233716
"Game Speed"
Auto Assembler Script
[ENABLE]
aobscanmodule(gameSpeed,ACValhalla.exe,80 BF ** ** 00 00 00 74 ** 0F B6 ** ** ** 00 00 C0 ** 05 A8 01 74 ** 48 8B) // should be unique
alloc(newmem,$1000,gameSpeed)
label(customSpeed)
label(defaultSpeed)
label(return)
label(speedVal)
label(speedState)
newmem:
push rbx
lea rbx,[rdi+0000185C]
cmp [speedState],00
je exitCode
cmp [speedState],01
je defaultSpeed
cmp [speedState],02
je customSpeed
customSpeed:
fld dword ptr [speedVal] // Load custom speed
fstp dword ptr [rbx-20] // Write custom speed
mov byte ptr [rbx],01
cmp byte ptr [rbx],00
pop rbx
jmp return
defaultSpeed:
// lea rbx,[rdi+0000185C]
fld dword ptr [_defaultValue] // Load default speed
fstp dword ptr [rbx-20] // Write default speed
mov byte ptr [rbx],00
mov [speedState],00
cmp byte ptr [rbx],00
pop rbx
jmp return
exitCode:
cmp byte ptr [rdi+0000185C],00
pop rbx
jmp return
speedVal:
dq (float)2.5
_defaultValue:
dq (float)1.0
speedState:
db 00
gameSpeed:
jmp newmem
nop 2
return:
registersymbol(gameSpeed speedVal speedState)
[DISABLE]
gameSpeed:
db 80 BF 5C 18 00 00 00
unregistersymbol(gameSpeed speedVal speedState)
dealloc(newmem)
{
// ORIGINAL CODE - INJECTION POINT: ACValhalla.exe+147BF42
ACValhalla.exe+147BF13: 45 33 C9 - xor r9d,r9d
ACValhalla.exe+147BF16: C7 44 24 70 04 00 00 00 - mov [rsp+70],00000004
ACValhalla.exe+147BF1E: 45 33 C0 - xor r8d,r8d
ACValhalla.exe+147BF21: 48 8D 54 24 70 - lea rdx,[rsp+70]
ACValhalla.exe+147BF26: 48 8D 8E C8 01 00 00 - lea rcx,[rsi+000001C8]
ACValhalla.exe+147BF2D: E8 DE 20 1A FF - call ACValhalla.exe+61E010
ACValhalla.exe+147BF32: 32 C0 - xor al,al
ACValhalla.exe+147BF34: E9 B6 01 00 00 - jmp ACValhalla.exe+147C0EF
ACValhalla.exe+147BF39: 45 84 C0 - test r8l,r8l
ACValhalla.exe+147BF3C: 0F 85 AB 01 00 00 - jne ACValhalla.exe+147C0ED
// ---------- INJECTING HERE ----------
ACValhalla.exe+147BF42: 80 BF 5C 18 00 00 00 - cmp byte ptr [rdi+0000185C],00
// ---------- DONE INJECTING ----------
ACValhalla.exe+147BF49: 74 49 - je ACValhalla.exe+147BF94
ACValhalla.exe+147BF4B: 0F B6 86 74 01 00 00 - movzx eax,byte ptr [rsi+00000174]
ACValhalla.exe+147BF52: C0 E8 05 - shr al,05
ACValhalla.exe+147BF55: A8 01 - test al,01
ACValhalla.exe+147BF57: 74 0E - je ACValhalla.exe+147BF67
ACValhalla.exe+147BF59: 48 8B 05 10 55 B3 04 - mov rax,[ACValhalla.exe+5FB1470]
ACValhalla.exe+147BF60: F3 0F 10 70 18 - movss xmm6,[rax+18]
ACValhalla.exe+147BF65: EB 2D - jmp ACValhalla.exe+147BF94
ACValhalla.exe+147BF67: 48 85 DB - test rbx,rbx
ACValhalla.exe+147BF6A: 74 28 - je ACValhalla.exe+147BF94
}
233717
"// Set STATE to False before disable the script"
00A800
1
233720
"Enable / Disable"
Auto Assembler Script
{$lua}
local vSpeed = getAddressList()
--State = vSpeed.getMemoryRecordByID(233718).Value
local State = readBytes('speedState')
if State == 00 then
vSpeed.getMemoryRecordByID(233718).Value = 02
speak("Activated")
end
if State == 02 then
vSpeed.getMemoryRecordByID(233718).Value = 01
speak("Deactivated")
end
--if State == 00 then writeBytes('speedState',02) end
--if State == 02 then writeBytes('speedState',01) end
[ENABLE]
[DISABLE]
Toggle Activation
6
0
233718
"STATE"
00:Normal
01:False
02:True
1
0
Byte
speedState
233719
"Speed"
0
Float
speedVal
233710
"Damage & Defense Modifier"
Auto Assembler Script
[ENABLE]
// ********************* Player Compare *************************
aobscanmodule(pChar,ACValhalla.exe,8B BB ** ** 00 00 75 ** 85 FF 78 ** 8B ** ** ** 00 00 3D) // should be unique
alloc(newmem2,$1000,pChar)
label(code2)
label(pCharReturn)
label(_player)
label(_player2)
label(_timer)
label(newmem3)
newmem2:
pushfq
xor edi,edi
cmp [_player2],edi
je newmem3
inc [_timer]
cmp [_timer],000000C8 // 200
jna newmem3
mov [_player2],edi
newmem3:
lea rdi,[rbx+00000138]
push [rdi-10]
pop [_player]
mov edi,[rdi]
popfq
jmp pCharReturn
code2:
mov edi,[rbx+00000138]
jmp pCharReturn
_player:
dq 0
_player2:
dq 0
_timer:
dq 0
pChar:
jmp newmem2
nop
pCharReturn:
// ********************* Damage Modifier *************************
aobscanmodule(damageMulti,ACValhalla.exe,89 5D D0 48 8D 4D 88) // should be unique
alloc(newmem,$1000,damageMulti)
label(code)
label(return)
label(dmgVal)
label(defenseVal)
label(_Defense)
label(_Damage)
newmem:
mov [rbp-30],ebx
lea rcx,[rbp-78]
push rax
push rbx
lea rax,[r14+00000150]
mov rbx,_player2
cmp dword ptr [rbx],01
je code
mov rbx,_player
mov rbx,[rbx]
jmp _Defense
_Defense:
cmp [rcx],rbx // check for player
jne _Damage
// Defense
fild dword ptr [rax]
fdiv dword ptr [defenseVal]
fist dword ptr [rax]
fistp dword ptr [rax+08]
jmp _Damage
_Damage:
cmp [rcx],rbx // check for player
je code
// Damage
fild dword ptr [rax]
fmul dword ptr [dmgVal]
fist dword ptr [rax]
fistp dword ptr [rax+08]
jmp code
code:
pop rbx
pop rax
jmp return
dmgVal:
dq (float)1.0
defenseVal:
dq (float)1.0
damageMulti:
jmp newmem
nop 2
return:
registersymbol(damageMulti defenseVal dmgVal pChar _player)
[DISABLE]
pChar:
db 8B BB 38 01 00 00
damageMulti:
db 89 5D D0 48 8D 4D 88
unregistersymbol(*)
dealloc(*)
{
// ORIGINAL CODE - INJECTION POINT: ACValhalla.exe+218EA37
ACValhalla.exe+218EA0E: 49 8B CF - mov rcx,r15
ACValhalla.exe+218EA11: E8 EA CA 3E 00 - call ACValhalla.exe+257B500
ACValhalla.exe+218EA16: 41 8B 96 5C 01 00 00 - mov edx,[r14+0000015C]
ACValhalla.exe+218EA1D: 83 FA FF - cmp edx,-01
ACValhalla.exe+218EA20: 7E 11 - jle ACValhalla.exe+218EA33
ACValhalla.exe+218EA22: 41 3B 96 50 01 00 00 - cmp edx,[r14+00000150]
ACValhalla.exe+218EA29: 7D 08 - jnl ACValhalla.exe+218EA33
ACValhalla.exe+218EA2B: 49 8B CF - mov rcx,r15
ACValhalla.exe+218EA2E: E8 CD CA 3E 00 - call ACValhalla.exe+257B500
ACValhalla.exe+218EA33: 48 8D 55 D0 - lea rdx,[rbp-30]
// ---------- INJECTING HERE ----------
ACValhalla.exe+218EA37: 89 5D D0 - mov [rbp-30],ebx
// ---------- DONE INJECTING ----------
ACValhalla.exe+218EA3A: 48 8D 4D 88 - lea rcx,[rbp-78]
ACValhalla.exe+218EA3E: E8 6D ED 0A 00 - call ACValhalla.exe+223D7B0
ACValhalla.exe+218EA43: 8B 4D D0 - mov ecx,[rbp-30]
ACValhalla.exe+218EA46: 85 C9 - test ecx,ecx
ACValhalla.exe+218EA48: 7E 1B - jle ACValhalla.exe+218EA65
ACValhalla.exe+218EA4A: 8B 54 24 6C - mov edx,[rsp+6C]
ACValhalla.exe+218EA4E: 8B C2 - mov eax,edx
ACValhalla.exe+218EA50: 41 2B 86 50 01 00 00 - sub eax,[r14+00000150]
ACValhalla.exe+218EA57: 3B C1 - cmp eax,ecx
ACValhalla.exe+218EA59: 7D 0A - jnl ACValhalla.exe+218EA65
}
233711
"Damage Modifier"
0
Float
dmgVal
233712
"Defense Modifier"
0
Float
defenseVal