[WarCraft III] TextOut Function (v1.21)

Perma · 04-13-2007, 04:53 PM

Thanks to Palomino's notes for clarifying what some parts of this are actually meant for.

Code:

.data

        WC3FXN_Text             dd 6F663740h
        WC3FXN_GlobalClass      dd 6F84CC20h

.code

Warcraft_TextOut proc           textloc:DWORD

        push eax
        push edx
        push ecx
        push 0FFFFFFFFh

        ;Get the pointer to Warcraft's global class.
        mov eax, WC3FXN_GlobalClass
        mov eax, dword ptr ds:[eax]

        ;Get the pointer to the output class.
        mov eax, dword ptr ds:[eax+3E0h]
        mov edx, dword ptr ds:[eax]
        push 0
        push 41200000h
        lea ecx, dword ptr ss:[esp+08h]
        push ecx

        ;Push the text address.
        mov ecx, textloc
        push ecx
        mov ecx, eax
        call dword ptr [WC3FXN_Text]
        pop ecx
        pop edx
        pop eax
        ret

Warcraft_TextOut endp

K? Pŕo?ćtiόnŹ · 04-14-2007, 01:54 AM

bulk_4me · 04-16-2007, 12:49 AM

nice.

Perma · 08-06-2007, 07:41 PM

Moved to the Warcraft hacking related section.

topaz · 08-20-2007, 07:48 AM

Is anyone willing to port this to C (or a language thats easily understandable)?

Perma · 08-20-2007, 07:55 AM

Code:

void Warcraft_TextOut(DWORD sText)
{
    static int WC3FXN_GlobalClass = 0x6F84CC20;
    static int WC3FXN_Text = 0x6F663740;
    __asm
    {       
        push eax
        push edx
        push ecx
        push 0x0FFFFFFFF
        mov eax, WC3FXN_GlobalClass
        mov eax, dword ptr ds:[eax]
        mov eax, dword ptr ds:[eax+0x3E0]
        mov edx, dword ptr ds:[eax]
        push 0
        push 0x41200000
        lea ecx, dword ptr ss:[esp+0x08]
        push ecx        
        mov ecx, sText
        push ecx
        mov ecx, eax
        call dword ptr [WC3FXN_Text]
        pop ecx
        pop edx
        pop eax
    }
}

That should work.

topaz · 08-20-2007, 07:57 AM

Nice...

saren · 08-20-2007, 12:12 PM

Inline ASM is the devil.

Rufus · 10-13-2007, 09:42 AM

could u do an example in asm of how a "pressing Q (or any key) to show a certain message" would work :P?

sharpz · 11-19-2007, 10:36 PM

I can't get this function to work. I've injected the hook successfully, and the function gets called, but there is simply no display. What exactly isthe global class and could the address have changed?

BitSaber · 01-16-2008, 04:38 PM

Quote:

Originally Posted by Perma

That should work.

Code:

void Warcraft_TextOut(char *cText)
{
    static unsigned long WC3FXN_GlobalClass = 0x6F84CC20;
    static unsigned long WC3FXN_Text = 0x6F663740;

    __asm {       
        push 0FFFFFFFFh
        mov eax, WC3FXN_GlobalClass
        mov eax, dword ptr ds:[eax]
        mov eax, dword ptr ds:[eax+0x3E0]
        mov edx, dword ptr ds:[eax]
        push 0
        push 41200000h
        mov ecx, esp
        lea ecx, dword ptr ss:[ecx+0x08]
        push ecx        
        mov ecx, cText
        push ecx
        mov ecx, eax
        call dword ptr [WC3FXN_Text]
    }
}

BitSaber · 01-21-2008, 09:09 PM

Code:

void Warcraft_TextOut(char *cText)
{
    static unsigned long WC3CLS_OutputClass = (*(int*)(*(int*)0x6F84CC20+0x3E0));
    static unsigned long WC3FXN_PrintText = 0x6F663740;

    __asm {       
        push -1
        push 0
        push 0x41200000
        lea ecx, dword ptr [esp+0x08]
        push ecx        
        push cText
        mov ecx, WC3CLS_OutputClass
        call dword ptr [WC3FXN_Text]
    }
}

For whatever reason, I wasn't able to just edit my above post.

I didn't do any work on Warcraft III yet, but this should work.

Phoenixs · 07-23-2008, 07:15 PM

Do I need some special compiler / library to compile ASM that is integrated to C++?

I wasn't able to compile this code with Dev-C++ 4.9.9.2 so..
Someone explain?

Shimano · 07-23-2008, 08:05 PM

Then use vc++

Phoenixs · 07-24-2008, 03:44 AM

Quote:

Originally Posted by Shimano

Then use vc++

Yea google up abit and many other recommend VC++ to compile inline asm too.

Somebody said that syntax of inline assembler in gcc is strange, too.

Well, gotta try with VC++ when I'm at home again.

Thanks

Phoenixs · 07-24-2008, 03:44 AM

Quote:

Originally Posted by Shimano

Then use vc++

Yea googled up abit and many other recommend VC++ to compile inline asm too.

Somebody said that syntax of inline assembler in gcc is strange, too.

Well, gotta try with VC++ when I'm at home again.

Thanks

EDIT: Sorry for double post :S

Dyndrilliac · 07-24-2008, 04:01 AM

How do you guys think Inline ASM is accomplished? Inline ASM is possible only when the IDE makes use of an ASM compiler/linker. Inline ASM that uses MASM syntax therefore needs MASM compiling tools, which of course are built-in to Microsoft's Visual C++. To check to see if your IDE has the tools required to compile MASM code, search for the utility ml.exe (or ml64.exe for 64-bit compiling).

04-14-2007, 01:54 AM	#2 (permalink)
K? Pŕo?ćtiόnŹ =) Senior Member Game Hacking Staff Messiah Join Date: Oct 2004 Location: Okinawa Posts: 8,726	gj __________________

08-06-2007, 07:41 PM	#4 (permalink)
Perma rol 3905h, 8 Senior Member Administrator Inquisitor Join Date: Jul 2004 Location: Canada Posts: 5,182	Moved to the Warcraft hacking related section. __________________ Fear, Zero, Exhale, GDI-Bot Keep it open source. (See more...)

08-20-2007, 12:12 PM	#8 (permalink)
saren Crusader Join Date: Feb 2005 Location: Tucson, AZ Posts: 3,327	Inline ASM is the devil. __________________ Burn, baby, burn.

07-23-2008, 07:15 PM	#13 (permalink)
Phoenixs Heretic Join Date: Jul 2008 Posts: 28	Do I need some special compiler / library to compile ASM that is integrated to C++? I wasn't able to compile this code with Dev-C++ 4.9.9.2 so.. Someone explain? __________________ In a world without walls and fences, you don't need windows or gates.

07-23-2008, 08:05 PM	#14 (permalink)
Shimano Advocate Join Date: Jan 2007 Location: Boise, ID Posts: 207	Then use vc++ __________________

04-16-2007, 12:49 AM	#3 (permalink)
bulk_4me F7 F1EF Senior Member Moderator Enlightened Join Date: Jun 2004 Location: Torreón, Coah. México Posts: 3,197	nice.

08-20-2007, 07:48 AM	#5 (permalink)
topaz Heretic Join Date: Mar 2007 Posts: 24	Is anyone willing to port this to C (or a language thats easily understandable)?

08-20-2007, 07:57 AM	#7 (permalink)
topaz Heretic Join Date: Mar 2007 Posts: 24	Nice...

10-13-2007, 09:42 AM	#9 (permalink)
Rufus A God Among Men Disciple Join Date: May 2007 Posts: 423	could u do an example in asm of how a "pressing Q (or any key) to show a certain message" would work :P?

11-19-2007, 10:36 PM	#10 (permalink)
sharpz Mortal Join Date: Nov 2007 Posts: 6	I can't get this function to work. I've injected the hook successfully, and the function gets called, but there is simply no display. What exactly isthe global class and could the address have changed?

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)