71 lines
2.1 KiB
C++
Raw Normal View History

2024-05-25 23:39:31 +08:00
#include "CoffeeMaker.h"
2024-05-27 14:54:59 +08:00
bool CoffeeMaker_attach_function()
2024-05-25 23:39:31 +08:00
{
// https://vndb.org/v4025
// こころナビ
const BYTE bytes[] = {
0x81,0xF9,0xD4,0x2B,0x00,0x00,
0x7F,XX,
0xB8,0x5D,0x41,0x4C,0xAE,
};
auto addr = MemDbg::findBytes(bytes, sizeof(bytes), processStartAddress, processStopAddress);
if (!addr)
return false;
addr = MemDbg::findEnclosingAlignedFunction(addr, 0x10);
if (!addr)
return false;
auto addrs = findxref_reverse_checkcallop(addr, addr - 0x1000, addr + 0x1000, 0xe8);
if (addrs.size() != 1)
return false;
auto addr2 = addrs[0];
addr2 = MemDbg::findEnclosingAlignedFunction(addr2, 0x40);
if (!addr2)
return false;
HookParam hp;
hp.address = addr2;
hp.type = USING_CHAR | CODEC_ANSI_BE | NO_CONTEXT;
hp.user_value = addr;
hp.text_fun = [](hook_stack *stack, HookParam *hp, uintptr_t *data, uintptr_t *split, size_t *len)
{
auto a2 = stack->stack[1];
if (a2 > 0x2bd4)
return;
auto sub_429050 = (int(__stdcall *)(signed int a1))hp->user_value;
*data = sub_429050(a2);
static int idx = 0;
*len = 2 * (idx % 2);
idx += 1;
};
return NewHook(hp, "CoffeeMaker");
2024-05-27 14:54:59 +08:00
}
bool CoffeeMaker_attach_function2()
{
// https://vndb.org/v4025
// こころナビ
const BYTE bytes[] = {
0x55,0x8B,0xEC,0x57,0x56,0x8B,0x75,0x0C,0x8B,0x4D,0x10,0x8B,0x7D,0x08,0x8B,0xC1,
0x8B,0xD1,0x03,0xC6,0x3B,0xFE,0x76,0x08,0x3B,0xF8,0x0F,0x82,XX4,
0xF7,0xC7,0x03,0x00,0x00,0x00,0x75,XX,0xC1,0xE9,0x02,0x83,0xE2,0x03,0x83,0xF9,0x08
};
auto addr = MemDbg::findBytes(bytes, sizeof(bytes), processStartAddress, processStopAddress);
if (!addr)
return false;
HookParam hp;
hp.address = addr;
hp.offset=get_stack(1);//get_reg(regs::ecx);//void *__cdecl memcpy(void *a1, const void *Src, size_t Size)
hp.type = USING_STRING;
hp.filter_fun=[](void* data, size_t* len, HookParam* hp){
auto s=std::string((char*)data,*len);
strReplace(s,R"(\w\w\w)","");
return write_string_overwrite(data,len,s);
};
return NewHook(hp, "CoffeeMaker");
}
bool CoffeeMaker::attach_function()
{
return CoffeeMaker_attach_function2()||CoffeeMaker_attach_function();
2024-05-25 23:39:31 +08:00
}