Hi!!!

I want to change sms send by viruz but i don't know how :(

Can someone help me?!

Viruz Patch:
-----------------------------------------
locating functions for the 5E0 table
-----------------------------------------
5e0_prt_action_1:
located at: 0x000DFC3C
- func_start: 000DFC3C
- func_end: 000DFC4C
----------------------------------
5e0_prt_action_2:
located at: 0x000DFF6E
- func_start: 000DFF6E
- func_end: 000DFF7E
----------------------------------
5e0_disp_val:
located at: 0x000DFF80
- func_start: 000DFF80
- func_end: 000DFF8E
----------------------------------
5e0_call_func:
located at: 0x000DFC4E
- func_start: 000DFC4E
- func_end: 000DFF6C
----------------------------------
ldr at: 000DFC3E
ldr at: 000DFC42
ldr at: 000DFF70
ldr at: 000DFC68
ldr at: 000DFC76
ldr at: 000DFC7A
ldr at: 000DFF82


-----------------------------------------
-> The 5E0 Table has 1776 bytes, and 0xdd entries in it

-----------------------------------------
# oh, seems to be an DEAD MCU check hack
# greetz to NokDoc =)
# ... okay will search the PPM via the old routines
# PPM found located (via offset table) at offset 00140000
checking for space in PPM...
# => Found reserved space in PPM!
# oh, seems to be an DEAD MCU check hack
# greetz to NokDoc =)
# ... okay will search the PPM via the old routines
# PPM found located (via offset table) at offset 00140000
checking for space in PPM...


--------> 5e0 Table is at 0032B92C

----------------------------------
locating all the needed functions
----------------------------------

send_message:
located at: 0x000E41D6
----------------------------------

----------------------------------
looking for free space...
----------------------------------
# oh, seems to be an DEAD MCU check hack
# greetz to NokDoc =)
# ... okay will search the PPM via the old routines
# PPM found located (via offset table) at offset 00140000
checking for space in PPM...
# => Found reserved space in PPM!
# oh, seems to be an DEAD MCU check hack
# greetz to NokDoc =)
# ... okay will search the PPM via the old routines
# PPM found located (via offset table) at offset 00140000
checking for space in PPM...

----------------------------------
hammering in our functions
----------------------------------
found 0010 bytes for function sms_to_send at 0x00160760
found 0030 bytes for function sms_success at 0x0016076C
found 0024 bytes for function sms_progress at 0x0016078C
found 0020 bytes for function sms_info at 0x001607A4
found 0012 bytes for function sms_cmd at 0x001607B8
found 0024 bytes for function own_send_hack at 0x001607C4
- bl: 001607CE -> 000E41D6: F7 83 FD 02
5E0 ID# DE | Viruz

----------------------------------
120 bytes injected... got that trick ;)
120 bytes estimated at start


Regards and thankx in advance!!!

tried to add the 5E0 id to the menu?

Yes i added the 5E0 id to my menu structure...

But i want to change the text of the sms send by the viruz patch!!!

Regards

Yes i added the 5E0 id to my menu structure...

But i want to change the text of the sms send by the viruz patch!!!

Regards

hi...

function func_sms_to_send =
{
"sms_to_send",
"\x00\x03\x03\x03\x03\x00\x00\x21\x00\x00",
10
};

text changed with sucess :)

Thankx a lot!!!

Regards

nice one. now i'm the one who wants to do it. but i didnt understand. :(

explain better pls.
thanks

i cant understand too. please elaborate a bit.

me too :rolleyes:

it is easy to change the message text that sent by virus if you need..just look after patching the file to

found 0010 bytes for function sms_to_send at 0x0012F35C

go to this location and change the 000303030300002100000000 to any text you need

but u need to put 00 after a character!!!

Example:

U want to write: Nfree

u must write like this

004E 0066 0072 0065 0065

Regards

but u need to put 00 after a character!!!

Example:

U want to write: Nfree

u must write like this

004E 0066 0072 0065 0065

Regards

yes i noticed that.i have been trying to change the text locator to write a 160 character message and i've found the msg pointer and i'll change it and see