Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ;------------------------------------------------------------------------------
- ;
- ; Name: .code (Code Section)
- ; Virtual Address: 00401000h Virtual Size: 00000064h
- ; Pointer To RawData: 00000200h Size Of RawData: 00000200h
- ;
- ;------------------------------------------------------------------------------
- EntryPoint:
- push 0000000Ch
- push 00000000h
- push L00403110
- call jmp_MSVCRT.dll!memset
- add esp,0000000Ch
- push 00000000h
- call jmp_KERNEL32.dll!GetModuleHandleA
- mov [L00403114],eax
- push 00000000h
- push 00001000h
- push 00000000h
- call jmp_KERNEL32.dll!HeapCreate
- mov [L00403110],eax
- mov eax,000003E8h
- call SUB_L00402079
- push 00000000h
- call SUB_L00401063
- push [L00403110]
- call jmp_KERNEL32.dll!HeapDestroy
- call jmp_KERNEL32.dll!ExitProcess
- SUB_L00401063:
- retn
- ;------------------------------------------------------------------------------
- 0000019Ch DUP (??)
- ;
- ;
- ;------------------------------------------------------------------------------
- ; Name: .text
- ; Virtual Address: 00402000h Virtual Size: 0000012Eh
- ; Pointer To RawData: 00000400h Size Of RawData: 00000200h
- ;
- jmp_MSVCRT.dll!memset:
- jmp [MSVCRT.dll!memset]
- jmp_KERNEL32.dll!GetModuleHandleA:
- jmp [KERNEL32.dll!GetModuleHandleA]
- jmp_KERNEL32.dll!HeapCreate:
- jmp [KERNEL32.dll!HeapCreate]
- jmp_KERNEL32.dll!HeapDestroy:
- jmp [KERNEL32.dll!HeapDestroy]
- jmp_KERNEL32.dll!ExitProcess:
- jmp [KERNEL32.dll!ExitProcess]
- Align 4
- SUB_L00402020:
- push ebx
- mov ebx,[L0040300C]
- mov ecx,[L00403010]
- mov edx,[ebx+L00403128]
- mov eax,[ebx+L0040312C]
- rol edx,13h
- rol eax,1Bh
- add edx,[ecx+L00403128]
- add eax,[ecx+L0040312C]
- mov [ebx+L00403128],eax
- mov [ebx+L0040312C],edx
- sub ebx,00000008h
- jnc L00402061
- mov ebx,00000080h
- L00402061:
- sub ecx,00000008h
- jnc L0040206B
- mov ecx,00000080h
- L0040206B:
- mov [L0040300C],ebx
- mov [L00403010],ecx
- pop ebx
- retn
- ;------------------------------------------------------------------------------
- SUB_L00402079:
- cmp byte ptr [L00403018],00h
- jnz L00402087
- call SUB_L00402113
- L00402087:
- mov [L00403124],eax
- call SUB_L00402020
- push ebx
- mov ebx,[L00403124]
- sub ebx,[L00403014]
- js L004020B7
- inc ebx
- mov ecx,edx
- mul ebx
- mov eax,ecx
- mov ecx,edx
- mul ebx
- add eax,ecx
- adc edx,[L00403014]
- mov eax,edx
- pop ebx
- retn
- ;------------------------------------------------------------------------------
- L004020B7:
- mov eax,80000000h
- pop ebx
- retn
- ;------------------------------------------------------------------------------
- SUB_L004020BE:
- cmp byte ptr [L00403018],00h
- jnz L004020CC
- call SUB_L00402113
- L004020CC:
- xor ecx,ecx
- L004020CE:
- imul eax,AC564B05h
- inc eax
- mov [L00403128+ecx*4],eax
- inc ecx
- cmp ecx,00000022h
- jc L004020CE
- fld1
- fstp dword ptr [L00403000]
- mov dword ptr [L0040300C],00000000h
- mov dword ptr [L00403010],00000050h
- call SUB_L00402020
- push edi
- mov edi,0000001Eh
- L00402109:
- call SUB_L00402020
- dec edi
- jnz L00402109
- pop edi
- retn
- ;------------------------------------------------------------------------------
- SUB_L00402113:
- push eax
- mov byte ptr [L00403018],01h
- call jmp_KERNEL32.dll!GetTickCount
- call SUB_L004020BE
- pop eax
- retn
- ;------------------------------------------------------------------------------
- Align 4
- jmp_KERNEL32.dll!GetTickCount:
- jmp [KERNEL32.dll!GetTickCount]
- ;------------------------------------------------------------------------------
- 000000D2h DUP (??)
- ;
- ;
- ;------------------------------------------------------------------------------
- ; Name: .data (Data Section)
- ; Virtual Address: 00403000h Virtual Size: 000001B0h
- ; Pointer To RawData: 00000600h Size Of RawData: 00000200h
- ;
- L00403000:
- dd 00000000h
- db 00h;
- db 00h;
- db 00h;
- db C0h; ''
- db FFh; ''
- db 3Fh; '?'
- db 00h;
- db 00h;
- L0040300C:
- dd 00000000h
- L00403010:
- dd 00000000h
- L00403014:
- dd 00000000h
- L00403018:
- db 00h;
- db 90h; '?'
- db 90h; '?'
- db 90h; '?'
- db 90h; '?'
- db 90h; '?'
- db 90h; '?'
- db 90h; '?'
- dd 0000305Ch
- dd 00000000h
- dd 00000000h
- dd 000030A6h
- dd 0000307Ch
- dd 00003064h
- dd 00000000h
- dd 00000000h
- dd 000030F0h
- dd 00003084h
- dd 00000000h
- dd 00000000h
- dd 00000000h
- dd 00000000h
- dd 00000000h
- dd 0000309Ch
- dd 00000000h
- dd 000030B2h
- dd 000030C6h
- dd 000030D4h
- dd 000030E2h
- dd 000030FEh
- dd 00000000h
- MSVCRT.dll!memset:
- dd ??
- dd 00000000
- KERNEL32.dll!GetModuleHandleA:
- dd ??
- KERNEL32.dll!HeapCreate:
- dd ??
- KERNEL32.dll!HeapDestroy:
- dd ??
- KERNEL32.dll!ExitProcess:
- dd ??
- KERNEL32.dll!GetTickCount:
- dd ??
- dd 00000000
- dw 0299h
- db 'memset',0
- db 00h
- db 'MSVCRT.dll',0
- db 00h
- dw 0000h
- db 'GetModuleHandleA',0
- db 00h
- dw 0000h
- db 'HeapCreate',0
- db 00h
- dw 0000h
- db 'HeapDestroy',0
- dw 0000h
- db 'ExitProcess',0
- db 'KERNEL32.dll',0
- db 00h
- dw 0000h
- db 'GetTickCount',0
- db 00h
- db 00h;
- db 00h;
- L00403110:
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- L00403114:
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- L00403124:
- dd 00000000h
- L00403128:
- dd 00000000h
- L0040312C:
- dd 00000000h
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- db 00h;
- ;------------------------------------------------------------------------------
- 00000050h DUP (??)
- ;
- ;
- ;------------------------------------------------------------------------------
- ; Imports from MSVCRT.dll
- ;
- extrn memset
- ;
- ; Imports from KERNEL32.dll
- ;
- extrn GetModuleHandleA
- extrn HeapCreate
- extrn HeapDestroy
- extrn ExitProcess
- extrn GetTickCount
- ;
- ;------------------------------------------------------------------------------
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
