Sega Model 3 #3
Comments
model3emuMemory base addressThe .emul entry is Prerequisites for finding RAMRAM location in the NVRAM location in the Process location in RAM: located with Process → Process map, for example 0x29b000 bytes 0x01340000 → 0x15db00 The location is different every time Supermodel.exe is started Find the RAM pointerSelect a ROM that has data (rather than zeroes) at 0 in RAM as that makes it easier to find the start of RAM. F.e. swtrilgy has 0x781a637c at 0 Start swtrilgy and search for the 4 byte value 7c631a78h (Search → Address range: ALL). It finds four locations, the lowest location, 0x10090020, is where RAM begin Add the address to the table and search for pointer (select table entry → Alt + P) in the process (Search -→ Address range: Custom). It finds one location, 0x0147222c The pointer is at 0x0147222c-0x01340000 = 0x13222C. The .emul entry is Supermodel.exe+P0013222C Find the NVRAM pointerWrite a 4 byte identifier such as "AbCd" at 0 in NVRAM in the .nv file as that makes it easier to find the start of NVRAM Start the corresponding game and search for the 4 byte value, 64436241h ("dCbA") (Search → Address range: ALL). It finds one location, 0x1d090020, this is where NVRAM begin Add the address to the table and search for pointer (select table entry -→ Alt + P) in the process (Search → Address range: Custom). It finds no pointers Search for pointer to pointer (select table entry → Alt + 2) in the process region. Reduce maximum offset to 100h so that you find few addresses. It finds two locations, both might work, we can select the lowest one 0x0154c350 +60,0 The pointer is 0x0154c350-0x01340000 = 0x20c350. The .emul entry is Supermodel.exe+P0020C350,60,0 |
ArtMoney.emulThis Model 2 Emulator .emul value illustrate the .emul file notation
a simple pointer is "emulator_multicpu.exe+P0018F930"
100000 means that the memory is 0x100000 big |
No description provided.
The text was updated successfully, but these errors were encountered: