Judul: Berbagi Info Seputar [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption) Full Update Terbaru
link: [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption)
Berbagi [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption) Terbaru dan Terlengkap 2017
As we already knew, after v1.9.0 , all the library files has been encrypted and we no longer be able to change easily using .NET Reflector
Tool that we need:
- CFF Explorer.
- HxD or Hex Workshop
- .NET Reflector with Reflexil.
Step by step:
1 - Extract/decompile the APK file using Apktool or open APK with Winrar, go to /assets/bin/data/ and extract the Managed folder. Go the location of the Assembly-CSharp.dll and open it with CFF Explorer.
2 - Go the ".NET Directory" section, you will see something like this.
3 - Take a look at that "MetaData RVA". If you open this file in .NET Reflector, it will show you some error like this.
4 - Now, change that MetaData RVA from E9AAC908 to 001AF31C (i will tell the reason later).
Save it and re-open.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t8i930_9k1nhhN0uCK1k6QYL1pfXVTjEoYhWhO6cuiSuuz8BEqpLIenTkI3qW4jUMrhx8E-rkXnEbKVzhka9I8QQ=s0-d)
5 - Now go "MetaData Header" section, at "Signature", change the Value to 424A5342 (this is string "BSJB" on hex)
6 - Go to the "MetaData Streams" , plus 4 units on each offset. You will have something like this.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tLCjPbmPfqlJm0LZSOfv_lRSOvbVXVX2u4hCMKp8TdDYUQPNDiADB9Vl6O7Vxt7nxoxP6mKlxl_4mcnNjyHMyMOQ=s0-d)
7 - Save it. Now open it again with .NET Reflector and see the miracle. But do not feel happy yet, now the real hell come if you want to mod.
8 - If you try to open any function inside Assembly-CSharp.dll via .NET Reflector, it will give you some error like this pic and doesn't show any OP Code or so.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uGvdoRyhsSTK2DTzaJfn26MZ7trXKI1DGd4HtDEsn1E12QQNfmBR2eJBdk6yOeTcNR-_Mu3hBFZDByp6rnXZo_=s0-d)
9 - So what do we do now?
This time, i will use method "setTimeAcceleration" as example. You can do same for another .
Choose it , take a look at Reflexil windows, go to Attribute tab and check the RVA field.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_shni2cNy5hHCq5Krq1zLWhdmfjpeumO_Zv6QzmknsEhLCDr49Z5CjeZdZ541ONn7fAwjzvFFLFBtzTjLCRGLbBJg=s0-d)
10 - Back to CFF Explorer, go to "Section Headers [x]" and see 2 values at "Virtual Address" and "Raw Address" column on ".text" row.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uyM3wnpAIFiTMMtdGfv1es3rnTFwNZGhoueuL0DCzhcgzDLHRkkuc23OiO6nOPGevlF82hB5SCl_dNsjo4PMYfRQ=s0-d)
11 - The common formula is: Physical Address = RVA - Virtual Address + Raw Address + [X]
In this case, Physical Address for that function is C8DC0 - 2000 + 200 + C = C6FCC
C8DC0 = 822720 in hex
( For the number [X] , i cannot fully explain it, because it can have many value . For example, when i search for method "getBaseATK" , the number [X] must be 1 so it can fit Physical address that we need to change, but for method "setTimeAcceleration", [X] = 12 = C in hex, this number i got after many times calculation, hope someone can explain this. )
12 - Go back to .NET Reflector, still in Reflexil windows, go to Instruction tab, you will notice that: the Op code somehow still familliar as the previous version.
As for "setTimeAcceleration" function, we need to change the OP Code at the 2 following part.
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sRmLI_K_dEqeCRTLOynHgOnhuJjit1V5JMmLvI9qnOdh_EHoYB3nNv9-L2IPln2O3Hvk58_IL6agqTC9pu-pvruA=s0-d)
Look at that offset. Now, we need to re-calculate the address that we need to change.
C6FCC + 6D = C7039
![[IMG]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vohrenitgR_ZAXG1sN7wAcfPDc5stPnXPBxZCVjOxJAeaLdo7NzxAQFPU55v5kShF0XUna3wEfHDzdFPbeRUW-6w=s0-d)
Voila~
In case you need, here is the speed change function.
1x - 22 00 00 80 3f
2x - 22 00 00 00 40
3x - 22 00 00 40 40
4x - 22 00 00 80 40
5x - 22 00 00 a0 40
10x - 22 00 00 20 41
Good luck.
P/s: This isn't the only way to mod , as it's not perfect, so hope
anyone give us better solution
Tool that we need:
- CFF Explorer.
- HxD or Hex Workshop
- .NET Reflector with Reflexil.
Step by step:
1 - Extract/decompile the APK file using Apktool or open APK with Winrar, go to /assets/bin/data/ and extract the Managed folder. Go the location of the Assembly-CSharp.dll and open it with CFF Explorer.
2 - Go the ".NET Directory" section, you will see something like this.
3 - Take a look at that "MetaData RVA". If you open this file in .NET Reflector, it will show you some error like this.
4 - Now, change that MetaData RVA from E9AAC908 to 001AF31C (i will tell the reason later).
Save it and re-open.
5 - Now go "MetaData Header" section, at "Signature", change the Value to 424A5342 (this is string "BSJB" on hex)
6 - Go to the "MetaData Streams" , plus 4 units on each offset. You will have something like this.
7 - Save it. Now open it again with .NET Reflector and see the miracle. But do not feel happy yet, now the real hell come if you want to mod.
8 - If you try to open any function inside Assembly-CSharp.dll via .NET Reflector, it will give you some error like this pic and doesn't show any OP Code or so.
9 - So what do we do now?
This time, i will use method "setTimeAcceleration" as example. You can do same for another .
Choose it , take a look at Reflexil windows, go to Attribute tab and check the RVA field.
10 - Back to CFF Explorer, go to "Section Headers [x]" and see 2 values at "Virtual Address" and "Raw Address" column on ".text" row.
11 - The common formula is: Physical Address = RVA - Virtual Address + Raw Address + [X]
In this case, Physical Address for that function is C8DC0 - 2000 + 200 + C = C6FCC
C8DC0 = 822720 in hex
( For the number [X] , i cannot fully explain it, because it can have many value . For example, when i search for method "getBaseATK" , the number [X] must be 1 so it can fit Physical address that we need to change, but for method "setTimeAcceleration", [X] = 12 = C in hex, this number i got after many times calculation, hope someone can explain this. )
12 - Go back to .NET Reflector, still in Reflexil windows, go to Instruction tab, you will notice that: the Op code somehow still familliar as the previous version.
As for "setTimeAcceleration" function, we need to change the OP Code at the 2 following part.
Look at that offset. Now, we need to re-calculate the address that we need to change.
C6FCC + 6D = C7039
Voila~
In case you need, here is the speed change function.
1x - 22 00 00 80 3f
2x - 22 00 00 00 40
3x - 22 00 00 40 40
4x - 22 00 00 80 40
5x - 22 00 00 a0 40
10x - 22 00 00 20 41
Good luck.
P/s: This isn't the only way to mod , as it's not perfect, so hope
anyone give us better solutionItulah sedikit Artikel [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption) terbaru dari kami
Semoga artikel [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption) yang saya posting kali ini, bisa memberi informasi untuk anda semua yang menyukai Warung Game Android. jangan lupa baca juga artikel-artikel lain dari kami.
Terima kasih Anda baru saja membaca [Tutorial] How to get around Invalid RVA Address error (Assembly-Csharp.dll decryption)