API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 21st, 2017
142
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
ASM (NASM) 3.75 KB | None | 0 0
raw download clone embed print report
  1. ### from dumpbin /HEADERS
  2.  
  3. SECTION HEADER #1
  4.    .text name
  5.       56 virtual size
  6.     1000 virtual address (0000000180001000 to 0000000180001055)
  7.  
  8. SECTION HEADER #2
  9.   .rdata name
  10.      1FE virtual size
  11.     2000 virtual address (0000000180002000 to 00000001800021FD)
  12.  
  13. ### from dumpbin /RAWDATA
  14.  
  15. RAW DATA #1
  16.   0000000180001000: 48 83 EC 48 0F 10 05 0E 10 00 00 48 8D 4C 24 20  H.ìH.......H.L$
  17.   0000000180001010: 0F 11 41 09 0F 28 05 F5 0F 00 00 0F 29 01 FF 15  ..A..(.o....).ÿ.
  18.   0000000180001020: DC 0F 00 00 90 48 83 C4 48 C3 48 83 EC 48 0F 10  Ü....H.ÄHAH.ìH..
  19.   0000000180001030: 05 E4 0F 00 00 48 8D 4C 24 20 0F 11 41 09 0F 28  .ä...H.L$ ..A..(
  20.   0000000180001040: 05 CB 0F 00 00 0F 29 01 FF 15 B2 0F 00 00 90 48  .E....).ÿ.²....H
  21.   0000000180001050: 83 C4 48 C3 C3 00                                .ÄHAA.
  22.  
  23. RAW DATA #2
  24.   0000000180002000: F0 21 00 00 00 00 00 00 00 00 00 00 00 00 00 00  d!..............
  25.   0000000180002010: 6B 00 65 00 72 00 6E 00 65 00 6C 00 33 00 32 00  k.e.r.n.e.l.3.2.
  26.   0000000180002020: 2E 00 64 00 6C 00 6C 00 00 00 00 00 00 00 00 00  ..d.l.l.........
  27.   0000000180002030: 00 00 00 00 C6 D8 AC 58 00 00 00 00 0D 00 00 00  ....ÆO¬X........
  28.   0000000180002040: D0 00 00 00 4C 20 00 00 4C 06 00 00 00 00 00 00  D...L ..L.......
  29.  
  30. ### from dumpbin /EXPORTS
  31.  
  32.     ordinal hint RVA      name
  33.           1    0 0000102A usingDoubleQuote
  34.           2    1 00001000 usingSingleQuote
  35.  
  36. ### from dumpbin /DISASM
  37.  
  38.   0000000180001000: 48 83 EC 48        sub         rsp,48h
  39.   0000000180001004: 0F 10 05 0E 10 00  movups      xmm0,xmmword ptr [0000000180002019h]
  40.                     00
  41.   000000018000100B: 48 8D 4C 24 20     lea         rcx,[rsp+20h]
  42.   0000000180001010: 0F 11 41 09        movups      xmmword ptr [rcx+9],xmm0
  43.   0000000180001014: 0F 28 05 F5 0F 00  movaps      xmm0,xmmword ptr [0000000180002010h]
  44.                     00
  45.   000000018000101B: 0F 29 01           movaps      xmmword ptr [rcx],xmm0
  46.   000000018000101E: FF 15 DC 0F 00 00  call        qword ptr [0000000180002000h]
  47.   0000000180001024: 90                 nop
  48.   0000000180001025: 48 83 C4 48        add         rsp,48h
  49.   0000000180001029: C3                 ret
  50.   000000018000102A: 48 83 EC 48        sub         rsp,48h
  51.   000000018000102E: 0F 10 05 E4 0F 00  movups      xmm0,xmmword ptr [0000000180002019h]
  52.                     00
  53.   0000000180001035: 48 8D 4C 24 20     lea         rcx,[rsp+20h]
  54.   000000018000103A: 0F 11 41 09        movups      xmmword ptr [rcx+9],xmm0
  55.   000000018000103E: 0F 28 05 CB 0F 00  movaps      xmm0,xmmword ptr [0000000180002010h]
  56.                     00
  57.   0000000180001045: 0F 29 01           movaps      xmmword ptr [rcx],xmm0
  58.   0000000180001048: FF 15 B2 0F 00 00  call        qword ptr [0000000180002000h]
  59.   000000018000104E: 90                 nop
  60.   000000018000104F: 48 83 C4 48        add         rsp,48h
  61.   0000000180001053: C3                 ret
  62.  
  63. ################# SOURCE #################
  64.  
  65.  
  66. #if defined(A)
  67. extern "C" {
  68.     __declspec(dllimport) void x(char (*c)[25]);
  69.  
  70.     __declspec(dllexport) void usingSingleQuote() {
  71.         char strKernel32[] = { 'k',0,'e',0,'r',0,'n',0,'e',0,'l',0,'3',0,'2',0,'.',0,'d',0,'l',0,'l',0,0 };
  72.         x(&strKernel32);
  73.     }
  74.  
  75.     __declspec(dllexport) void usingDoubleQuote() {
  76.         char strKernel32[] = "k\0e\0r\0n\0e\0l\0\x33\0\x32\0.\0d\0l\0l\0";
  77.         x(&strKernel32);
  78.     }
  79.  
  80.     void _DllMainCRTStartup() {}
  81. }
  82. #endif
  83.  
  84. #if defined(B)
  85. extern "C" {
  86.     __declspec(dllexport) void x(char (*c)[25]) {}
  87. }
  88. #endif
  89.  
  90. /* VS2015
  91. %VSINSTALLDIR%VC\vcvarsall.bat amd64
  92.  
  93. cl /EHsc /c tmp.cpp /Fo:tmp2.obj /DB
  94. link /DLL tmp2.obj
  95.  
  96. clang.exe -target x86_64-pc-windows-msvc -Os -c -o clang.o tmp.cpp -DA
  97. link /DLL clang.o tmp2.lib kernel32.lib
  98.  
  99. cl /Os /EHsc /c tmp.cpp /Fo:cl.obj /DA
  100. link /DLL cl.obj tmp2.lib kernel32.lib
  101. */
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!