0
"Inf.Money"
Auto Assembler Script
{ Game : dirt4.exe
Version:
Date : 2017-06-12
Author : Yavor
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Money,dirt4.exe,89 94 24 80 00 00 00 48 8D 15) // should be unique
alloc(newmem,$1000,"dirt4.exe"+60AF8F)
label(code)
label(return)
newmem:
code:
mov edx,#100000000
mov [rsp+00000080],edx
jmp return
Money:
jmp newmem
nop
nop
return:
registersymbol(Money)
[DISABLE]
Money:
db 89 94 24 80 00 00 00
unregistersymbol(Money)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "dirt4.exe"+60AF8F
"dirt4.exe"+60AF60: 48 89 5C 24 18 - mov [rsp+18],rbx
"dirt4.exe"+60AF65: 89 54 24 10 - mov [rsp+10],edx
"dirt4.exe"+60AF69: 55 - push rbp
"dirt4.exe"+60AF6A: 56 - push rsi
"dirt4.exe"+60AF6B: 57 - push rdi
"dirt4.exe"+60AF6C: 48 83 EC 60 - sub rsp,60
"dirt4.exe"+60AF70: 48 8B F9 - mov rdi,rcx
"dirt4.exe"+60AF73: 48 B8 D8 3E 69 63 F7 07 71 2D - mov rax,2D7107F763693ED8
"dirt4.exe"+60AF7D: 48 89 84 24 80 00 00 00 - mov [rsp+00000080],rax
"dirt4.exe"+60AF85: 48 B9 85 03 BC 78 DD C9 16 35 - mov rcx,3516C9DD78BC0385
// ---------- INJECTING HERE ----------
"dirt4.exe"+60AF8F: 89 94 24 80 00 00 00 - mov [rsp+00000080],edx
// ---------- DONE INJECTING ----------
"dirt4.exe"+60AF96: 48 8D 15 43 8A AC 00 - lea rdx,[dirt4.exe+10D39E0]
"dirt4.exe"+60AF9D: 48 8B 84 24 80 00 00 00 - mov rax,[rsp+00000080]
"dirt4.exe"+60AFA5: 48 33 C1 - xor rax,rcx
"dirt4.exe"+60AFA8: 48 8D 4C 24 48 - lea rcx,[rsp+48]
"dirt4.exe"+60AFAD: 48 89 87 90 02 00 00 - mov [rdi+00000290],rax
"dirt4.exe"+60AFB4: E8 17 6E 59 00 - call dirt4.exe+BA1DD0
"dirt4.exe"+60AFB9: 48 8B B7 E0 00 00 00 - mov rsi,[rdi+000000E0]
"dirt4.exe"+60AFC0: 48 8D 97 F0 00 00 00 - lea rdx,[rdi+000000F0]
"dirt4.exe"+60AFC7: 48 8D 4C 24 30 - lea rcx,[rsp+30]
"dirt4.exe"+60AFCC: E8 AF 6D 59 00 - call dirt4.exe+BA1D80
}
1
"Inf.Reputation"
Auto Assembler Script
{ Game : dirt4.exe
Version:
Date : 2017-06-12
Author : Yavor
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Rep,dirt4.exe,69 C2 93 61 C7 33) // should be unique
alloc(newmem,$1000,"dirt4.exe"+60DCA3)
label(code)
label(return)
newmem:
code:
mov edx,#3150000
imul eax,edx,33C76193
jmp return
Rep:
jmp newmem
nop
return:
registersymbol(Rep)
[DISABLE]
Rep:
db 69 C2 93 61 C7 33
unregistersymbol(Rep)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "dirt4.exe"+60DCA3
"dirt4.exe"+60DC80: 4C 8B DC - mov r11,rsp
"dirt4.exe"+60DC83: 49 89 5B 18 - mov [r11+18],rbx
"dirt4.exe"+60DC87: 89 54 24 10 - mov [rsp+10],edx
"dirt4.exe"+60DC8B: 55 - push rbp
"dirt4.exe"+60DC8C: 56 - push rsi
"dirt4.exe"+60DC8D: 57 - push rdi
"dirt4.exe"+60DC8E: 48 83 EC 60 - sub rsp,60
"dirt4.exe"+60DC92: 48 B8 3E E2 94 60 99 19 F9 0D - mov rax,0DF919996094E23E
"dirt4.exe"+60DC9C: 48 8B F9 - mov rdi,rcx
"dirt4.exe"+60DC9F: 49 89 43 08 - mov [r11+08],rax
// ---------- INJECTING HERE ----------
"dirt4.exe"+60DCA3: 69 C2 93 61 C7 33 - imul eax,edx,33C76193
// ---------- DONE INJECTING ----------
"dirt4.exe"+60DCA9: 48 8D 15 28 2F AD 00 - lea rdx,[dirt4.exe+10E0BD8]
"dirt4.exe"+60DCB0: 41 89 43 08 - mov [r11+08],eax
"dirt4.exe"+60DCB4: 41 69 43 0C FF 63 2F 8D - imul eax,[r11+0C],8D2F63FF
"dirt4.exe"+60DCBC: 41 89 43 0C - mov [r11+0C],eax
"dirt4.exe"+60DCC0: 49 8B 43 08 - mov rax,[r11+08]
"dirt4.exe"+60DCC4: 48 89 81 98 02 00 00 - mov [rcx+00000298],rax
"dirt4.exe"+60DCCB: 49 8D 4B D0 - lea rcx,[r11-30]
"dirt4.exe"+60DCCF: E8 FC 40 59 00 - call dirt4.exe+BA1DD0
"dirt4.exe"+60DCD4: 48 8B B7 E0 00 00 00 - mov rsi,[rdi+000000E0]
"dirt4.exe"+60DCDB: 48 8D 97 F0 00 00 00 - lea rdx,[rdi+000000F0]
}
2
"Inf.Repair Time"
Auto Assembler Script
{ Game : dirt4.exe
Version:
Date : 2017-06-11
Author : Yavor
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Repair,dirt4.exe,F3 0F 59 C1 F3 48 0F 2C C0 89 07) // should be unique
registersymbol(Repair)
Repair:
db 0F 57 C0 90 F3 48 0F 2C C0
[DISABLE]
Repair:
db F3 0F 59 C1 F3 48 0F 2C C0
unregistersymbol(Repair)
{
// ORIGINAL CODE - INJECTION POINT: "dirt4.exe"+4349F7
"dirt4.exe"+4349C9: F3 0F 10 8C 90 78 8D 00 00 - movss xmm1,[rax+rdx*4+00008D78]
"dirt4.exe"+4349D2: 41 0F 2F C8 - comiss xmm1,xmm8
"dirt4.exe"+4349D6: 76 06 - jna dirt4.exe+4349DE
"dirt4.exe"+4349D8: 41 0F 28 C8 - movaps xmm1,xmm8
"dirt4.exe"+4349DC: EB 05 - jmp dirt4.exe+4349E3
"dirt4.exe"+4349DE: F3 41 0F 5F C9 - maxss xmm1,xmm9
"dirt4.exe"+4349E3: 8B 84 90 1C 8F 00 00 - mov eax,[rax+rdx*4+00008F1C]
"dirt4.exe"+4349EA: 0F 57 C0 - xorps xmm0,xmm0
"dirt4.exe"+4349ED: F3 41 0F 59 CA - mulss xmm1,xmm10
"dirt4.exe"+4349F2: F3 48 0F 2A C0 - cvtsi2ss xmm0,rax
// ---------- INJECTING HERE ----------
"dirt4.exe"+4349F7: F3 0F 59 C1 - mulss xmm0,xmm1
"dirt4.exe"+4349FB: F3 48 0F 2C C0 - cvttss2si rax,xmm0
// ---------- DONE INJECTING ----------
"dirt4.exe"+434A00: 89 07 - mov [rdi],eax
"dirt4.exe"+434A02: 44 39 2F - cmp [rdi],r13d
"dirt4.exe"+434A05: 0F 86 B9 FE FF FF - jbe dirt4.exe+4348C4
"dirt4.exe"+434A0B: 48 8B CD - mov rcx,rbp
"dirt4.exe"+434A0E: E8 BD 85 01 00 - call dirt4.exe+44CFD0
"dirt4.exe"+434A13: 8B 07 - mov eax,[rdi]
"dirt4.exe"+434A15: 0F 57 D2 - xorps xmm2,xmm2
"dirt4.exe"+434A18: 0F 28 F8 - movaps xmm7,xmm0
"dirt4.exe"+434A1B: F3 48 0F 2A D0 - cvtsi2ss xmm2,rax
"dirt4.exe"+434A20: 0F 28 CA - movaps xmm1,xmm2
}
3
"No Penalty"
Auto Assembler Script
{ Game : dirt4.exe
Version:
Date : 2017-06-12
Author : Yavor
This script does blah blah blah
}
[ENABLE]
aobscanmodule(Penalty,dirt4.exe,F3 0F E6 F6 48 8B 40 40 48 8B 40 08 0F 28 CE 48 8B 1C C8 48 8D 4C 24 40 E8 B4) // should be unique
registersymbol(Penalty)
Penalty:
db 0F 57 F6 90 48 8B 40 40
[DISABLE]
Penalty:
db F3 0F E6 F6 48 8B 40 40
unregistersymbol(Penalty)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "dirt4.exe"+40B09F
"dirt4.exe"+40B075: 48 8B 1C C8 - mov rbx,[rax+rcx*8]
"dirt4.exe"+40B079: 48 8D 4C 24 40 - lea rcx,[rsp+40]
"dirt4.exe"+40B07E: E8 ED 30 45 00 - call dirt4.exe+85E170
"dirt4.exe"+40B083: 48 8B D0 - mov rdx,rax
"dirt4.exe"+40B086: 48 8B CB - mov rcx,rbx
"dirt4.exe"+40B089: E8 82 28 46 00 - call dirt4.exe+86D910
"dirt4.exe"+40B08E: EB 37 - jmp dirt4.exe+40B0C7
"dirt4.exe"+40B090: 48 63 0D 35 47 8F 01 - movsxd rcx,dword ptr [dirt4.exe+1CFF7CC]
"dirt4.exe"+40B097: 48 8B 47 30 - mov rax,[rdi+30]
"dirt4.exe"+40B09B: 66 0F 6E F6 - movd xmm6,esi
// ---------- INJECTING HERE ----------
"dirt4.exe"+40B09F: F3 0F E6 F6 - cvtdq2pd xmm6,xmm6
"dirt4.exe"+40B0A3: 48 8B 40 40 - mov rax,[rax+40]
// ---------- DONE INJECTING ----------
"dirt4.exe"+40B0A7: 48 8B 40 08 - mov rax,[rax+08]
"dirt4.exe"+40B0AB: 0F 28 CE - movaps xmm1,xmm6
"dirt4.exe"+40B0AE: 48 8B 1C C8 - mov rbx,[rax+rcx*8]
"dirt4.exe"+40B0B2: 48 8D 4C 24 40 - lea rcx,[rsp+40]
"dirt4.exe"+40B0B7: E8 B4 30 45 00 - call dirt4.exe+85E170
"dirt4.exe"+40B0BC: 48 8B D0 - mov rdx,rax
"dirt4.exe"+40B0BF: 48 8B CB - mov rcx,rbx
"dirt4.exe"+40B0C2: E8 B9 27 46 00 - call dirt4.exe+86D880
"dirt4.exe"+40B0C7: 48 8B 87 B0 00 00 00 - mov rax,[rdi+000000B0]
"dirt4.exe"+40B0CE: 66 0F 6E C6 - movd xmm0,esi
}
4
"Freeze Time"
Auto Assembler Script
{ Game : dirt4.exe
Version:
Date : 2017-06-11
Author : Yavor
This script does blah blah blah
}
[ENABLE]
aobscanmodule(FreezeTime,dirt4.exe,48 0F AF C2 48 01 41 10) // should be unique
alloc(newmem,$1000,"dirt4.exe"+DBAEF1)
label(code)
label(return)
newmem:
code:
mov rax,0
imul rax,rdx
add [rcx+10],rax
jmp return
FreezeTime:
jmp newmem
nop
nop
nop
return:
registersymbol(FreezeTime)
[DISABLE]
FreezeTime:
db 48 0F AF C2 48 01 41 10
unregistersymbol(FreezeTime)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: "dirt4.exe"+DBAEF1
"dirt4.exe"+DBAEC2: 66 0F 2F C8 - comisd xmm1,xmm0
"dirt4.exe"+DBAEC6: 72 17 - jb SlowTime
"dirt4.exe"+DBAEC8: F2 0F 5C C8 - subsd xmm1,xmm0
"dirt4.exe"+DBAECC: 66 0F 2F C8 - comisd xmm1,xmm0
"dirt4.exe"+DBAED0: 73 0D - jae SlowTime
"dirt4.exe"+DBAED2: 48 B8 00 00 00 00 00 00 00 80 - mov rax,8000000000000000
"dirt4.exe"+DBAEDC: 48 8B D0 - mov rdx,rax
"dirt4.exe"+DBAEDF: F2 48 0F 2C C1 - cvttsd2si rax,xmm1
"dirt4.exe"+DBAEE4: 48 03 C2 - add rax,rdx
"dirt4.exe"+DBAEE7: 48 BA 15 EE 17 A0 0B 7A 2A 7C - mov rdx,7C2A7A0BA017EE15
// ---------- INJECTING HERE ----------
"dirt4.exe"+DBAEF1: 48 0F AF C2 - imul rax,rdx
"dirt4.exe"+DBAEF5: 48 01 41 10 - add [rcx+10],rax
// ---------- DONE INJECTING ----------
"dirt4.exe"+DBAEF9: C3 - ret
"dirt4.exe"+DBAEFA: CC - int 3
"dirt4.exe"+DBAEFB: CC - int 3
"dirt4.exe"+DBAEFC: CC - int 3
"dirt4.exe"+DBAEFD: CC - int 3
"dirt4.exe"+DBAEFE: CC - int 3
"dirt4.exe"+DBAEFF: CC - int 3
"dirt4.exe"+DBAF00: 48 83 EC 58 - sub rsp,58
"dirt4.exe"+DBAF04: 0F 29 74 24 40 - movaps [rsp+40],xmm6
"dirt4.exe"+DBAF09: 4D 8B D0 - mov r10,r8
}