API tools faq
paste
Guest User

Untitled

a guest
Jul 4th, 2018
128
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
6502 ACME Cross Assembler 1.03 KB | None | 0 0
raw download clone embed print report
  1. .386
  2. .model flat, stdcall  
  3. option casemap :none  
  4.  
  5. include gdi32.inc
  6. include windows.inc
  7. include kernel32.inc
  8. include user32.inc
  9. include Comctl32.inc
  10. include shell32.inc
  11.  
  12. includelib gdi32.lib
  13. includelib kernel32.lib
  14. includelib user32.lib
  15. includelib Comctl32.lib
  16. includelib shell32.lib
  17.  
  18. TestProc PROTO :DWORD,:DWORD
  19.  
  20. OPTIONSTRUCT struct
  21.     pattern         db 100
  22.     pattern_mask    db 100
  23.     module          db 100
  24.     bytecode        db 300
  25.     cave_bytecode   db 300
  26.     flag            byte 0
  27.     buffer          db 30
  28.     aF              dd 0
  29.     aT              dd 0
  30. OPTIONSTRUCT ends
  31.  
  32. .data
  33. hInstance dd ?
  34. myoption OPTIONSTRUCT <'0FFh,08Ch,088h,000h,000h,000h,000h,0A1h,000h,000h,000h,000h,083h,078h,070h,001h,075h,00Bh',\
  35.                         'xxx0000x0000xxxxxx',\
  36.                         'gamex86.dll',\
  37.                         '0FFh,08Ch,088h,0F4h,001h,000h,000h',\
  38.                         '090h,090h,090h,090h,090h,090h,0C3h'>
  39.  
  40. .code
  41. start:
  42.     invoke GetModuleHandle,0
  43.     mov hInstance,eax
  44.     invoke TestProc,addr myoption.pattern,addr myoption.mask
  45.     invoke ExitProcess,0
  46.    
  47. TestProc proc ff:DWORD,mm:DWORD
  48.        
  49.     ret
  50.  
  51. TestProc endp
  52.  
  53. end start
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!