Android Tutorial How to mod obfuscated DLL file (String hacking)

[ThePianoGuy 2.9k]

 
The Unity3D engine now have an ability to remove the function names, encrypt the code and put the encrypted function in the A section, and make the DLL into a obfuscated DLL file. This is similar to IDA string hacking, but now we try DLL string hacking

The DLL i'm modding was ReRave. Coins is visual, and not possible to hack, but it is useful to learn modding obfuscated DLL file
 
https://play.google.com/store/apps/details?id=com.steprevolution.rerave.plus&hl=en
 
1. Open the APK file with Winrar, and extract the Managed file from the APK file.
 

 
2. Download code search here for Reflector: http://www.mediafire.com/download/l1tgvwjb9k44ugz/Reflector.CodeSearch.dll
 
3. Open the Reflector. Click "Tools" -> "Add-Ins..."
 

 
4. Click "+" button
 

 
5. Go to the path where you had downloaded the "Reflector.CodeSearch.dll" file, and click "Open"
 

 
6. Click "Close", close the Reflector, and open it again
 

 
7. You will see the Code Search icon on the toolbar. Click in it, or click "Tools" -> "Code Search"
 


 
8. Open the "Assembly-Csharp.dll" file
 

 
9. IMPORTANT! Make sure the "Assembly-Csharp.dll" file is selected. Select the DLL else where will give you the wrong search results
 

 
10. Now search the string you want to find. Instead, "coin", search what you want
 


 
11. After searching, you will see the result. Ignore the void functions, and find the useful function (in Int32, Int64, double, float, etc.) you want to mod.
 
I was looking for coins function in UInt32 (Same as Int32)


 
12. When you open it, you will see the code above.
 
In this screenshot, I found a "coins" string


 
13. Click the Reflexil icon on the toolbar, , or click "Tools" -> "Reflexil 2.0"
 


 
14. Right click and select "Delete all"
 

 
15. Right click and select "Create new"
 

 
16. Do the following:
 
OpCode: ldc.i4
Operand type: Int32
Operand: 999999
 
and click "Append"
 

 
17. Right click and select "Create new"
 
18. In OpCode, select "ret" and click "Insert after selection"
 

 
19. Your instruction should look like this
 

 
20. Save your DLL
 

 
21. Replace the DLL file in the APK file, run it, and enjoy
 

 
I repeat, coins is visual and not possible to hack in ReRave game
 
Note: Some function does not have the strings in it. If you can't find the function you are looking for, try search another keywords. You can search for Player or SaveData classes, and try mod the function (in Int32, Int64, double, float, etc.) one by one.
 
Credit: AndnixSH

Updated July 25, 2020 by AndnixSH

[Goggwell 17.8k I Don't Have One]

Nice work!

[fahadxmb 10.3k samsung galaxy note 3 neo]

nice work