可以自行更新
define(address,01A4EAFD)
define(address1,01A4EBAA)
[ENABLE]
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem:
originalcode:
cmp dword ptr [esi+000007ac],00
jne originalcode+F
jmp address+d
nop
jmp address1
ret
nop
exit:
jmp returnhere
address:
jmp newmem
nop
returnhere:
[DISABLE]
dealloc(newmem)
address:
je address1
define(address,01A4EAFD)
define(address1,01A4EBAA)
[ENABLE]
alloc(newmem,2048)
label(returnhere)
label(originalcode)
label(exit)
newmem:
originalcode:
cmp dword ptr [esi+000007ac],00
jne originalcode+F
jmp address+d
nop
jmp address1
ret
nop
exit:
jmp returnhere
address:
jmp newmem
nop
returnhere:
[DISABLE]
dealloc(newmem)
address:
je address1
