: 127.0.0.1
|
Posted: Thu Sep 21, 2017 2:19 pm Post subject: |
|
|
Yes, it is possible. You just need to find where the hash checks are taking place. If the Crypto functions are what is being used to do it, find where CryptHashData is being called and look from there. That would be where the data is being hashed and then possibly compared to an expected hash value. From there you would want to alter the ASM to ignore the hash or jump, by force, over the "failed" section of code to make the game assume the hash is valid.
_________________
- Retired. |
|
Back to top |
|
|
DinamoXP How do I cheat? Reputation: 0
Joined: 21 Sep 2017 Posts: 3
|
Posted: Fri Sep 22, 2017 3:57 pm Post subject: |
|
|
atom0s wrote: | Yes, it is possible. You just need to find where the hash checks are taking place. If the Crypto functions are what is being used to do it, find where CryptHashData is being called and look from there. That would be where the data is being hashed and then possibly compared to an expected hash value. From there you would want to alter the ASM to ignore the hash or jump, by force, over the "failed" section of code to make the game assume the hash is valid. |
That makes sense. I will give it a try and I will keep you updated.
|
|
Back to top |
|
|
DinamoXP How do I cheat? Reputation: 0
Joined: 21 Sep 2017 Posts: 3
|
Posted: Sat Sep 23, 2017 11:27 pm Post subject: |
|
|
When I try to execute a simple script with jump or nop command, my script wont execute automatically when the game is started. (for some reason cheat engine wont execute the script automatically)
I can execute script manually and it will work but when game is started on the specific address I can see the name I specified (it will change) but the code is original, not my code. (I'm using auto assemble script.)
(Maybe this is a simple fix but sorry I'm new to cheat engine.)
|
|
Back to top |
|
|
|