Skip to content

C
ComWeChatRobot

被猫吃掉的鱼Z / ComWeChatRobot
与 Fork 源项目一致

从无法访问的项目Fork

通知 1
Star 1
Fork 0
C
ComWeChatRobot

体验新版 GitCode,发现更多精彩内容 >>

切换分支/标签
查找文件 普通视图历史永久链接Permalink
SendAtText.cpp 2.1 KB
Newer Older
L
添加群艾特消息接口  
ljc545w 已提交
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 
#include "pch.h"

#define SendAtTextCallOffset 0x6782E7B0 - 0x67370000
#define DeleteAtTextCacheCallOffset 0x67404200 - 0x67370000

struct SendAtTextStruct
{
    DWORD chatroomid;
    DWORD wxid;
    DWORD wxmsg;
};

struct AtUserStruct {
    wchar_t* wxid;
    DWORD Length;
    DWORD maxLength;
    DWORD fill1 = 0;
    DWORD fill2 = 0;
    DWORD fill3 = 0;
};

struct AtStruct {
    AtUserStruct* AtUser = NULL;
    DWORD addr_end1;
    DWORD addr_end2;
};

void SendAtTextRemote(LPVOID lpParameter) {
    SendAtTextStruct* rp = (SendAtTextStruct*)lpParameter;
    wchar_t* wsChatRoomId = (WCHAR*)rp->chatroomid;
    wchar_t* wsWxId = (WCHAR*)rp->wxid;
    wchar_t* wsTextMsg = (WCHAR*)rp->wxmsg;
    SendAtText(wsChatRoomId,wsWxId, wsTextMsg);
}

void __stdcall SendAtText(wchar_t* wsChatRoomId, wchar_t* wsWxId, wchar_t* wsTextMsg) {
    wchar_t* NickName = GetUserNickNameByWxId(wsWxId);
    if (!NickName)
        return;
    wchar_t* SendTextMsg = new wchar_t[wcslen(wsTextMsg) + wcslen(NickName) + 3];
    ZeroMemory(SendTextMsg, (wcslen(wsTextMsg) + wcslen(NickName) + 3) * 2);
    swprintf_s(SendTextMsg, (wcslen(wsTextMsg) + wcslen(NickName) + 2) * 2,L"@%ws %ws",NickName,wsTextMsg);

    WxBaseStruct wxChatRoomId(wsChatRoomId);
    WxBaseStruct wxTextMsg(SendTextMsg);
    AtStruct at = { 0 };
    AtUserStruct AtUser = { 0 };
    AtUser.wxid = wsWxId;
    AtUser.Length = wcslen(wsWxId);
    AtUser.maxLength = wcslen(wsWxId) * 2;
    at.AtUser = &AtUser;
    at.addr_end1 = (DWORD)&AtUser.fill3;
    at.addr_end2 = (DWORD)&AtUser.fill3;

    wchar_t** pWxmsg = &wxTextMsg.buffer;
    char buffer[0x3B0] = { 0 };

    DWORD dllBaseAddress = GetWeChatWinBase();
    DWORD callAddress = dllBaseAddress + SendAtTextCallOffset;
    DWORD DeleteTextCacheCall = dllBaseAddress + DeleteAtTextCacheCallOffset;

    __asm {
        pushad;
        lea eax, at;
        push 0x1;
        push eax;
        mov edi, pWxmsg;
        push edi;
        lea edx, wxChatRoomId;
        lea ecx, buffer;
        call callAddress;
        add esp, 0xC;
        lea ecx, buffer;
        call DeleteTextCacheCall;
        popad;
    }
}