Hacking World of Final Fantasy Hacking Thread (discussion)

G

Gootah

Well-Known Member
OP
Member
Level 4
Joined
Aug 11, 2013
Messages
257
Trophies
0
Age
37
XP
606
Country
United States
Hey guys,

I've been racking my brain on hacking this game.

SaveData has a CRC and memory editors don't boot with it.

I've been trying every thing I can think of, but nothing works.

Looking for some more creative/capable minds.

Let me know what you guys have been experimenting with.

Thanks.
 
liomajor

liomajor

Well-Known Member
Member
Level 8
Joined
Jun 10, 2008
Messages
1,468
Trophies
0
XP
1,373
Country
United States
1. There is only a part protected from the file because everything after 4577F (284544 Bytes) is filled with FE
2. Cutting off the dummy part, save still works loading
3. There are always 15 differences after saving, there might be more than one crc inside.
  1. Offset 0 > 4 Bytes
  2. Offset 14 > 1 or 2 Bytes
  3. Offset 16 > 1 or 2 Bytes
  4. Offset 18 > 1 or 2 Bytes
  5. Offset 1A > 1 or 2 Bytes
  6. Offset 1C > 2 Bytes
  7. Offset 35 > 2 Bytes
  8. Offset 570 > 4 Bytes
  9. Offset 34A24 > 3 Bytes
  10. Offset 3B2B0 > 4 Bytes
  11. Offset 3B448 > 3 Bytes
  12. Offset 3B44C > 2 Bytes
  13. Offset 3B450 > 3 Bytes
  14. Offset 3B458 > 4 Bytes
  15. Offset 3B460 > 3 Bytes
There might be a falsepositive bcuz i guess i catched playtime too.
 
G

Gootah

Well-Known Member
OP
Member
Level 4
Joined
Aug 11, 2013
Messages
257
Trophies
0
Age
37
XP
606
Country
United States
liomajor said:
2. Cutting off the dummy part, save still works loading
Click to expand...

Wow, nice find. What do you mean by the above?

I can make edits then delete a certain portion of the save and it will still load?

Edit: Or do you mean that if you delete the protected part without editing it will still load? So that part is not included in any CRC?
 
Last edited by Gootah,
gvargas

gvargas

Well-Known Member
Newcomer
Level 2
Joined
Jan 24, 2016
Messages
96
Trophies
0
Age
49
XP
130
Country
Mexico
liomajor said:
1. There is only a part protected from the file because everything after 4577F (284544 Bytes) is filled with FE
2. Cutting off the dummy part, save still works loading
3. There are always 15 differences after saving, there might be more than one crc inside.
  1. Offset 0 > 4 Bytes
  2. Offset 14 > 1 or 2 Bytes
  3. Offset 16 > 1 or 2 Bytes
  4. Offset 18 > 1 or 2 Bytes
  5. Offset 1A > 1 or 2 Bytes
  6. Offset 1C > 2 Bytes
  7. Offset 35 > 2 Bytes
  8. Offset 570 > 4 Bytes
  9. Offset 34A24 > 3 Bytes
  10. Offset 3B2B0 > 4 Bytes
  11. Offset 3B448 > 3 Bytes
  12. Offset 3B44C > 2 Bytes
  13. Offset 3B450 > 3 Bytes
  14. Offset 3B458 > 4 Bytes
  15. Offset 3B460 > 3 Bytes
There might be a falsepositive bcuz i guess i catched playtime too.
Click to expand...

You right, there's a checksum right before the text name of each section, hopefully the checksum fixer they release will fix them all... :unsure:
 
gvargas

gvargas

Well-Known Member
Newcomer
Level 2
Joined
Jan 24, 2016
Messages
96
Trophies
0
Age
49
XP
130
Country
Mexico
Has anyone tried to fix the checksum using the Generate Checksum Tool in Hex Workshop? I found this on internet:

Recalculating Checksums (Hex Workshop Tutorial)
1. Select the whole file except the first 4 bytes.
2. Go to Tools > Generate Checksum > Selection & CRC32 > OK.
3. The checksum will appear at the bottom-right.
4. Select the first 4 bytes and type in the checksum as you see it on the bottom-right. Copy-pasting could paste the values in the opposite order, so just type them in.
5. Save, and you should be done.
 
Last edited by gvargas,
G

Gootah

Well-Known Member
OP
Member
Level 4
Joined
Aug 11, 2013
Messages
257
Trophies
0
Age
37
XP
606
Country
United States
gvargas said:
Has anyone tried to fix the checksum using the Generate Checksum Tool in Hex Workshop? I found this on internet:

Recalculating Checksums (Hex Workshop Tutorial)
1. Select the whole file except the first 4 bytes.
2. Go to Tools > Generate Checksum > Selection & CRC32 > OK.
3. The checksum will appear at the bottom-right.
4. Select the first 4 bytes and type in the checksum as you see it on the bottom-right. Copy-pasting could paste the values in the opposite order, so just type them in.
5. Save, and you should be done.
Click to expand...

This looks like it can create a checksum, but there's not guarantee that it will be the same algorithm as the on square is using.

Unless we've confirmed CRC32 and there is only one formula for it.

I'm not that deep on checksum.
 
liomajor

liomajor

Well-Known Member
Member
Level 8
Joined
Jun 10, 2008
Messages
1,468
Trophies
0
XP
1,373
Country
United States
No it's not a simple CRC32 unless it protects unknown areas and
differs from complete file except the first 4 bytes + dummy part.
 
gvargas

gvargas

Well-Known Member
Newcomer
Level 2
Joined
Jan 24, 2016
Messages
96
Trophies
0
Age
49
XP
130
Country
Mexico
GUYS I FOUND A WAY TO TRICK THE CHECKSUM!!! You already know each section has it's own checksum right? well what I did was copy all my items section offsets including the checksum of course, sell everything, save in a different slot, hex edit the save and paste the previously copied offsets over the new ones overwriting all the empty slots including the new checksum of course! Here is an example of my current items offsets:

2d63ba27d0.jpg


You can try and copy EXACTLY the offsets in the image, it should give you the following:

38 Potion
12 Phoenix Down
7 Antidote
10 Eye Drops
4 Mega Phoenix
8 Hi-Potion
19 Ether
14 Wobblestopper
1 Phoenix Pinion
3 Remember Herbs
8 Gold Hourglass
3 Fish Scale
2 Remedy
2 Fire Spellstone
1 Elixir
1 Smelling Salts

Total Cost: 42,650

If it works then that means the checksums are really independent of other sections regardless of the save file owner, if it doesn't then you'll have to work with your own items but at least is a start to solve the money problem, right now I'm the happy owner of 140,596 Gils and I only did the operation twice so it really works! :lol:

EDIT: Tomorrow I'm going to try to do the opposite and spend all the money and see if I can get it back... :)
 
Last edited by gvargas,
  • Like
Reactions: wurstpistole
wurstpistole

wurstpistole

GBAtemp MVP
Member
Level 16
Joined
Nov 19, 2015
Messages
4,664
Trophies
1
XP
5,465
Country
United Kingdom

Really nice idea! Would be a way to at least cheat some money.
I did not figure out though, how do I save to a different slot? It only loads and saves in the same slot for me.
 
liomajor

liomajor

Well-Known Member
Member
Level 8
Joined
Jun 10, 2008
Messages
1,468
Trophies
0
XP
1,373
Country
United States
gvargas said:
GUYS I FOUND A WAY TO TRICK THE CHECKSUM!!!...
If it works then that means the checksums are really independent of other sections regardless of the save file owner...
Click to expand...

No thats not going to work, sections might have their own crc, BUT changing one section will break the main crc > corrupt save data.

At least you can export / import save files decrypted from US > EUR and vise versa (tested it).
 
Last edited by liomajor,
wurstpistole

wurstpistole

GBAtemp MVP
Member
Level 16
Joined
Nov 19, 2015
Messages
4,664
Trophies
1
XP
5,465
Country
United Kingdom
liomajor said:
No thats not going to work, sections might have their own crc, BUT changing one section will break the main crc > corrupt save data.

At least you can export / import save files decrypted from US > EUR and vise versa (tested it).
Click to expand...

But it worked for him, didn't it?

Nice that you can confirm that region swapping is possible, thinking about switching to EUR version too... Not sure yet, don't really need German texts, played 5hrs on English now. Maybe it just confuses me if I switch to German now
 
gvargas

gvargas

Well-Known Member
Newcomer
Level 2
Joined
Jan 24, 2016
Messages
96
Trophies
0
Age
49
XP
130
Country
Mexico
liomajor said:
No thats not going to work, sections might have their own crc, BUT changing one section will break the main crc > corrupt save data.

At least you can export / import save files decrypted from US > EUR and vise versa (tested it).
Click to expand...

What part you say is not going to work? using my offsets in another save file? If that's the case then each of you should copy YOUR OWN offsets BEFORE selling everything because believe me it works! (tested it). The ITEMS offsets start right at 0x37580 as seen in the picture so you should copy from there to right where the FF FF FF FF starts.

wurstpistole said:
Really nice idea! Would be a way to at least cheat some money.
I did not figure out though, how do I save to a different slot? It only loads and saves in the same slot for me.
Click to expand...

You need to use Vita Save Manager or whatever method you want to dump save files:

1. Dump the first save file where all your items are and transfer it with VitaShell to your PC in slot1 folder.
2. Open that save file with hex editor and take note of the offsets where your items are (See my Image as a reference).
3. Play the game and sell everything and save again.
4. Dump that new save file in slot2 folder.
5. Hex edit the new save file and replace the items offsets with the offsets in step 2.
6. Save your file and copy it back to your PS Vita with VitaShell.
7. Import the save file with the Save Manager of your choice and play! :D

If someone can send me his save file (gamedata0000.sav) I can try and mod it for you with my offsets... ;)
 
Last edited by gvargas,
G

Gootah

Well-Known Member
OP
Member
Level 4
Joined
Aug 11, 2013
Messages
257
Trophies
0
Age
37
XP
606
Country
United States
So if this works the best things to do is to build a maxed item set.

Perform this method, buy all your items to max and repeat.

That way it kind of takes less time to maximize gil and items.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

OK, so I've just downloaded and installed the notorious Thrill Kill on Adrenaline...

Homebrew  PS Vita 2000 Homebrew Storage Questions

Blasphemous released for Vita

Youtube on Vita

PSVita internet over USB?

Odin Sphere HD texture Vita3K

Question about spoofing FW

Misc  Linux QCMA connection stopped working.

General chit-chat
Help Users
  • No one is chatting at the moment.
  • Veho @ Veho:
    It's a DS Lite in a slightly bigger DS Lite shell.
     +1
  • Veho @ Veho:
    It's not a Nintendo / iQue official product, it's a 3rd party custom.
     +1
  • Veho @ Veho:
    Nothing special about it other than it's more comfortable than the Lite
    for people with beefy hands.
     +1
  • Jayro @ Jayro:
    I have yaoi anime hands, very lorge but slender.
  • Jayro @ Jayro:
    I'm Slenderman.
  • Veho @ Veho:
    I have hands.
  • Veho @ Veho:
    king-shark-hand.gif
    +1
  • BakerMan @ BakerMan:
    imagine not having hands, cringe
     +1
  • AncientBoi @ AncientBoi:
    ESPECIALLY for things I do to myself :sad:.. :tpi::rofl2: Or others :shy::blush::evil:
     +1
  • The Real Jdbye @ The Real Jdbye:
    @SylverReZ if you could find a v5 DS ML you would have the best of both worlds since the v5 units had the same backlight brightness levels as the DS Lite unlockable with flashme
  • The Real Jdbye @ The Real Jdbye:
    but that's a long shot
  • The Real Jdbye @ The Real Jdbye:
    i think only the red mario kart edition phat was v5
  • BigOnYa @ BigOnYa:
    A woman with no arms and no legs was sitting on a beach. A man comes along and the woman says, "I've never been hugged before." So the man feels bad and hugs her. She says "Well i've also never been kissed before." So he gives her a kiss on the cheek. She says "Well I've also never been fucked before." So the man picks her up, and throws her in the ocean and says "Now you're fucked."
     +2
  • AncientBoi @ AncientBoi:
    :O:ohnoes::lol::rofl::rofl2:
  • BakerMan @ BakerMan:
    lmao
  • BakerMan @ BakerMan:
    anyways, we need to re-normalize physical media

    if i didn't want my games to be permanent, then i'd rent them
     +1
  • BigOnYa @ BigOnYa:
    Agreed, that why I try to buy all my games on disc, Xbox anyways. Switch games (which I pirate tbh) don't matter much, I stay offline 24/7 anyways.
  • AncientBoi @ AncientBoi:
    I don't pirate them, I Use Them :mellow:. Like I do @BigOnYa 's couch :tpi::evil::rofl2:
     +1
  • cearp @ cearp:
    @BakerMan - you can still "own" digital media, arguably easier and better than physical since you can make copies and backups, as much as you like.

    The issue is DRM
  • cearp @ cearp:
    You can buy drm free games / music / ebooks, and if you keep backups of your data (like documents and family photos etc), then you shouldn't lose the game. but with a disk, your toddler could put it in the toaster and there goes your $60

    :rofl2:
  • cearp @ cearp:
    still, I agree physical media is nice to have. just pointing out the issue is drm
  • rqkaiju2 @ rqkaiju2:
    i like physical media because it actually feels like you own it. thats why i plan on burning music to cds
  • cearp @ cearp:
    It's nice to not have to have a lot of physical things though, saves space
     +1
  • AncientBoi @ AncientBoi:
    Nor clothes 🤮 . Saves on time, soap, water and money having to wash them. :D
  • SylverReZ @ SylverReZ:
    @rqkaiju2, Physical media is a great source for archiving your data, none of that cloud storage shiz.
     +1
    SylverReZ @ SylverReZ: @rqkaiju2, Physical media is a great source for archiving your data, none of that cloud storage... +1