-
-
菜鸟求助,高手一看就明白,求指教
-
发表于:
2012-5-24 18:03
3059
-
小弟进入汇编不久,是个菜鸟。想给程序加个补丁,不知道该从哪个地址跳。还希望高手指点一二
以下是代码。
0041E5A9 |. 33ED xor ebp, ebp ; Switch (cases 13B..502)
0041E5AB 3D 3D010000 cmp eax, 13D
0041E5B0 |. 7F 21 jg short 0041E5D3
0041E5B2 |. 74 18 je short 0041E5CC
0041E5B4 |. 2D 3B010000 sub eax, 13B
0041E5B9 |. 74 0A je short 0041E5C5
0041E5BB |. 48 dec eax
0041E5BC |. 75 2D jnz short 0041E5EB
0041E5BE |. BD FD010000 mov ebp, 1FD ; Case 13C of switch 0041E5A9
0041E5C3 |. EB 26 jmp short 0041E5EB
0041E5C5 |> BD FB010000 mov ebp, 1FB ; Case 13B of switch 0041E5A9
0041E5CA |. EB 1F jmp short 0041E5EB
0041E5CC |> BD FF010000 mov ebp, 1FF ; Case 13D of switch 0041E5A9
0041E5D1 |. EB 18 jmp short 0041E5EB
0041E5D3 |> 2D F6040000 sub eax, 4F6
0041E5D8 |. 74 0C je short 0041E5E6
0041E5DA |. 83E8 0C sub eax, 0C
0041E5DD |. 75 0C jnz short 0041E5EB
0041E5DF |. BD 72050000 mov ebp, 572 ; Case 502 of switch 0041E5A9
0041E5E4 EB 05 jmp short 0041E5EB
0041E5E6 BD 6F050000 mov ebp, 56F
0041E5EB |> 6A 6A push 6A ; Default case of switch 0041E5A9
0041E5ED |. 8BCF mov ecx, edi
0041E5EF |. E8 7C870900 call 004B6D70
0041E5F4 |. 85C0 test eax, eax
0041E5F6 |. 74 10 je short 0041E608
0041E5F8 |. 6A 00 push 0 ; /Arg3 = 00000000
0041E5FA |. 6A 00 push 0 ; |Arg2 = 00000000
0041E5FC |. 55 push ebp ; |Arg1
0041E5FD |. 8D8E C8060000 lea ecx, dword ptr [esi+6C8] ; |
0041E603 |. E8 F89F0900 call 004B8600 ; \region_s.004B8600
0041E608 |> 0FBF86 800700>movsx eax, word ptr [esi+780]
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
