Wow.exe Custom build

[happyhack]

Hi, i am trying to modify my Wow.exe build because i made my server only accept connection from a client that installed an update. I read that topic http://www.mmowned.com/forums/genera...m-wow-exe.html ,so i changed my wow.exe build from 12340 to 12341 as u can see there ImageShack® - Online Photo and Video Hosting
but the problem is that the build number sent to my server is yet 12340, i searched all occurences of "build" or "12340" with IDA but it seems that the code sent to the server is hidden. Does someone knows how to solve this problem, or someone that knows asm could help me? I'm just a newbie with asm.
Sorry about my english

[chrissybaby]

Sorry for off topic but that link made me wanna make my own wow.exe

[DarkLinux]

Take a look at SkyFire's injection. Its not really what u want to do but it will give you an idea how to inject.

[happyhack]

Hi DarkLinux, thanks for your answer, i read some c++ files of that injector. I saw it could read from process memory, and change a .dll to an other, right? I'm not sure to know what do u suggest... Yesterday i tried to change the wow.exe to an older official release, i saw the build number sent to my server changed too, so I know the build number is in wow.exe.

[streppel]

maybe search in the process with cheat engine or something similar? ofc the build version has to be in there

[Terrorblade]

Hi, i am trying to modify my Wow.exe build because i made my server only accept connection from a client that installed an update. I read that topic http://www.mmowned.com/forums/genera...m-wow-exe.html ,so i changed my wow.exe build from 12340 to 12341 as u can see there ImageShack® - Online Photo and Video Hosting
but the problem is that the build number sent to my server is yet 12340, i searched all occurences of "build" or "12340" with IDA but it seems that the code sent to the server is hidden. Does someone knows how to solve this problem, or someone that knows asm could help me? I'm just a newbie with asm.
Sorry about my english

Search the build name in a hex editing program like hex workshop, just keep trying each occurrence the search finds and eventually you will have it sending a different build number.

[happyhack]

Streppel : Thanks guy ! I didn't know it, very interresting software. I didn't found anything yet, but i'm working on. It seems some memory area with value 12340 (build number), that i changed, change back to 12340 while a connection. The only way i know, should be found that memory operations in asm, and change them one by one. If someone knows a simpler way, so tell me.

Terrorblade : Yea, i think about it ^^ I've done it, but the build number was still the same. That's why i think the build number is obscured or modified with memory operations.

[Terrorblade]

Streppel : Thanks guy ! I didn't know it, very interresting software. I didn't found anything yet, but i'm working on. It seems some memory area with value 12340 (build number), that i changed, change back to 12340 while a connection. The only way i know, should be found that memory operations in asm, and change them one by one. If someone knows a simpler way, so tell me.

Terrorblade : Yea, i think about it ^^ I've done it, but the build number was still the same. That's why i think the build number is obscured or modified with memory operations.

Are you searching for it as a 32 unsigned int? Cause its not stored as a string.

[happyhack]

Are you searching for it as a 32 unsigned int? Cause its not stored as a string.

I searched for it as a string, and as an hex value too. So I should find it if it was stored as an 32 int or 16 int. But the build number was still the same.

---------- Post added at 03:08 AM ---------- Previous post was at 02:58 AM ----------

OMG I just found it guys.

I searched for it as a string, and as an hex value too. So I should find it if it was stored as an 32 int or 16 int. But the build number was still the same.

I just try again to do it. Really sorry about it, it seems i was wrong, I really don't know what I did the first time, I just found it. I will post here the offset of the build number sent to the server. Thanks guys for your help ^^

[Terrorblade]

I searched for it as a string, and as an hex value too. So I should find it if it was stored as an 32 int or 16 int. But the build number was still the same.

---------- Post added at 03:08 AM ---------- Previous post was at 02:58 AM ----------

OMG I just found it guys.

I just try again to do it. Really sorry about it, it seems i was wrong, I really don't know what I did the first time, I just found it. I will post here the offset of the build number sent to the server. Thanks guys for your help ^^

your welcome.

[happyhack]

So, you could see it there Imageshack - sansre2wz.png
the offset of the build number is 5020144 in Wow.exe, on the picture i changed 3430 to 3530 ( = 12341) and as you can see, the number sent to the server is 12341.
I'm working with Wow.exe 3.3.5.12340 but I think we could change it with cataclysm too by the same way.
Thanks and hope this topic could help someone else.

Other thing i found, just few bits before, at offset 5020131, 5020135 and 5020139 are the high version number. I changed them from 3.3.5 to 9.8.6 on that picture.
http://imageshack.us/f/706/sansre3e.png/

[stoneharry]

So, you could see it there Imageshack - sansre2wz.png
the offset of the build number is 5020144 in Wow.exe, on the picture i changed 3430 to 3530 ( = 12341) and as you can see, the number sent to the server is 12341.
I'm working with Wow.exe 3.3.5.12340 but I think we could change it with cataclysm too by the same way.
Thanks and hope this topic could help someone else.

Useful information, thanks for sharing your results. +Rep