from idaapi import *from idc import *class MyDbgHook(DBG_Hooks): file_

1. from idaapi import *
2. from idc import *
3.  
4.  
5. class MyDbgHook(DBG_Hooks):
6.     file_count = 0
7.  
8.     def dbg_bpt(self, tid, ea):
9.         if ea == 0x0040FAC9:
10.             esp = GetRegValue('esp')
11.             addr = Dword(esp + 4)
12.             size = Dword(esp + 8)
13.             data = DbgRead(addr, size)
14.             f = open('%d.lua' % self.file_count, 'w')
15.             f.write(data)
16.             f.close()
17.             self.file_count += 1
18.             request_continue_process()
19.             run_requests()
20.         return 0
21.  
22.  hook
23. try:
24.     if debughook:
25.         print("Removing previous hook ...")
26.         debughook.unhook()
27. except:
28.     pass
29.  
30. debughook = MyDbgHook()
31. debughook.hook()
32. debughook.steps = 0
33.  
34. ea = 0x0040FAC9
35. request_run_to(ea)
36. AddBpt(ea)
37.  
38. run_requests()