Cheat Engine

[nonnonpikari]

Hello!

I am just starting to use cheat engine and managed to complete the tutorial, but right now i am really new at this and i don't know most of the assembler codes...

I am trying to hack a rpg game to make a 'God + One hit' mode.

I found out that health is a Double type of data and every time a battle happens the addresses change...

Tried first to do a LV 6 (Offset 4096) Pointer scan without a valid result... almost 6 hours doing it

After that i tried doing like Step 9 of the tutorial and found out a possible data that can show if it's a party member or a enemy... [edx+68] if 4 then party, if 1 enemy... (Tried several times with diferent setting and this was the value that make the diference between the groups).

and finally tried to change the code...

The assembler code that accesses the Health data is the next:

RPGGame.exe+?????? - 8B 02 - mov eax,[edx]
RPGGame.exe+?????? - 89 01 - mov [ecx],eax
RPGGame.exe+?????? - 8B 42 04 - mov eax,[edx+04]
RPGGame.exe+?????? - 89 41 04 - mov [ecx+04],eax

Not really having a clue of what this is doing considering that the first 2 lines have more than 40 counts and the 2 final ones only 2...???

So tried experimenting
And this is how it looked my replaced code:

cmp [edx+68],4
jne original code
jmp exit

original code:
mov [edx],1
jmp exit

but only got the game closing... an error on my behalf surely...

I also tried to change the original code lines to 'code that do nothing' and the game just closed at the very first line... maybe protection from the game???

Please, if you can and want, help me find a right solution to make my 'God + One hit' mode possible

Thank you for your kind attention!

PD I hope i didn't break any rule with this post...

[OldCheatEngineUser]

its possible.

[nonnonpikari]

Thanks OldCheatEngineUser!

I am still trying to make this to work... no luck so far, but will keep doing for a while.

I will have to learn a lot more of assembler

[nonnonpikari]

Well... found out that the analysis i did was for the things that accesses to the address of the value... so i tried again for the things that write to the address of the value and found out 2 lines that do it every time one party member or one enemy receives damage:

mov [edx],eax
mov [edx+04],eax

This is the complete part of the assembler memory that includes the lines:

???.exe+?????? - 8B 7D F8 - mov edi,[ebp-08]
???.exe+?????? - 8B 55 F4 - mov edx,[ebp-0C]
???.exe+?????? - 8B 4D 14 - mov ecx,[ebp+14]
???.exe+?????? - 8B 01 - mov eax,[ecx] <=
???.exe+?????? - 89 02 - mov [edx],eax
???.exe+?????? - 8B 41 04 - mov eax,[ecx+04] <=
???.exe+?????? - 89 42 04 - mov [edx+04],eax
???.exe+?????? - 8B 41 08 - mov eax,[ecx+08]
???.exe+?????? - 89 42 08 - mov [edx+08],eax

Checking the values i found out that in the 2 lines the eax register is copying the value of the health to edx (that is a pointer for the address of the health value), because is a Double type...

So i tried with this (right know trying to give every party member a value of 5,000,000 of health):


cmp dword ptr [edx+68],01
je originalcode
mov dword ptr [edx],0
mov eax,[ecx+04]
mov dword ptr [edx+04],1095963344
jmp exit

originalcode:
mov [edx],eax
mov eax,[ecx+04]
mov [edx+04],eax


But that only got the program to close...

Any advice is welcome

and please remember i just started to learn...

[OldCheatEngineUser]

[nonnonpikari]

Thanks again OldCheatEngineUser!

I tried exactly the code you wrote and the game keeps closing... not sure why...

So i tried testing with something like this

newmem:
jmp exit
(no original code for this test )

And the game still closes... not sure what i am doing wrong...

Anyway thanks for the kind attention!

Will keep testing to see if i found what's the problem, but what i think right now if that the game is protected for this kind of change...

[OldCheatEngineUser]

pretty sure you are doing something wrong, or you provided some wrong infos. (unless the game have something ... yeah)
anyway ill pm you about this.

[ana5055]

nice