Help/Support Patching Assembly Always Return True

BeBaHung · March 31, 2022

I have this assembly :

il2cpp:0000000005276240 ; =============== S U B R O U T I N E =======================================
il2cpp:0000000005276240
il2cpp:0000000005276240 ; Attributes: bp-based frame
il2cpp:0000000005276240
il2cpp:0000000005276240 sub_5276240                             ; CODE XREF: sub_5276410+D0↓p
il2cpp:0000000005276240                                         ; sub_527687C+64↓p
il2cpp:0000000005276240                                         ; DATA XREF: ...
il2cpp:0000000005276240
il2cpp:0000000005276240 var_10          = -0x10
il2cpp:0000000005276240 var_s0          =  0
il2cpp:0000000005276240
il2cpp:0000000005276240                 STP             X20, X19, [SP,#-0x10+var_10]!
il2cpp:0000000005276244                 STP             X29, X30, [SP,#0x10+var_s0]
il2cpp:0000000005276248                 ADD             X29, SP, #0x10
il2cpp:000000000527624C                 MOV             X19, X0
il2cpp:0000000005276250                 ADRP            X20, #byte_789824C@PAGE
il2cpp:0000000005276254                 LDRB            W8, [X20,#byte_789824C@PAGEOFF]
il2cpp:0000000005276258                 TBNZ            W8, #0, loc_527626C
il2cpp:000000000527625C                 MOV             W0, #0x97F4
il2cpp:0000000005276260                 BL              sub_C1F8E4
il2cpp:0000000005276264                 MOV             W8, #1
il2cpp:0000000005276268                 STRB            W8, [X20,#byte_789824C@PAGEOFF]
il2cpp:000000000527626C
il2cpp:000000000527626C loc_527626C                             ; CODE XREF: sub_5276240+18↑j
il2cpp:000000000527626C                 MOV             W0, #0x59DE
il2cpp:0000000005276270                 SUB             X1, X1, X1
il2cpp:0000000005276274                 BL              sub_4880B90
il2cpp:0000000005276278                 CBZ             W0, loc_52762A0
il2cpp:000000000527627C                 MOV             W0, #0x59DE
il2cpp:0000000005276280                 SUB             X1, X1, X1
il2cpp:0000000005276284                 BL              sub_4880B04
il2cpp:0000000005276288                 CBZ             X0, loc_52762E4
il2cpp:000000000527628C                 MOV             X1, X19
il2cpp:0000000005276290                 SUB             X2, X2, X2
il2cpp:0000000005276294                 LDP             X29, X30, [SP,#0x10+var_s0]
il2cpp:0000000005276298                 LDP             X20, X19, [SP+0x10+var_10],#0x20
il2cpp:000000000527629C                 B               sub_4748B28
il2cpp:00000000052762A0 ; ---------------------------------------------------------------------------
il2cpp:00000000052762A0
il2cpp:00000000052762A0 loc_52762A0                             ; CODE XREF: sub_5276240+38↑j
il2cpp:00000000052762A0                 ADRP            X8, #qword_7B5AA88@PAGE
il2cpp:00000000052762A4                 LDR             X0, [X8,#qword_7B5AA88@PAGEOFF]
il2cpp:00000000052762A8                 BL              sub_320D528
il2cpp:00000000052762AC                 CBZ             X0, loc_52762E4
il2cpp:00000000052762B0                 SUB             X1, X1, X1
il2cpp:00000000052762B4                 BL              sub_525C178
il2cpp:00000000052762B8                 STR             X0, [X19,#0x40]
il2cpp:00000000052762BC                 CBZ             X0, loc_52762D8
il2cpp:00000000052762C0                 LDRB            W8, [X0,#0x210]
il2cpp:00000000052762C4                 CBZ             W8, loc_52762D4
il2cpp:00000000052762C8                 BL              sub_5270FC0
il2cpp:00000000052762CC                 EOR             W0, W0, #1
il2cpp:00000000052762D0                 B               loc_52762D8
il2cpp:00000000052762D4 ; ---------------------------------------------------------------------------
il2cpp:00000000052762D4
il2cpp:00000000052762D4 loc_52762D4                             ; CODE XREF: sub_5276240+84↑j
il2cpp:00000000052762D4                 SUB             W0, W0, W0
il2cpp:00000000052762D8
il2cpp:00000000052762D8 loc_52762D8                             ; CODE XREF: sub_5276240+7C↑j
il2cpp:00000000052762D8                                         ; sub_5276240+90↑j
il2cpp:00000000052762D8                 LDP             X29, X30, [SP,#0x10+var_s0]
il2cpp:00000000052762DC                 LDP             X20, X19, [SP+0x10+var_10],#0x20
il2cpp:00000000052762E0                 RET
il2cpp:00000000052762E4 ; ---------------------------------------------------------------------------
il2cpp:00000000052762E4
il2cpp:00000000052762E4 loc_52762E4                             ; CODE XREF: sub_5276240+48↑j
il2cpp:00000000052762E4                                         ; sub_5276240+6C↑j
il2cpp:00000000052762E4                 BL              sub_C1F9AC
il2cpp:00000000052762E4 ; End of function sub_5276240

It was generated from a function

	// RVA: 0x5276240 Offset: 0x5276240 VA: 0x5276240
	private bool IsNeedHideHistory() { }

Any way to patch the assembly to always return true or false?

Thánks.

Zahir · March 31, 2022

In the address 0x5276240

You can write:

MOV W0, #1 for TRUE or MOV W0, #0 for FALSE
RET

E0030032C0035FD6 (in hex) - TRUE
00008052C0035FD6 (in hex) - FALSE

BeBaHung · April 6, 2022

Thanks. I will try it.

Sign In

Help/Support Patching Assembly Always Return True

3 posts in this topic

Recommended Posts

BeBaHung 0 iPhone 7 15.8

Zahir 393.6k iPad Mini 4 13.6

BeBaHung 0 iPhone 7 15.8

Create an account or sign in to comment

Create an account

Sign in

Our picks

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Picked By

Important Information

BeBaHung 0
iPhone 7

15.8

Zahir 393.6k
iPad Mini 4

13.6

BeBaHung 0
iPhone 7

15.8