Scribd
Upload
4K views6 pages

Code

unity related game code ,

Uploaded by

sayamr086
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
4K views6 pages

Code

unity related game code ,

Uploaded by

sayamr086
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

this is the function i found on the memory addresses 0x008b863c

undefined8 JNI_OnLoad(undefined8 param_1)

{
__android_log_print(4,"IL2CPP","JNI_OnLoad");
DAT_02c59098 = param_1;
FUN_00964e00(FUN_008b866c);
return 0x10006;
}

and i'm being confused how can i find RegisterNatives FindClass GetMethodID
function names when everything is memory addresses

um good news i did find something similar


s_()Ljava/lang/String;_022a8d89
XREF[1]: FUN_008b89b8:008b8a94 (*)
022a8d89 28 29 4c ds "()Ljava/lang/String;"
6a 61 76
61 2f 6c

Decompiled

void FUN_00964e00(undefined8 param_1)

{
DAT_02c5aab8 = param_1;
return;
}

- for function 00964e00

*************************************************************
* FUNCTION

*************************************************************
undefined FUN_00964e00 ()
undefined w0:1 <RETURN>
FUN_00964e00
XREF[4]: JNI_OnLoad:008b8658 (c) ,

thunk_FUN_00964e00:0091fd24 (T) ,

thunk_FUN_00964e00:0091fd24 (j) ,

023b8d40 , 02879978 (*)


00964e00 a8 17 01 d0 adrp x8,0x2c5a000
00964e04 00 5d 05 f9 str x0,[x8, #0xab8 ]=>DAT_02c5aab8
= ??
00964e08 c0 03 5f d6 ret

-for function FUN_008b866c

*************************************************************
* FUNCTION

*************************************************************
undefined FUN_008b866c ()
undefined w0:1 <RETURN>
undefined8 Stack[-0x10]:8 local_10
XREF[2]: 008b8684 (W) ,

008b8920 (R)
undefined8 Stack[-0x20]:8 local_20
XREF[2]: 008b8680 (W) ,

008b8924 (R)
undefined8 Stack[-0x30]:8 local_30
XREF[2]: 008b867c (W) ,

008b8928 (R)
undefined8 Stack[-0x40]:8 local_40
XREF[2]: 008b8678 (W) ,

008b892c (R)
undefined8 Stack[-0x50]:8 local_50
XREF[2]: 008b8674 (W) ,

008b8930 (R)
undefined8 Stack[-0x60]:8 local_60
XREF[2]: 008b8670 (W) ,

008b8934 (R)
undefined8 Stack[-0x68]:8 local_68
XREF[12]: 008b869c (W) ,

008b86e0 (R) ,

008b86f0 (R) ,

008b8710 (R) ,

008b873c (R) ,

008b8750 (R) ,

008b8768 (R) ,

008b8780 (R) ,

008b88b0 (R) ,
008b88c4 (R) ,

008b88dc (R) ,

008b88f4 (R)
undefined8 Stack[-0x78]:8 local_78
XREF[3]: 008b8794 (W) ,

008b8800 (W) ,

008b8824 (R)
undefined8 Stack[-0x80]:8 local_80
XREF[4]: 008b8798 (W) ,

008b87c0 (W) ,

008b8804 (W) ,

008b8820 (R)
FUN_008b866c
XREF[3]: JNI_OnLoad:008b8650 (*) ,

023b2988 , 02860bf0 (*)


008b866c ff 03 02 d1 sub sp,sp,#0x80
008b8670 fc 6f 02 a9 stp x28 ,x27 ,[sp, #local_60 ]
008b8674 fa 67 03 a9 stp x26 ,x25 ,[sp, #local_50 ]
008b8678 f8 5f 04 a9 stp x24 ,x23 ,[sp, #local_40 ]
008b867c f6 57 05 a9 stp x22 ,x21 ,[sp, #local_30 ]
008b8680 f4 4f 06 a9 stp x20 ,x19 ,[sp, #local_20 ]
008b8684 fd 7b 07 a9 stp x29 ,x30 ,[sp, #local_10 ]
008b8688 1a 1d 01 b0 adrp x26 ,0x2c59000
008b868c 48 4f 40 f9 ldr x8,[x26 , #offset DAT_02c59098 ]
= ??
008b8690 f3 03 00 aa mov x19 ,x0
008b8694 c8 09 00 b4 cbz x8,LAB_008b87cc
008b8698 33 14 00 b4 cbz x19 ,LAB_008b891c
008b869c ff 0f 00 f9 str xzr ,[sp, #local_68 ]
008b86a0 09 01 40 f9 ldr x9,[x8]
008b86a4 42 00 80 52 mov w2,#0x2
008b86a8 e1 63 00 91 add x1,sp,#0x18
008b86ac 22 00 a0 72 movk w2,#0x1 , LSL #16
008b86b0 29 19 40 f9 ldr x9,[x9, #0x30 ]
008b86b4 e0 03 08 aa mov x0,x8
008b86b8 20 01 3f d6 blr x9
008b86bc f4 03 00 2a mov w20 ,w0
008b86c0 1f 08 00 31 cmn w0,#0x2
008b86c4 e1 00 00 54 [Link] LAB_008b86e0
008b86c8 40 4f 40 f9 ldr x0,[x26 , #offset DAT_02c59098 ]
= ??
008b86cc e1 63 00 91 add x1,sp,#0x18
008b86d0 e2 03 1f aa mov x2,xzr
008b86d4 08 00 40 f9 ldr x8,[x0]
008b86d8 08 11 40 f9 ldr x8,[x8, #0x20 ]
008b86dc 00 01 3f d6 blr x8

when i did string search for GetMethodID i got the following


FLOAT_020fd417
XREF[3]: FUN_01e818b8:01e81a08 (*) ,

FUN_01e81c9c:01e81cc4 (*) ,

FUN_01e82404:01e8242c (*)
020fd417 55 6e 69 74 float 7.397723E+31

for 0x30
008b86b0 29 19 40 f9 ldr x9,[x9, #0x30 ]
for 0x88
008b86e8 08 45 40 f9 ldr x8,[x8, #0x88 ]
for 0x388
008b872c 08 c5 41 f9 ldr x8,[x8, #0x388 ]
for 0x538
008b8748 08 9d 42 f9 ldr x8,[x8, #0x538 ]
for 0x720
008b8770 08 91 43 f9 ldr x8,[x8, #0x720 ]
for localx68
008b8764 ae 01 00 94 bl FUN_008b8e1c
undefined FUN_008b8e1c()

for param_1
008b874c 00 01 3f d6 blr x8

i have found this

s_loadLibrary_022a8db9
XREF[1]: FUN_008b866c:008b871c (*)
022a8db9 6c 6f 61 ds "loadLibrary"
64 4c 69
62 72 61

java -jar [Link] -a "C:\Users\HP\Desktop\pra\[Link]" -o "C:\


Users\HP\Desktop\pra\output"

[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
android.R$styleable
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link].i18n
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
com.unity3d
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
kotlin.UNINITIALIZED_VALUE
[Link]
kotlin.unity3d
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
org.kxml2
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]
[Link]

[Link]
Methods in [Link]:
getGid
getPid
getUid

[Link]
Methods in [Link]:
allFields
allMethods
getDirectMethods
getInstanceFields
getStaticFields
getVirtualMethods

You might also like