API tools faq
paste
Advertisement
Riremito

HSCRC_Dynamic v5.7.20.616 JMS v342.1

Riremito
Jul 29th, 2015
767
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.92 KB | None | 0 0
raw download clone embed print report
  1. 0F4F0033 - 55 - push ebp
  2. 0F4F0034 - 8B EC - mov ebp,esp
  3. 0F4F0036 - 6A FF - push -01
  4. 0F4F0038 - 68 002C2C1A - push EHSvc.dll+132C00
  5. 0F4F003D - 68 9834271A - push EHSvc.dll+E3498
  6. 0F4F0042 - 64 A1 00000000 - mov eax,fs:[00000000]
  7. 0F4F0048 - 50 - push eax
  8. 0F4F0049 - 64 89 25 00000000 - mov fs:[00000000],esp
  9. 0F4F0050 - 83 EC 20 - sub esp,20
  10. 0F4F0053 - 53 - push ebx
  11. 0F4F0054 - 56 - push esi
  12. 0F4F0055 - 57 - push edi
  13. 0F4F0056 - 89 65 E8 - mov [ebp-18],esp
  14. 0F4F0059 - 33 FF - xor edi,edi
  15. 0F4F005B - 33 F6 - xor esi,esi
  16. 0F4F005D - 89 75 E0 - mov [ebp-20],esi
  17. 0F4F0060 - 33 DB - xor ebx,ebx
  18. 0F4F0062 - 89 5D D8 - mov [ebp-28],ebx
  19. 0F4F0065 - B8 FFFFFF0F - mov eax,0FFFFFFF : [905A4D00]
  20. 0F4F006A - 89 45 E4 - mov [ebp-1C],eax
  21. 0F4F006D - 89 7D FC - mov [ebp-04],edi
  22. 0F4F0070 - 8B 4D 08 - mov ecx,[ebp+08]
  23. 0F4F0073 - 3B CF - cmp ecx,edi
  24. 0F4F0075 - 74 12 - je 0F4F0089
  25. 0F4F0077 - 8B 55 0C - mov edx,[ebp+0C]
  26. 0F4F007A - 85 D2 - test edx,edx
  27. 0F4F007C - 74 0B - je 0F4F0089
  28. 0F4F007E - 8B F1 - mov esi,ecx
  29. 0F4F0080 - 89 75 E0 - mov [ebp-20],esi
  30. 0F4F0083 - 8D 1C 11 - lea ebx,[ecx+edx]
  31. 0F4F0086 - 89 5D D8 - mov [ebp-28],ebx
  32. 0F4F0089 - 81 3D 50602F1A 18C8221A - cmp [EHSvc.dll+166050],EHSvc.dll+9C818
  33. 0F4F0093 - 74 1A - je 0F4F00AF
  34. 0F4F0095 - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  35. 0F4F009C - 33 C0 - xor eax,eax
  36. 0F4F009E - 8B 4D F0 - mov ecx,[ebp-10]
  37. 0F4F00A1 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  38. 0F4F00A8 - 5F - pop edi
  39. 0F4F00A9 - 5E - pop esi
  40. 0F4F00AA - 5B - pop ebx
  41. 0F4F00AB - 8B E5 - mov esp,ebp
  42. 0F4F00AD - 5D - pop ebp
  43. 0F4F00AE - C3 - ret
  44. 0F4F00AF - 8B 0D 58602F1A - mov ecx,[EHSvc.dll+166058]
  45. 0F4F00B5 - 3B 0D 2C602F1A - cmp ecx,[EHSvc.dll+16602C]
  46. 0F4F00BB - 74 1A - je 0F4F00D7
  47. 0F4F00BD - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  48. 0F4F00C4 - 33 C0 - xor eax,eax
  49. 0F4F00C6 - 8B 4D F0 - mov ecx,[ebp-10]
  50. 0F4F00C9 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  51. 0F4F00D0 - 5F - pop edi
  52. 0F4F00D1 - 5E - pop esi
  53. 0F4F00D2 - 5B - pop ebx
  54. 0F4F00D3 - 8B E5 - mov esp,ebp
  55. 0F4F00D5 - 5D - pop ebp
  56. 0F4F00D6 - C3 - ret
  57. 0F4F00D7 - 8B 15 60602F1A - mov edx,[EHSvc.dll+166060]
  58. 0F4F00DD - 3B 15 34602F1A - cmp edx,[EHSvc.dll+166034]
  59. 0F4F00E3 - 74 1A - je 0F4F00FF
  60. 0F4F00E5 - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  61. 0F4F00EC - 33 C0 - xor eax,eax
  62. 0F4F00EE - 8B 4D F0 - mov ecx,[ebp-10]
  63. 0F4F00F1 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  64. 0F4F00F8 - 5F - pop edi
  65. 0F4F00F9 - 5E - pop esi
  66. 0F4F00FA - 5B - pop ebx
  67. 0F4F00FB - 8B E5 - mov esp,ebp
  68. 0F4F00FD - 5D - pop ebp
  69. 0F4F00FE - C3 - ret
  70. 0F4F00FF - 8B 0D 68602F1A - mov ecx,[EHSvc.dll+166068]
  71. 0F4F0105 - 3B 0D 3C602F1A - cmp ecx,[EHSvc.dll+16603C]
  72. 0F4F010B - 74 1A - je 0F4F0127
  73. 0F4F010D - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  74. 0F4F0114 - 33 C0 - xor eax,eax
  75. 0F4F0116 - 8B 4D F0 - mov ecx,[ebp-10]
  76. 0F4F0119 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  77. 0F4F0120 - 5F - pop edi
  78. 0F4F0121 - 5E - pop esi
  79. 0F4F0122 - 5B - pop ebx
  80. 0F4F0123 - 8B E5 - mov esp,ebp
  81. 0F4F0125 - 5D - pop ebp
  82. 0F4F0126 - C3 - ret
  83. 0F4F0127 - 8B 15 70602F1A - mov edx,[EHSvc.dll+166070]
  84. 0F4F012D - 3B 15 44602F1A - cmp edx,[EHSvc.dll+166044]
  85. 0F4F0133 - 74 1A - je 0F4F014F
  86. 0F4F0135 - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  87. 0F4F013C - 33 C0 - xor eax,eax
  88. 0F4F013E - 8B 4D F0 - mov ecx,[ebp-10]
  89. 0F4F0141 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  90. 0F4F0148 - 5F - pop edi
  91. 0F4F0149 - 5E - pop esi
  92. 0F4F014A - 5B - pop ebx
  93. 0F4F014B - 8B E5 - mov esp,ebp
  94. 0F4F014D - 5D - pop ebp
  95. 0F4F014E - C3 - ret
  96. 0F4F014F - 8B 0C FD 50602F1A - mov ecx,[edi*8+EHSvc.dll+166050]
  97. 0F4F0156 - 85 C9 - test ecx,ecx
  98. 0F4F0158 - 0F84 80000000 - je 0F4F01DE
  99. 0F4F015E - 85 F6 - test esi,esi
  100. 0F4F0160 - 74 26 - je 0F4F0188
  101. 0F4F0162 - 85 DB - test ebx,ebx
  102. 0F4F0164 - 74 22 - je 0F4F0188
  103. 0F4F0166 - 3B CE - cmp ecx,esi
  104. 0F4F0168 - 72 04 - jb 0F4F016E
  105. 0F4F016A - 3B CB - cmp ecx,ebx
  106. 0F4F016C - 76 1A - jna 0F4F0188
  107. 0F4F016E - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  108. 0F4F0175 - 33 C0 - xor eax,eax
  109. 0F4F0177 - 8B 4D F0 - mov ecx,[ebp-10]
  110. 0F4F017A - 64 89 0D 00000000 - mov fs:[00000000],ecx
  111. 0F4F0181 - 5F - pop edi
  112. 0F4F0182 - 5E - pop esi
  113. 0F4F0183 - 5B - pop ebx
  114. 0F4F0184 - 8B E5 - mov esp,ebp
  115. 0F4F0186 - 5D - pop ebp
  116. 0F4F0187 - C3 - ret
  117. 0F4F0188 - 89 4D D4 - mov [ebp-2C],ecx
  118. 0F4F018B - 8B 34 FD 54602F1A - mov esi,[edi*8+EHSvc.dll+166054]
  119. 0F4F0192 - 89 75 D0 - mov [ebp-30],esi
  120. 0F4F0195 - 85 F6 - test esi,esi
  121. 0F4F0197 - 75 08 - jne 0F4F01A1
  122. 0F4F0199 - BE 40000000 - mov esi,00000040
  123. 0F4F019E - 89 75 D0 - mov [ebp-30],esi
  124. 0F4F01A1 - 8B D6 - mov edx,esi
  125. 0F4F01A3 - 4E - dec esi
  126. 0F4F01A4 - 89 75 D0 - mov [ebp-30],esi
  127. 0F4F01A7 - 85 D2 - test edx,edx
  128. 0F4F01A9 - 74 24 - je 0F4F01CF
  129. 0F4F01AB - C1 E8 08 - shr eax,08
  130. 0F4F01AE - 89 45 E4 - mov [ebp-1C],eax
  131. 0F4F01B1 - 8B D0 - mov edx,eax
  132. 0F4F01B3 - 81 E2 FF000000 - and edx,000000FF
  133. 0F4F01B9 - 33 DB - xor ebx,ebx
  134. 0F4F01BB - 8A 19 - mov bl,[ecx]
  135. 0F4F01BD - 33 D3 - xor edx,ebx
  136. 0F4F01BF - 33 04 95 84602F1A - xor eax,[edx*4+EHSvc.dll+166084]
  137. 0F4F01C6 - 89 45 E4 - mov [ebp-1C],eax
  138. 0F4F01C9 - 41 - inc ecx
  139. 0F4F01CA - 89 4D D4 - mov [ebp-2C],ecx
  140. 0F4F01CD - EB D2 - jmp 0F4F01A1
  141. 0F4F01CF - 47 - inc edi
  142. 0F4F01D0 - 89 7D DC - mov [ebp-24],edi
  143. 0F4F01D3 - 8B 5D D8 - mov ebx,[ebp-28]
  144. 0F4F01D6 - 8B 75 E0 - mov esi,[ebp-20]
  145. 0F4F01D9 - E9 71FFFFFF - jmp 0F4F014F
  146. 0F4F01DE - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  147. 0F4F01E5 - 8B 4D F0 - mov ecx,[ebp-10]
  148. 0F4F01E8 - 64 89 0D 00000000 - mov fs:[00000000],ecx
  149. 0F4F01EF - 5F - pop edi
  150. 0F4F01F0 - 5E - pop esi
  151. 0F4F01F1 - 5B - pop ebx
  152. 0F4F01F2 - 8B E5 - mov esp,ebp
  153. 0F4F01F4 - 5D - pop ebp
  154. 0F4F01F5 - C3 - ret
  155. 0F4F01F6 - B8 01000000 - mov eax,00000001
  156. 0F4F01FB - C3 - ret
  157. 0F4F01FC - 8B 65 E8 - mov esp,[ebp-18]
  158. 0F4F01FF - C7 45 FC FFFFFFFF - mov [ebp-04],FFFFFFFF
  159. 0F4F0206 - 8B 45 E4 - mov eax,[ebp-1C]
  160. 0F4F0209 - 8B 4D F0 - mov ecx,[ebp-10]
  161. 0F4F020C - 64 89 0D 00000000 - mov fs:[00000000],ecx
  162. 0F4F0213 - 5F - pop edi
  163. 0F4F0214 - 5E - pop esi
  164. 0F4F0215 - 5B - pop ebx
  165. 0F4F0216 - 8B E5 - mov esp,ebp
  166. 0F4F0218 - 5D - pop ebp
  167. 0F4F0219 - C3 - ret
  168. 0F4F021A - 90 - nop
  169. 0F4F021B - 90 - nop
  170. 0F4F021C - 90 - nop
  171. 0F4F021D - 90 - nop
  172. 0F4F021E - 90 - nop
  173. 0F4F021F - 90 - nop
  174. 0F4F0220 - 90 - nop
  175. 0F4F0221 - 90 - nop
  176. 0F4F0222 - 90 - nop
  177. 0F4F0223 - B8 50942A1A - mov eax,EHSvc.dll+119450
  178. 0F4F0228 - 2D 50922A1A - sub eax,EHSvc.dll+119250
  179. 0F4F022D - C3 - ret
  180. 0F4F022E - 90 - nop
  181. 0F4F022F - 90 - nop
  182. 0F4F0230 - 90 - nop
  183. 0F4F0231 - 90 - nop
  184. 0F4F0232 - 90 - nop
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!