Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


Shadowrun 2007 - Disable file checking

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine
View previous topic :: View next topic  
Author Message
DinamoXP
How do I cheat?
Reputation: 0

Joined: 21 Sep 2017
Posts: 3

PostPosted: Thu Sep 21, 2017 2:50 am    Post subject: Shadowrun 2007 - Disable file checking Reply with quote

Howdy,

Shadowrun 2007 is using CryptHash to check its files for modification and I'm having a really hard time disabling that.
I tried to find some info about it but there is absolutely no information about this and how to disable it with cheat engine.
(I just want to disable this protection so I can mod the game.)

Is it even possible to do this with cheat engine?


List of protection found in the game.
Code:
offset   num  description [bits.endian.size]
  --------------------------------------------
  0018c0f1 3051 compression algorithm seen in the game DreamKiller [32.be.12&]
  00b0a4b8 3048 DMC compression [32.le.16&]
  00b31853 3050 compression algorithm seen in the game DreamKiller [32.le.12&]
  00b65708 841  ima_adpcm step table [16.le.178]
  00bf3a30 641  CRC-32-IEEE 802.3 [crc32.0x04c11db7 le rev int_min.1024]
  00bf3a30 648  CRC-32-IEEE 802.3 [crc32.0xedb88320 lenorev 1.1024]
  00bf4430 2291 zinflate_lengthStarts [32.le.116]
  00bf44ad 2295 zinflate_lengthExtraBits [32.be.116]
  00bf44b0 2294 zinflate_lengthExtraBits [32.le.116]
  00bf4530 2298 zinflate_distanceStarts [32.le.120]
  00bf45a8 2303 zinflate_distanceExtraBits [32.le.120]
  00bf5810 3038 unlzx table_three [32.le.64]
  00bf5ea0 1086 Zlib dist_code [..512]
  00bf60a0 1087 Zlib length_code [..256]
  00bf61a0 1089 Zlib base_length [32.le.116]
  00bf61fd 2417 MBC2 [32.le.248&]
  00bf6218 1091 Zlib base_dist [32.le.120]
  00cf91c7 1038 padding used in hashing algorithms (0x80 0 ... 0) [..64]
  00d92a80 1286 Windows CryptHashData [..14]
  00d92a90 1284 Windows CryptCreateHash [..16]
  00d92acc 1285 Windows CryptImportKey [..15]
  00d92ade 1283 Windows CryptAcquireContext [..21]
  00d93cd0 2545 anti-debug: IsDebuggerPresent [..17]
  010be076 917  SSH RSA id-sha1 OBJ.ID. oiw(14) secsig(3) algorithms(2) 26 [..15]

- 24 signatures found in the file in 9 seconds
- done
List of signatures found in Shadowrun.exe
Back to top
View user's profile Send private message
atom0s
Moderator
Reputation: 198

Joined: 25 Jan 2006
Posts: 8516
Location: 127.0.0.1

PostPosted: Thu Sep 21, 2017 2:19 pm    Post subject: Reply with quote

Yes, it is possible. You just need to find where the hash checks are taking place. If the Crypto functions are what is being used to do it, find where CryptHashData is being called and look from there. That would be where the data is being hashed and then possibly compared to an expected hash value. From there you would want to alter the ASM to ignore the hash or jump, by force, over the "failed" section of code to make the game assume the hash is valid.
_________________
- Retired.
Back to top
View user's profile Send private message Visit poster's website
DinamoXP
How do I cheat?
Reputation: 0

Joined: 21 Sep 2017
Posts: 3

PostPosted: Fri Sep 22, 2017 3:57 pm    Post subject: Reply with quote

atom0s wrote:
Yes, it is possible. You just need to find where the hash checks are taking place. If the Crypto functions are what is being used to do it, find where CryptHashData is being called and look from there. That would be where the data is being hashed and then possibly compared to an expected hash value. From there you would want to alter the ASM to ignore the hash or jump, by force, over the "failed" section of code to make the game assume the hash is valid.


That makes sense. I will give it a try and I will keep you updated.
Back to top
View user's profile Send private message
DinamoXP
How do I cheat?
Reputation: 0

Joined: 21 Sep 2017
Posts: 3

PostPosted: Sat Sep 23, 2017 11:27 pm    Post subject: Reply with quote

When I try to execute a simple script with jump or nop command, my script wont execute automatically when the game is started. (for some reason cheat engine wont execute the script automatically)
I can execute script manually and it will work but when game is started on the specific address I can see the name I specified (it will change) but the code is original, not my code. (I'm using auto assemble script.)

(Maybe this is a simple fix but sorry I'm new to cheat engine.)
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Cheat Engine All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites