Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- asm.bin: file format binary
- Sections:
- Idx Name Size VMA LMA File off Algn
- 0 .data 00000507 00000000 00000000 00000000 2**0
- CONTENTS, ALLOC, LOAD, DATA
- Disassembly of section .data:
- 00000000 <.data>:
- 0: 60 pusha
- 1: e8 4e 00 00 00 call 0x54
- 6: 6b 00 65 imul eax,DWORD PTR [eax],0x65
- 9: 00 72 00 add BYTE PTR [edx+0x0],dh
- c: 6e outs dx,BYTE PTR ds:[esi]
- d: 00 65 00 add BYTE PTR [ebp+0x0],ah
- 10: 6c ins BYTE PTR es:[edi],dx
- 11: 00 33 add BYTE PTR [ebx],dh
- 13: 00 32 add BYTE PTR [edx],dh
- 15: 00 00 add BYTE PTR [eax],al
- 17: 00 6e 00 add BYTE PTR [esi+0x0],ch
- 1a: 74 00 je 0x1c
- 1c: 64 00 6c 00 6c add BYTE PTR fs:[eax+eax*1+0x6c],ch
- ...
- 51: 00 00 add BYTE PTR [eax],al
- 53: 5b pop ebx
- 54: 8b fc mov edi,esp
- 56: 6a 42 push 0x42
- 58: e8 bb 03 00 00 call 0x418
- 5d: 8b 54 24 28 mov edx,DWORD PTR [esp+0x28]
- 61: 89 11 mov DWORD PTR [ecx],edx
- 63: 8b 54 24 2c mov edx,DWORD PTR [esp+0x2c]
- 67: 6a 3e push 0x3e
- 69: e8 aa 03 00 00 call 0x418
- 6e: 89 11 mov DWORD PTR [ecx],edx
- 70: 6a 4a push 0x4a
- 72: e8 a1 03 00 00 call 0x418
- 77: 89 39 mov DWORD PTR [ecx],edi
- 79: 6a 1e push 0x1e
- 7b: 6a 3c push 0x3c
- 7d: e8 9d 03 00 00 call 0x41f
- 82: 6a 22 push 0x22
- 84: 68 f4 00 00 00 push 0xf4
- 89: e8 91 03 00 00 call 0x41f
- 8e: 6a 26 push 0x26
- 90: 6a 24 push 0x24
- 92: e8 88 03 00 00 call 0x41f
- 97: 6a 2a push 0x2a
- 99: 6a 40 push 0x40
- 9b: e8 7f 03 00 00 call 0x41f
- a0: 6a 2e push 0x2e
- a2: 6a 0c push 0xc
- a4: e8 76 03 00 00 call 0x41f
- a9: 6a 32 push 0x32
- ab: 68 c8 00 00 00 push 0xc8
- b0: e8 6a 03 00 00 call 0x41f
- b5: 6a 2a push 0x2a
- b7: e8 5c 03 00 00 call 0x418
- bc: 8b 09 mov ecx,DWORD PTR [ecx]
- be: c7 01 44 00 00 00 mov DWORD PTR [ecx],0x44
- c4: 6a 12 push 0x12
- c6: e8 4d 03 00 00 call 0x418
- cb: 68 5b e8 14 cf push 0xcf14e85b
- d0: 51 push ecx
- d1: e8 79 03 00 00 call 0x44f
- d6: 6a 3e push 0x3e
- d8: e8 3b 03 00 00 call 0x418
- dd: 8b d1 mov edx,ecx
- df: 6a 1e push 0x1e
- e1: e8 32 03 00 00 call 0x418
- e6: 6a 40 push 0x40
- e8: ff 32 push DWORD PTR [edx]
- ea: ff 31 push DWORD PTR [ecx]
- ec: ff d0 call eax
- ee: 6a 12 push 0x12
- f0: e8 23 03 00 00 call 0x418
- f5: 68 5b e8 14 cf push 0xcf14e85b
- fa: 51 push ecx
- fb: e8 4f 03 00 00 call 0x44f
- 100: 6a 1e push 0x1e
- 102: e8 11 03 00 00 call 0x418
- 107: 8b 09 mov ecx,DWORD PTR [ecx]
- 109: 8b 51 3c mov edx,DWORD PTR [ecx+0x3c]
- 10c: 6a 3e push 0x3e
- 10e: e8 05 03 00 00 call 0x418
- 113: 8b 39 mov edi,DWORD PTR [ecx]
- 115: 03 fa add edi,edx
- 117: 6a 22 push 0x22
- 119: e8 fa 02 00 00 call 0x418
- 11e: 8b 09 mov ecx,DWORD PTR [ecx]
- 120: 68 f8 00 00 00 push 0xf8
- 125: 57 push edi
- 126: 51 push ecx
- 127: ff d0 call eax
- 129: 6a 00 push 0x0
- 12b: e8 e8 02 00 00 call 0x418
- 130: 68 88 fe b3 16 push 0x16b3fe88
- 135: 51 push ecx
- 136: e8 14 03 00 00 call 0x44f
- 13b: 6a 2e push 0x2e
- 13d: e8 d6 02 00 00 call 0x418
- 142: 8b 39 mov edi,DWORD PTR [ecx]
- 144: 6a 2a push 0x2a
- 146: e8 cd 02 00 00 call 0x418
- 14b: 8b 11 mov edx,DWORD PTR [ecx]
- 14d: 6a 42 push 0x42
- 14f: e8 c4 02 00 00 call 0x418
- 154: 57 push edi
- 155: 52 push edx
- 156: 6a 00 push 0x0
- 158: 6a 00 push 0x0
- 15a: 6a 04 push 0x4
- 15c: 6a 00 push 0x0
- 15e: 6a 00 push 0x0
- 160: 6a 00 push 0x0
- 162: 6a 00 push 0x0
- 164: ff 31 push DWORD PTR [ecx]
- 166: ff d0 call eax
- 168: 6a 12 push 0x12
- 16a: e8 a9 02 00 00 call 0x418
- 16f: 68 d0 37 10 f2 push 0xf21037d0
- 174: 51 push ecx
- 175: e8 d5 02 00 00 call 0x44f
- 17a: 6a 22 push 0x22
- 17c: e8 97 02 00 00 call 0x418
- 181: 8b 11 mov edx,DWORD PTR [ecx]
- 183: 6a 2e push 0x2e
- 185: e8 8e 02 00 00 call 0x418
- 18a: 8b 09 mov ecx,DWORD PTR [ecx]
- 18c: ff 72 34 push DWORD PTR [edx+0x34]
- 18f: ff 31 push DWORD PTR [ecx]
- 191: ff d0 call eax
- 193: 6a 00 push 0x0
- 195: e8 7e 02 00 00 call 0x418
- 19a: 68 9c 95 1a 6e push 0x6e1a959c
- 19f: 51 push ecx
- 1a0: e8 aa 02 00 00 call 0x44f
- 1a5: 6a 22 push 0x22
- 1a7: e8 6c 02 00 00 call 0x418
- 1ac: 8b 11 mov edx,DWORD PTR [ecx]
- 1ae: 8b 39 mov edi,DWORD PTR [ecx]
- 1b0: 6a 2e push 0x2e
- 1b2: e8 61 02 00 00 call 0x418
- 1b7: 8b 09 mov ecx,DWORD PTR [ecx]
- 1b9: 6a 40 push 0x40
- 1bb: 68 00 30 00 00 push 0x3000
- 1c0: ff 72 50 push DWORD PTR [edx+0x50]
- 1c3: ff 77 34 push DWORD PTR [edi+0x34]
- 1c6: ff 31 push DWORD PTR [ecx]
- 1c8: ff d0 call eax
- 1ca: 6a 36 push 0x36
- 1cc: e8 47 02 00 00 call 0x418
- 1d1: 8b d1 mov edx,ecx
- 1d3: 6a 22 push 0x22
- 1d5: e8 3e 02 00 00 call 0x418
- 1da: 8b 39 mov edi,DWORD PTR [ecx]
- 1dc: 6a 3e push 0x3e
- 1de: e8 35 02 00 00 call 0x418
- 1e3: 8b 31 mov esi,DWORD PTR [ecx]
- 1e5: 6a 22 push 0x22
- 1e7: e8 2c 02 00 00 call 0x418
- 1ec: 8b 01 mov eax,DWORD PTR [ecx]
- 1ee: 6a 2e push 0x2e
- 1f0: e8 23 02 00 00 call 0x418
- 1f5: 8b 09 mov ecx,DWORD PTR [ecx]
- 1f7: 52 push edx
- 1f8: ff 77 54 push DWORD PTR [edi+0x54]
- 1fb: 56 push esi
- 1fc: ff 70 34 push DWORD PTR [eax+0x34]
- 1ff: ff 31 push DWORD PTR [ecx]
- 201: 6a 00 push 0x0
- 203: e8 10 02 00 00 call 0x418
- 208: 68 a1 6a 3d d8 push 0xd83d6aa1
- 20d: 51 push ecx
- 20e: e8 3c 02 00 00 call 0x44f
- 213: 83 c4 0c add esp,0xc
- 216: ff d0 call eax
- 218: 6a 12 push 0x12
- 21a: e8 f9 01 00 00 call 0x418
- 21f: 68 5b e8 14 cf push 0xcf14e85b
- 224: 51 push ecx
- 225: e8 25 02 00 00 call 0x44f
- 22a: 6a 22 push 0x22
- 22c: e8 e7 01 00 00 call 0x418
- 231: 8b 11 mov edx,DWORD PTR [ecx]
- 233: 83 c2 06 add edx,0x6
- 236: 6a 3a push 0x3a
- 238: e8 db 01 00 00 call 0x418
- 23d: 6a 02 push 0x2
- 23f: 52 push edx
- 240: 51 push ecx
- 241: ff d0 call eax
- 243: 6a 36 push 0x36
- 245: e8 ce 01 00 00 call 0x418
- 24a: c7 01 00 00 00 00 mov DWORD PTR [ecx],0x0
- 250: b8 28 00 00 00 mov eax,0x28
- 255: 6a 36 push 0x36
- 257: e8 bc 01 00 00 call 0x418
- 25c: f7 21 mul DWORD PTR [ecx]
- 25e: 6a 1e push 0x1e
- 260: e8 b3 01 00 00 call 0x418
- 265: 8b 11 mov edx,DWORD PTR [ecx]
- 267: 8b 52 3c mov edx,DWORD PTR [edx+0x3c]
- 26a: 81 c2 f8 00 00 00 add edx,0xf8
- 270: 03 d0 add edx,eax
- 272: 6a 3e push 0x3e
- 274: e8 9f 01 00 00 call 0x418
- 279: 03 11 add edx,DWORD PTR [ecx]
- 27b: 6a 26 push 0x26
- 27d: e8 96 01 00 00 call 0x418
- 282: 6a 28 push 0x28
- 284: 52 push edx
- 285: ff 31 push DWORD PTR [ecx]
- 287: 6a 12 push 0x12
- 289: e8 8a 01 00 00 call 0x418
- 28e: 68 5b e8 14 cf push 0xcf14e85b
- 293: 51 push ecx
- 294: e8 b6 01 00 00 call 0x44f
- 299: 83 c4 0c add esp,0xc
- 29c: ff d0 call eax
- 29e: 6a 26 push 0x26
- 2a0: e8 73 01 00 00 call 0x418
- 2a5: 8b 39 mov edi,DWORD PTR [ecx]
- 2a7: 8b 09 mov ecx,DWORD PTR [ecx]
- 2a9: 8b 71 14 mov esi,DWORD PTR [ecx+0x14]
- 2ac: 6a 3e push 0x3e
- 2ae: e8 65 01 00 00 call 0x418
- 2b3: 03 31 add esi,DWORD PTR [ecx]
- 2b5: 6a 26 push 0x26
- 2b7: e8 5c 01 00 00 call 0x418
- 2bc: 8b 09 mov ecx,DWORD PTR [ecx]
- 2be: 8b 51 0c mov edx,DWORD PTR [ecx+0xc]
- 2c1: 6a 22 push 0x22
- 2c3: e8 50 01 00 00 call 0x418
- 2c8: 8b 09 mov ecx,DWORD PTR [ecx]
- 2ca: 03 51 34 add edx,DWORD PTR [ecx+0x34]
- 2cd: 6a 46 push 0x46
- 2cf: e8 44 01 00 00 call 0x418
- 2d4: 8b c1 mov eax,ecx
- 2d6: 6a 2e push 0x2e
- 2d8: e8 3b 01 00 00 call 0x418
- 2dd: 8b 09 mov ecx,DWORD PTR [ecx]
- 2df: 50 push eax
- 2e0: ff 77 10 push DWORD PTR [edi+0x10]
- 2e3: 56 push esi
- 2e4: 52 push edx
- 2e5: ff 31 push DWORD PTR [ecx]
- 2e7: 6a 00 push 0x0
- 2e9: e8 2a 01 00 00 call 0x418
- 2ee: 68 a1 6a 3d d8 push 0xd83d6aa1
- 2f3: 51 push ecx
- 2f4: e8 56 01 00 00 call 0x44f
- 2f9: 83 c4 0c add esp,0xc
- 2fc: ff d0 call eax
- 2fe: 6a 36 push 0x36
- 300: e8 13 01 00 00 call 0x418
- 305: 8b 11 mov edx,DWORD PTR [ecx]
- 307: 83 c2 01 add edx,0x1
- 30a: 89 11 mov DWORD PTR [ecx],edx
- 30c: 6a 3a push 0x3a
- 30e: e8 05 01 00 00 call 0x418
- 313: 8b 09 mov ecx,DWORD PTR [ecx]
- 315: 3b ca cmp ecx,edx
- 317: 0f 85 33 ff ff ff jne 0x250
- 31d: 6a 32 push 0x32
- 31f: e8 f4 00 00 00 call 0x418
- 324: 8b 09 mov ecx,DWORD PTR [ecx]
- 326: c7 01 07 00 01 00 mov DWORD PTR [ecx],0x10007
- 32c: 6a 00 push 0x0
- 32e: e8 e5 00 00 00 call 0x418
- 333: 68 d2 c7 a7 68 push 0x68a7c7d2
- 338: 51 push ecx
- 339: e8 11 01 00 00 call 0x44f
- 33e: 6a 32 push 0x32
- 340: e8 d3 00 00 00 call 0x418
- 345: 8b 11 mov edx,DWORD PTR [ecx]
- 347: 6a 2e push 0x2e
- 349: e8 ca 00 00 00 call 0x418
- 34e: 8b 09 mov ecx,DWORD PTR [ecx]
- 350: 52 push edx
- 351: ff 71 04 push DWORD PTR [ecx+0x4]
- 354: ff d0 call eax
- 356: 6a 22 push 0x22
- 358: e8 bb 00 00 00 call 0x418
- 35d: 8b 39 mov edi,DWORD PTR [ecx]
- 35f: 83 c7 34 add edi,0x34
- 362: 6a 32 push 0x32
- 364: e8 af 00 00 00 call 0x418
- 369: 8b 31 mov esi,DWORD PTR [ecx]
- 36b: 8b b6 a4 00 00 00 mov esi,DWORD PTR [esi+0xa4]
- 371: 83 c6 08 add esi,0x8
- 374: 6a 2e push 0x2e
- 376: e8 9d 00 00 00 call 0x418
- 37b: 8b 11 mov edx,DWORD PTR [ecx]
- 37d: 6a 46 push 0x46
- 37f: e8 94 00 00 00 call 0x418
- 384: 51 push ecx
- 385: 6a 04 push 0x4
- 387: 57 push edi
- 388: 56 push esi
- 389: ff 32 push DWORD PTR [edx]
- 38b: 6a 00 push 0x0
- 38d: e8 86 00 00 00 call 0x418
- 392: 68 a1 6a 3d d8 push 0xd83d6aa1
- 397: 51 push ecx
- 398: e8 b2 00 00 00 call 0x44f
- 39d: 83 c4 0c add esp,0xc
- 3a0: ff d0 call eax
- 3a2: 6a 22 push 0x22
- 3a4: e8 6f 00 00 00 call 0x418
- 3a9: 8b 09 mov ecx,DWORD PTR [ecx]
- 3ab: 8b 51 28 mov edx,DWORD PTR [ecx+0x28]
- 3ae: 03 51 34 add edx,DWORD PTR [ecx+0x34]
- 3b1: 6a 32 push 0x32
- 3b3: e8 60 00 00 00 call 0x418
- 3b8: 8b 09 mov ecx,DWORD PTR [ecx]
- 3ba: 81 c1 b0 00 00 00 add ecx,0xb0
- 3c0: 89 11 mov DWORD PTR [ecx],edx
- 3c2: 6a 00 push 0x0
- 3c4: e8 4f 00 00 00 call 0x418
- 3c9: 68 d3 c7 a7 e8 push 0xe8a7c7d3
- 3ce: 51 push ecx
- 3cf: e8 7b 00 00 00 call 0x44f
- 3d4: 6a 32 push 0x32
- 3d6: e8 3d 00 00 00 call 0x418
- 3db: 8b d1 mov edx,ecx
- 3dd: 6a 2e push 0x2e
- 3df: e8 34 00 00 00 call 0x418
- 3e4: 8b 09 mov ecx,DWORD PTR [ecx]
- 3e6: ff 32 push DWORD PTR [edx]
- 3e8: ff 71 04 push DWORD PTR [ecx+0x4]
- 3eb: ff d0 call eax
- 3ed: 6a 00 push 0x0
- 3ef: e8 24 00 00 00 call 0x418
- 3f4: 68 88 3f 4a 9e push 0x9e4a3f88
- 3f9: 51 push ecx
- 3fa: e8 50 00 00 00 call 0x44f
- 3ff: 6a 2e push 0x2e
- 401: e8 12 00 00 00 call 0x418
- 406: 8b 09 mov ecx,DWORD PTR [ecx]
- 408: ff 71 04 push DWORD PTR [ecx+0x4]
- 40b: ff d0 call eax
- 40d: 6a 4a push 0x4a
- 40f: e8 04 00 00 00 call 0x418
- 414: 8b 21 mov esp,DWORD PTR [ecx]
- 416: 61 popa
- 417: c3 ret
- 418: 8b cb mov ecx,ebx
- 41a: 03 4c 24 04 add ecx,DWORD PTR [esp+0x4]
- 41e: c3 ret
- 41f: 6a 00 push 0x0
- 421: e8 f2 ff ff ff call 0x418
- 426: 68 54 ca af 91 push 0x91afca54
- 42b: 51 push ecx
- 42c: e8 1e 00 00 00 call 0x44f
- 431: 6a 40 push 0x40
- 433: 68 00 10 00 00 push 0x1000
- 438: ff 74 24 18 push DWORD PTR [esp+0x18]
- 43c: 6a 00 push 0x0
- 43e: ff d0 call eax
- 440: ff 74 24 14 push DWORD PTR [esp+0x14]
- 444: e8 cf ff ff ff call 0x418
- 449: 89 01 mov DWORD PTR [ecx],eax
- 44b: 83 c4 10 add esp,0x10
- 44e: c3 ret
- 44f: e8 22 00 00 00 call 0x476
- 454: 68 a4 4e 0e ec push 0xec0e4ea4
- 459: 50 push eax
- 45a: e8 4b 00 00 00 call 0x4aa
- 45f: 83 c4 08 add esp,0x8
- 462: ff 74 24 04 push DWORD PTR [esp+0x4]
- 466: ff d0 call eax
- 468: ff 74 24 08 push DWORD PTR [esp+0x8]
- 46c: 50 push eax
- 46d: e8 38 00 00 00 call 0x4aa
- 472: 83 c4 08 add esp,0x8
- 475: c3 ret
- 476: 55 push ebp
- 477: 52 push edx
- 478: 51 push ecx
- 479: 53 push ebx
- 47a: 56 push esi
- 47b: 57 push edi
- 47c: 33 c0 xor eax,eax
- 47e: 64 8b 70 30 mov esi,DWORD PTR fs:[eax+0x30]
- 482: 8b 76 0c mov esi,DWORD PTR [esi+0xc]
- 485: 8b 76 1c mov esi,DWORD PTR [esi+0x1c]
- 488: 8b 6e 08 mov ebp,DWORD PTR [esi+0x8]
- 48b: 8b 7e 20 mov edi,DWORD PTR [esi+0x20]
- 48e: 8b 36 mov esi,DWORD PTR [esi]
- 490: 38 47 18 cmp BYTE PTR [edi+0x18],al
- 493: 75 f3 jne 0x488
- 495: 80 3f 6b cmp BYTE PTR [edi],0x6b
- 498: 74 07 je 0x4a1
- 49a: 80 3f 4b cmp BYTE PTR [edi],0x4b
- 49d: 74 02 je 0x4a1
- 49f: eb e7 jmp 0x488
- 4a1: 8b c5 mov eax,ebp
- 4a3: 5f pop edi
- 4a4: 5e pop esi
- 4a5: 5b pop ebx
- 4a6: 59 pop ecx
- 4a7: 5a pop edx
- 4a8: 5d pop ebp
- 4a9: c3 ret
- 4aa: 55 push ebp
- 4ab: 52 push edx
- 4ac: 51 push ecx
- 4ad: 53 push ebx
- 4ae: 56 push esi
- 4af: 57 push edi
- 4b0: 8b 6c 24 1c mov ebp,DWORD PTR [esp+0x1c]
- 4b4: 85 ed test ebp,ebp
- 4b6: 74 43 je 0x4fb
- 4b8: 8b 45 3c mov eax,DWORD PTR [ebp+0x3c]
- 4bb: 8b 54 28 78 mov edx,DWORD PTR [eax+ebp*1+0x78]
- 4bf: 03 d5 add edx,ebp
- 4c1: 8b 4a 18 mov ecx,DWORD PTR [edx+0x18]
- 4c4: 8b 5a 20 mov ebx,DWORD PTR [edx+0x20]
- 4c7: 03 dd add ebx,ebp
- 4c9: e3 30 jecxz 0x4fb
- 4cb: 49 dec ecx
- 4cc: 8b 34 8b mov esi,DWORD PTR [ebx+ecx*4]
- 4cf: 03 f5 add esi,ebp
- 4d1: 33 ff xor edi,edi
- 4d3: 33 c0 xor eax,eax
- 4d5: fc cld
- 4d6: ac lods al,BYTE PTR ds:[esi]
- 4d7: 84 c0 test al,al
- 4d9: 74 07 je 0x4e2
- 4db: c1 cf 0d ror edi,0xd
- 4de: 03 f8 add edi,eax
- 4e0: eb f4 jmp 0x4d6
- 4e2: 3b 7c 24 20 cmp edi,DWORD PTR [esp+0x20]
- 4e6: 75 e1 jne 0x4c9
- 4e8: 8b 5a 24 mov ebx,DWORD PTR [edx+0x24]
- 4eb: 03 dd add ebx,ebp
- 4ed: 66 8b 0c 4b mov cx,WORD PTR [ebx+ecx*2]
- 4f1: 8b 5a 1c mov ebx,DWORD PTR [edx+0x1c]
- 4f4: 03 dd add ebx,ebp
- 4f6: 8b 04 8b mov eax,DWORD PTR [ebx+ecx*4]
- 4f9: 03 c5 add eax,ebp
- 4fb: 5f pop edi
- 4fc: 5e pop esi
- 4fd: 5b pop ebx
- 4fe: 59 pop ecx
- 4ff: 5a pop edx
- 500: 5d pop ebp
- 501: c3 ret
- 502: c3 ret
- 503: 00 00 add BYTE PTR [eax],al
- ...
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement