* Reference to control LE1 : TLabeledEdit
|
004092CB 8B809C030000 mov eax, [eax+$039C]
|
004092D1 E89EFC0500 call 00468F74
004092D6 FF4DE8 dec dword ptr [ebp-$18]
004092D9 8D45F0 lea eax, [ebp-$10]
004092DC BA02000000 mov edx, $00000002
|
004092E1 E836E10800 call 0049741C
004092E6 8B4DC8 mov ecx, [ebp-$38]
004092E9 80B93506070000 cmp byte ptr [ecx+$70635], $00
004092F0 0F84A5010000 jz 0040949B
004092F6 8B45C8 mov eax, [ebp-$38]
004092F9 6683B83606070005 cmp word ptr [eax+$70636], +$05
00409301 0F8D94010000 jnl 0040949B
00409307 E91C010000 jmp 00409428
0040930C A194914900 mov eax, dword ptr [$00499194]
00409311 B932000000 mov ecx, $00000032
00409316 33D2 xor edx, edx
00409318 F7F1 div ecx
0040931A 668955AA mov [ebp-$56], dx
0040931E 8B45C8 mov eax, [ebp-$38]
00409321 668B9038060700 mov dx, word ptr [eax+$70638]
00409328 663B15964D4A00 cmp dx, word ptr [$004A4D96]
0040932F 7D72 jnl 004093A3
00409331 8B4DC8 mov ecx, [ebp-$38]
00409334 0FBF8138060700 movsx eax, word ptr [ecx+$70638]
0040933B C1E005 shl eax, $05
0040933E 8B15904D4A00 mov edx, [$004A4D90]
00409344 D9440218 fld dword ptr [edx+eax+$18]
00409348 D81D64954000 fcomp dword ptr [$00409564]
0040934E DFE0 fstsw ax
00409350 9E sahf
00409351 0F86C7000000 jbe 0040941E
00409357 0FBF55AA movsx edx, word ptr [ebp-$56]
0040935B 8D0C52 lea ecx, [edx+edx*2]
0040935E 8B45C8 mov eax, [ebp-$38]
00409361 668B9038060700 mov dx, word ptr [eax+$70638]
00409368 6689144DC9FA4900 mov [$49FAC9+ecx*2], dx
00409370 0FBF4DAA movsx ecx, word ptr [ebp-$56]
00409374 8D0449 lea eax, [ecx+ecx*2]
00409377 C60445C8FA490000 mov byte ptr [$49FAC8+eax*2], $00
0040937F 8B55C8 mov edx, [ebp-$38]
00409382 668B8A36060700 mov cx, word ptr [edx+$70636]
00409389 B001 mov al, $01
0040938B D2E0 shl al, cl
0040938D 0FBF55AA movsx edx, word ptr [ebp-$56]
00409391 8D0C52 lea ecx, [edx+edx*2]
00409394 88044DCBFA4900 mov [$49FACB+ecx*2], al
0040939B FF0594914900 inc dword ptr [$00499194]
004093A1 EB7B jmp 0040941E
004093A3 8B45C8 mov eax, [ebp-$38]
004093A6 0FBF9038060700 movsx edx, word ptr [eax+$70638]
004093AD 0FBF0D964D4A00 movsx ecx, word ptr [$004A4D96]
004093B4 2BD1 sub edx, ecx
004093B6 C1E205 shl edx, $05
004093B9 A18C4D4A00 mov eax, dword ptr [$004A4D8C]
004093BE D9441018 fld dword ptr [eax+edx+$18]
004093C2 D81D64954000 fcomp dword ptr [$00409564]
004093C8 DFE0 fstsw ax
* Reference to control LE1 : TLabeledEdit
|
004092CB 8B809C030000 mov eax, [eax+$039C]
|
004092D1 E89EFC0500 call 00468F74
004092D6 FF4DE8 dec dword ptr [ebp-$18]
004092D9 8D45F0 lea eax, [ebp-$10]
004092DC BA02000000 mov edx, $00000002
|
004092E1 E836E10800 call 0049741C
004092E6 8B4DC8 mov ecx, [ebp-$38]
004092E9 80B93506070000 cmp byte ptr [ecx+$70635], $00
004092F0 0F84A5010000 jz 0040949B
004092F6 8B45C8 mov eax, [ebp-$38]
004092F9 6683B83606070005 cmp word ptr [eax+$70636], +$05
00409301 0F8D94010000 jnl 0040949B
00409307 E91C010000 jmp 00409428
0040930C A194914900 mov eax, dword ptr [$00499194]
00409311 B932000000 mov ecx, $00000032
00409316 33D2 xor edx, edx
00409318 F7F1 div ecx
0040931A 668955AA mov [ebp-$56], dx
0040931E 8B45C8 mov eax, [ebp-$38]
00409321 668B9038060700 mov dx, word ptr [eax+$70638]
00409328 663B15964D4A00 cmp dx, word ptr [$004A4D96]
0040932F 7D72 jnl 004093A3
00409331 8B4DC8 mov ecx, [ebp-$38]
00409334 0FBF8138060700 movsx eax, word ptr [ecx+$70638]
0040933B C1E005 shl eax, $05
0040933E 8B15904D4A00 mov edx, [$004A4D90]
00409344 D9440218 fld dword ptr [edx+eax+$18]
00409348 D81D64954000 fcomp dword ptr [$00409564]
0040934E DFE0 fstsw ax
00409350 9E sahf
00409351 0F86C7000000 jbe 0040941E
00409357 0FBF55AA movsx edx, word ptr [ebp-$56]
0040935B 8D0C52 lea ecx, [edx+edx*2]
0040935E 8B45C8 mov eax, [ebp-$38]
00409361 668B9038060700 mov dx, word ptr [eax+$70638]
00409368 6689144DC9FA4900 mov [$49FAC9+ecx*2], dx
00409370 0FBF4DAA movsx ecx, word ptr [ebp-$56]
00409374 8D0449 lea eax, [ecx+ecx*2]
00409377 C60445C8FA490000 mov byte ptr [$49FAC8+eax*2], $00
0040937F 8B55C8 mov edx, [ebp-$38]
00409382 668B8A36060700 mov cx, word ptr [edx+$70636]
00409389 B001 mov al, $01
0040938B D2E0 shl al, cl
0040938D 0FBF55AA movsx edx, word ptr [ebp-$56]
00409391 8D0C52 lea ecx, [edx+edx*2]
00409394 88044DCBFA4900 mov [$49FACB+ecx*2], al
0040939B FF0594914900 inc dword ptr [$00499194]
004093A1 EB7B jmp 0040941E
004093A3 8B45C8 mov eax, [ebp-$38]
004093A6 0FBF9038060700 movsx edx, word ptr [eax+$70638]
004093AD 0FBF0D964D4A00 movsx ecx, word ptr [$004A4D96]
004093B4 2BD1 sub edx, ecx
004093B6 C1E205 shl edx, $05
004093B9 A18C4D4A00 mov eax, dword ptr [$004A4D8C]
004093BE D9441018 fld dword ptr [eax+edx+$18]
004093C2 D81D64954000 fcomp dword ptr [$00409564]
004093C8 DFE0 fstsw ax
004093CA 9E sahf
004093CB 7651 jbe 0040941E
004093CD 8B55C8 mov edx, [ebp-$38]
004093D0 668B8A38060700 mov cx, word ptr [edx+$70638]
004093D7 662B0D964D4A00 sub cx, word ptr [$004A4D96]
004093DE 0FBF45AA movsx eax, word ptr [ebp-$56]
004093E2 8D1440 lea edx, [eax+eax*2]
004093E5 66890C55C9FA4900 mov [$49FAC9+edx*2], cx
004093ED 0FBF4DAA movsx ecx, word ptr [ebp-$56]
004093F1 8D0449 lea eax, [ecx+ecx*2]
004093F4 C60445C8FA490001 mov byte ptr [$49FAC8+eax*2], $01
004093FC 8B55C8 mov edx, [ebp-$38]
004093FF 668B8A36060700 mov cx, word ptr [edx+$70636]
00409406 B001 mov al, $01
00409408 D2E0 shl al, cl
0040940A 0FBF55AA movsx edx, word ptr [ebp-$56]
0040940E 8D0C52 lea ecx, [edx+edx*2]
00409411 88044DCBFA4900 mov [$49FACB+ecx*2], al
00409418 FF0594914900 inc dword ptr [$00499194]
0040941E 8B45C8 mov eax, [ebp-$38]
00409421 66FF8038060700 inc word ptr [eax+$70638]
00409428 8B1594914900 mov edx, [$00499194]
0040942E 2B1598914900 sub edx, dword ptr [$00499198]
00409434 83FA1E cmp edx, +$1E
00409437 7322 jnb 0040945B
00409439 0FBF0D944D4A00 movsx ecx, word ptr [$004A4D94]
00409440 0FBF05964D4A00 movsx eax, word ptr [$004A4D96]
00409447 03C8 add ecx, eax
00409449 8B55C8 mov edx, [ebp-$38]
0040944C 0FBF8238060700 movsx eax, word ptr [edx+$70638]
00409453 3BC8 cmp ecx, eax
00409455 0F8FB1FEFFFF jnle 0040930C
0040945B 8B55C8 mov edx, [ebp-$38]
0040945E 0FBF9238060700 movsx edx, word ptr [edx+$70638]
00409465 8B45C8 mov eax, [ebp-$38]
我现在要改:
00409434 83FA1E cmp edx, +$1E
将 +$1E 改为 1000 结果如下,程序运行不正常,请问是什么回事?请大家帮忙怎么改?
004093CA 9E sahf
004093CB 7651 jbe 0040941E
004093CD 8B55C8 mov edx, [ebp-$38]
004093D0 668B8A38060700 mov cx, word ptr [edx+$70638]
004093D7 662B0D964D4A00 sub cx, word ptr [$004A4D96]
004093DE 0FBF45AA movsx eax, word ptr [ebp-$56]
004093E2 8D1440 lea edx, [eax+eax*2]
004093E5 66890C55C9FA4900 mov [$49FAC9+edx*2], cx
004093ED 0FBF4DAA movsx ecx, word ptr [ebp-$56]
004093F1 8D0449 lea eax, [ecx+ecx*2]
004093F4 C60445C8FA490001 mov byte ptr [$49FAC8+eax*2], $01
004093FC 8B55C8 mov edx, [ebp-$38]
004093FF 668B8A36060700 mov cx, word ptr [edx+$70636]
00409406 B001 mov al, $01
00409408 D2E0 shl al, cl
0040940A 0FBF55AA movsx edx, word ptr [ebp-$56]
0040940E 8D0C52 lea ecx, [edx+edx*2]
00409411 88044DCBFA4900 mov [$49FACB+ecx*2], al
00409418 FF0594914900 inc dword ptr [$00499194]
0040941E 8B45C8 mov eax, [ebp-$38]
00409421 66FF8038060700 inc word ptr [eax+$70638]
00409428 8B1594914900 mov edx, [$00499194]
0040942E 2B1598914900 sub edx, dword ptr [$00499198]
00409434 81FA00000100 cmp edx, $00010000
0040943A 90 nop
0040943B 90 nop
0040943C 90 nop
0040943D 90 nop
0040943E 90 nop
0040943F 90 nop
00409440 0FBF05964D4A00 movsx eax, word ptr [$004A4D96]
00409447 03C8 add ecx, eax
00409449 8B55C8 mov edx, [ebp-$38]
0040944C 0FBF8238060700 movsx eax, word ptr [edx+$70638]
00409453 3BC8 cmp ecx, eax
00409455 0F8FB1FEFFFF jnle 0040930C
0040945B 8B55C8 mov edx, [ebp-$38]
0040945E 0FBF9238060700 movsx edx, word ptr [edx+$70638]
00409465 8B45C8 mov eax, [ebp-$38]
[课程]Linux pwn 探索篇!