#include"Anisetta.h"
 
bool Anisetta::attach_function() {
  //https://vndb.org/v4068
  //12+
    const BYTE bytes[] = {
      0xF7 ,0xD8,
      0x1B ,0xC0,
      0x25 ,0x58 ,0x02 ,0x00 ,0x00,
      0x05 ,0x90 ,0x01 ,0x00 ,0x00,
  }; 
  auto addr=MemDbg::findBytes(bytes, sizeof(bytes), processStartAddress, processStopAddress);
  if(addr==0)return false;
   addr=MemDbg::findEnclosingAlignedFunction(addr);
   if(addr==0)return false;
  HookParam hp;
  hp.address = addr ; 
  hp.type = CODEC_ANSI_BE;
  hp.offset=get_stack(5);
  
  
  return NewHook(hp, "Anisetta"); 
}