-
-
一段邪恶代码……
-
发表于:
2004-5-4 07:50
5760
-
如果在Ring0当然都起作用.而且有BUG嘿嘿
042F6FD 0F014C24 FE SIDT FWORD PTR SS:[ESP-2]//IDTR
0042F702 5E POP ESI
0042F703 66:8B46 18 MOV AX,WORD PTR DS:[ESI+18]//INT3
0042F707 66:8B5E 1E MOV BX,WORD PTR DS:[ESI+1E]
0042F70B 66:8985 3027400>MOV WORD PTR SS:[EBP+402730],AX//Save INT3
0042F712 66:899D 3227400>MOV WORD PTR SS:[EBP+402732],BX
0042F719 33C0 XOR EAX,EAX//Zero Interrupt Handler
0042F71B 66:8946 18 MOV WORD PTR DS:[ESI+18],AX
0042F71F C1E8 10 SHR EAX,10//BUG,完全白痴无聊指令
0042F722 66:8946 1E MOV WORD PTR DS:[ESI+1E],AX
0042F726 61 POPAD
0042F727 5C POP ESP//Restore stack
0042F728 8D85 38274000 LEA EAX,DWORD PTR SS:[EBP+402738]
0042F72E 50 PUSH EAX
0042F72F CF IRETD//Return to Ring-3
[课程]FART 脱壳王!加量不加价!FART作者讲授!