Help/Support Help with hacking coin value

[steelabood1 21 12]

Hey guys,

 

I have used GDB to get the real address when I add to the money value. The address led me to this highlighted instruction:

 

I changed it to MOV R0,R7 but when I change the money value in the game it crashes. Anyone know what to do?

[Tyramisu 4 19 6.1.6]

u forgot bx lr. no do this ever agen!! 

 

do this

MOV   R0, R7
BX LR

happy life,

 

tiramize

Updated July 5, 2016 by Tyramisu

[steelabood1 21 12]

u forgot bx lr. no do this ever agen!! 

 

do this

MOV   R0, R7
BX LR

happy life,

 

tiramize

 

Thank you for your help. I tried it, it does not force close but it freezes graphically. I can still hear the music and everything but cannot do anything in the game.

[Rook 562.1k iPad Pro (2nd gen) 17.4 Donor]

Thank you for your help. I tried it, it does not force close but it freezes graphically. I can still hear the music and everything but cannot do anything in the game.

Are you changing the whole function or just that instruction?

[Guest]

Thank you for your help. I tried it, it does not force close but it freezes graphically. I can still hear the music and everything but cannot do anything in the game.

This looks like a gameloft game

 

My guess to why its freezing is that the value is too big. I don't really know, its just a guess. When I hack games, I make a list of each avalible way to hack the game. Here's your list:

 

1. LDR R0, [R4, #0x10] to NOP (c046)

2. BL sub_33b396 to MOV R0, R7 NOP (381c c046), needs to be 4 bytes, thats why I put a NOP

3. LDR R0, [R4, #0x10] to MOV R0, #0 (0020)

4. LDR R0, [R4, #0x10] to MOV R0, #1 (0120)

 

 

try those

[steelabood1 21 12]

Are you changing the whole function or just that instruction?

I am changing the instruction and the compare under it.

 

This looks like a gameloft game

 

My guess to why its freezing is that the value is too big. I don't really know, its just a guess. When I hack games, I make a list of each avalible way to hack the game. Here's your list:

 

1. LDR R0, [R4, #0x10] to NOP (c046)

2. BL sub_33b396 to MOV R0, R7 NOP (381c c046), needs to be 4 bytes, thats why I put a NOP

3. LDR R0, [R4, #0x10] to MOV R0, #0 (0020)

4. LDR R0, [R4, #0x10] to MOV R0, #1 (0120)

 

 

try those

I will try it now and update you. Thanks.

[steelabood1 21 12]

This looks like a gameloft game

 

My guess to why its freezing is that the value is too big. I don't really know, its just a guess. When I hack games, I make a list of each avalible way to hack the game. Here's your list:

 

1. LDR R0, [R4, #0x10] to NOP (c046)

2. BL sub_33b396 to MOV R0, R7 NOP (381c c046), needs to be 4 bytes, thats why I put a NOP

3. LDR R0, [R4, #0x10] to MOV R0, #0 (0020)

4. LDR R0, [R4, #0x10] to MOV R0, #1 (0120)

 

 

try those

Ok, so:

 

1. Game crashed

2. Had 226 coins, spent 150, the coin text showed 0. I exited the game then entered, the coin value returned normal. So, no change.

3. Game crashed

4. Game crashed

[Guest]

That's weird, maybe the function being branched to in #2 is controlling price? Try modding that further

[steelabood1 21 12]

That's weird, maybe the function being branched to in #2 is controlling price? Try modding that further

I opened the branch, this is how it looks:

 

Can I modify the last instruction to MOV R0, R7?

[Guest]

I opened the branch, this is how it looks:

 

Can I modify the last instruction to MOV R0, R7?

Try BX LR'ing that whole function

 

in gdb:

 

set *0x33b396=0x4770