Tutorial How to Mod Obfuscated DLL file

R

Release-Manager

(PST) Sharing Team
Original poster
MOD Sharing Team
Mar 23, 2017
86
54,617
1,213
123
The World
fix-dll-error.jpg

The Unity3D engine now have an ability to remove the function names, encrypt the code and put the encrypted function in the A section, and make the DLL into a obfuscated DLL file. This is similar to IDA string hacking, but now we try DLL string hacking

The DLL i'm modding was ReRave. Coins is visual, and not possible to hack, but it is useful to learn modding obfuscated DLL file

login or register

1. Open the APK file with Winrar, and extract the Managed file from the APK file.

mLCK4tK.png


2. Download code search here for Reflector: login or register

3. Open the Reflector. Click "Tools" -> "Add-Ins..."

nmNbA0J.png


4. Click "+" button

7PF2fLV.png


5. Go to the path where you had downloaded the "Reflector.CodeSearch.dll" file, and click "Open"

a4cnKYd.png


6. Click "Close", close the Reflector, and open it again

7PF2fLV.png


7. You will see the Code Search icon on the toolbar. Click in it, or click "Tools" -> "Code Search"

XnfwLse.png

Oiuz7vC.png


8. Open the "Assembly-Csharp.dll" file

vH3kQ9f.png


9. IMPORTANT! Make sure the "Assembly-Csharp.dll" file is selected. Select the DLL else where will give you the wrong search results

L84EINi.png


10. Now search the string you want to find. Instead, "coin", search what you want

br1LiDW.png

Hclnmo5.png


11. After searching, you will see the result. Ignore the void functions, and find the useful function (in Int32, Int64, double, float, etc.) you want to mod.

I was looking for coins function in UInt32 (Same as Int32)

9NGcgwV.png


12. When you open it, you will see the code above.

In this screenshot, I found a "coins" string

Qc7grBu.png


13. Click the Reflexil icon on the toolbar, , or click "Tools" -> "Reflexil 2.0"

thhncRc.png

iRGJSkn.png


14. Right click and select "Delete all"

WIDqdnL.png


15. Right click and select "Create new"

xzjKhYl.png


16. Do the following:

OpCode: ldc.i4
Operand type: Int32
Operand: 999999

and click "Append"

6rGU7Pc.png


17. Right click and select "Create new"

18. In OpCode, select "ret" and click "Insert after selection"

Xa2oOhv.png


19. Your instruction should look like this

tuBdAD1.png


20. Save your DLL

ygUKBEs.png


21. Replace the DLL file in the APK file, run it, and enjoy

FwtG0HX.png


I repeat, coins is visual and not possible to hack in ReRave game


Note: Some function does not have the strings in it. If you can't find the function you are looking for, try search another keywords. You can search for Player or SaveData classes, and try mod the function (in Int32, Int64, double, float, etc.) one by one.

Credit: iAndroHacker
 
  • Like
Reactions: Jeff232, Martinyay, JCGREEFF and 5 others
You must log in or register to reply here.
Top Bottom