Cheat Engine

[Zaladine]

[gabarito]

WOW!!!

Wonderful! It worked! Many thanks, man!




P.S.:
There are some thingies going on here, because not every time I can find those address. Sometimes I have to restart BlueStacks because CE returns no address. None. It happens even when I'm looking for address from stages without time and float values within. I restart BlueStacks and, BINGO, it works. But sometimes, it doesn't work... I don't know why.
But it's enough. When I restart BlueStacks one, two, three times, then CE can find the address correctly.

[Zaladine]

Current BlueStacks is the problem... It's heavy...
The later version should be much better...

[gabarito]

I could find out that It's possible to save the current state of the game just saving two files:

%AllUsersProfile%\%AppData%\BlueStacks\Android\Data.sparsefs\Store
and
%AllUsersProfile%\%AppData%\BlueStacks\Android\SDCard.sparsefs\Store

They keep the current level and lives remaining.
Is there a way to hack those files to open all levels of the game?
Or to reset the lives remaining?

If I change BlueStacks Date/Time to reset lives, it may occur that a number of minutes to wait until get more lives increase too much. How to deal with that?

I think, above is the last questions about all this game.

[lailton22]

Hi friends,

Gabarito,
You have the table .CT this solution about BlueStacks running CandyCrush?

Thanks.

[gabarito]

We are using CandyCrush through emulation. We have to scan the whole Physical memory. I'm not sure, but I guess there is no CT table, because address are changing every time we start BlueStacks.

Do you know the answer of any question I've made?

[Zaladine]

[gabarito]

[Zaladine]

BlueStacks, as far as i know, is root-ed already so you can use a tool named Titanium Backup for backup purposes. Its usage is quite 'techy' but is actually easy, allowing you to save both apps and data as compressed files which then can be ported between devices and restored completely, also using the same tool... You may want to check it later, and there's bunch of its tutorial on google or youtube and prevent such thing happen again...



Now, on to Candy Crush Saga level hack...
Before we start, please note that i take no responsibilities for any damage caused by the method i'll explain, thus i urge anyone to use it as SINGLE PLAYER hack. Please, don't brag the outcome to friends over facebook or anything...

Unlocking the levels in Candy Crush Saga is indeed can be accomplished by merely memory hacking. However, it still sounds dumb enough that the hack will not be very clean tho it's perfectly working... So here's how i did it:

First, i start a new fresh Candy Crush Saga (i voluntarily wipe my game progress to write this step-by-step tut). I played it in normal way for 5 levels, and have my progress recorded as follows:

[gabarito]

Wonderful!
Amazing!
Sensational!

Zaladine, it's a really excellent job!

It was very sad to lost all 134 levels, but now I can try to go there again. I like the game and it's a good hobby between work time and coffee breaks. So, I'll try your very detailed tutorial later, paying attention for your advices.

Once again, congrats for your skills and smartness. Also for your patience to do so many tasks manually and for facing BSODs (Blue Screen Of Death).

Many thanks.
Candy Crush's fans appreciate your job.




.

[gabarito]

Zaladine, I'm trying to duplicate your steps here.
I could find 4 addresses with my last game's results. They were:

[Zaladine]

Most likely you were modifying the wrong addresses...

My previous step-by-step levels and lives hack is actually work in sync, meaning we can work the other way around like following illustration...

I have 4 lives with 49 being my current level, and we wanna hack the remaining lives. Here's simple how:

1. Run Candy Crush Saga on BlueStacks... Run CE and attach to Physical Memory...
2. Perform Grouped Scan with this string: "4:4 4:0 4:48" (4 is the current lives, 0 is some kind of pad value, 48 is the current level -1)... We'll get several found addresses...
3. Enter the level (49). Just enter the level, we don't need to play at all...
4. While the game still in play, get back to CE and perform filtering scan with this string: "4:3 4:0 4:48" (only modify the lives by -1).
5. Now our previous found addresses will definitely cut down to, most likely, less than 5 addresses.
6. At this point, just add them all to the table. Delete the addresses which hold padding value and current level value (the ones which values are 0 and 48, so the table will consist only addresses with 3 as their value).
7. Quit the level (not the game), by touching back button.
8. The addresses values will most likely turn back to 4. It won't matter if they don't, just continue to the next step...
9. Now perform manual trial to those addresses one at a time. Pay attention to your lives in BlueStacks on each modified lives value.
10. There should be only one valid address in the table, so delete the others.
11. Almost always, several bytes after this valid address are the valid level completion records addresses...

That's all... If things go wrong, just restart the gameand perform above steps. It won't be difficult at all...

The important thing is about how the game handle players' remaining lives:
When in levels map, the lives value in memory is the same as it shown at the upper left corner of the GUI. But when players enter a level, this remaining lives value get decremented at the same time. This is most likely to prevent players from cheating by intentionally quit the level when they think they won't able to complete it. By reducing the live, at early levels, such cheating action won't escape them from 1 live penalty...

Good luck, and please stick to single player hacking...

[gabarito]

Thank you for your advices and patience.
I'm trying and going ahead.

The way I can get more lives is following your first steps, searching for scores and stars. I found out that the few addresses returned have almost the same values, but just only one, the right one, reflects to the others. And none of them reflects immediately the Lives at Map screen. I have to quit BlueStacks and restart it again to see that the Lives had changed. I don't know if you can see the Lives number changes at real time. I can't. Maybe because I use WinXP?

Because I don't know the correct address to change, I make changes for all of them, normally only 3 or 4 addresses. So, I change the Lives number for all of them, quit and restart BlueStacks. For this reason, the other addresses mirrored are gone and just the right one remains, as you can see at image 1 attached, pointed by an arrow.

So, this step is over. I know how to handle Lives.

Now, the remaining levels. The same thing: I search scores and stars had done. 3 or 4 addresses are returned. I change all of them below the last level, to score 500 and stars to 3. I want to reach Level 134, where my mistake deleted all levels. I did it. But the Map shows just the station levels, not the detailed map, as you can see at image 2. You said to quit and restart the game to get the datailed map, because of the gates and challenges along the way. I did that, but I got just the incomplete map.

How to get the detailed map? This way, incomplete map, it's not possible to enter the level.

[Zaladine]

[gabarito]

I tried to unlock the map running the last gate available, that have 3 challenges. It was useless. When I fulfill the last challenge, the map remains locked and I'm prompt to fulfill 3 more challenges, as if I had done nothing.

I'm trying to find out which files it changes when running the game. There is a file called Map, but I'd watched no changes in it. This another approach, watching files changing. Have you ever think to try out?

Now I'm more confortable to navigate through the Memory Viewer and I can get addresses changing on the fly, to locating what variable I need to change. Good tool!

When you have any solution about to unlock the main map, please tell us.

The Saga goes on.




Edit:

More infos.

At picture1 we can see my track. I'd run the game without hacking until level 104. Scores and Stars are real ones. Level 105 and forward I filled the addresses with Score 100 (or 200) and Stars 3. Score at 104 is 147320. After play for a while the last Gate (just after Level 110) I noticed new Scores, at 119 and 126. Previously I had filled that with 200 and 300, not that numbers. The last filled address is Level 130.