WangDrum
Student
hello
I only patched games that can run on mame using a debugger,
I would like to get some hints on how to bypass patch for a game that won't boot.
The game I want to patch is 'Spikeout'.
To find the part in the main CPU's code that accesses the location (fe1a0000~fe1a001f) of the 315-5881 chip, which is a decryption chip.
This is the location of the code that came up when I searched for 'fe1a'.
6FB66
6FB96
6FBA2
6FBAE
6FBB6
B523C
I found the above address in the disassembly window and looked at it.
Looking at the disassembled instructions above, can't I just 'guess' where the decrypted data goes?
If the game can be run, press F11 and look at the registry value to see the data loaded from the decryption chip.
I think I can get a hint for decrypting it by tracking its movement.
But The game is frozen without even executing the above command, so I can't track it.
In this case, if anyone knows whether it is possible to decrypt it or how, I would appreciate it if you could give me a hint.
I only patched games that can run on mame using a debugger,
I would like to get some hints on how to bypass patch for a game that won't boot.
The game I want to patch is 'Spikeout'.
To find the part in the main CPU's code that accesses the location (fe1a0000~fe1a001f) of the 315-5881 chip, which is a decryption chip.
This is the location of the code that came up when I searched for 'fe1a'.
6FB66
6FB96
6FBA2
6FBAE
6FBB6
B523C
I found the above address in the disassembly window and looked at it.
Looking at the disassembled instructions above, can't I just 'guess' where the decrypted data goes?
If the game can be run, press F11 and look at the registry value to see the data loaded from the decryption chip.
I think I can get a hint for decrypting it by tracking its movement.
But The game is frozen without even executing the above command, so I can't track it.
In this case, if anyone knows whether it is possible to decrypt it or how, I would appreciate it if you could give me a hint.
Last edited:
