帮忙看一下 修改关键跳转可以进入 但点击功能按键 提示错误说是什么运行时错误代码溢出点了确定后就退出来了 我用其他的软件调试了一下提示是 强制跳转无效 笨人又只会修改跳转 哎
无奈
望高人指点一下
好像是
AL,BL 相等都等于零才能实现跳转
100051F3 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX ;
100051F9 8B07 MOV EAX,DWORD PTR DS:[EDI]
100051FB 50 PUSH EAX
100051FC FF15 08970910 CALL DWORD PTR DS:[<&MSVCRT.malloc>] ; msvcrt.malloc
10005202 83C4 04 ADD ESP,4
10005205 8986 50F70300 MOV DWORD PTR DS:[ESI+3F750],EAX
1000520B 57 PUSH EDI
1000520C 50 PUSH EAX
1000520D E8 7EB30200 CALL IMAGEO~1.10030590
10005212 8B8E 50F70300 MOV ECX,DWORD PTR DS:[ESI+3F750]
10005218 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX
1000521E 51 PUSH ECX
1000521F E8 6CB40200 CALL IMAGEO~1.10030690
10005224 8B96 50F70300 MOV EDX,DWORD PTR DS:[ESI+3F750]
1000522A 68 14020C10 PUSH IMAGEO~1.100C0214 ; \
1000522F 52 PUSH EDX
10005230 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX
10005236 E8 05B70200 CALL IMAGEO~1.10030940
1000523B 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX
10005241 8B86 50F70300 MOV EAX,DWORD PTR DS:[ESI+3F750]
10005247 68 A1000000 PUSH 0A1
1000524C 6A 08 PUSH 8
1000524E 68 08020C10 PUSH IMAGEO~1.100C0208 ; 26489788
10005253 50 PUSH EAX
10005254 E8 47B90200 CALL IMAGEO~1.10030BA0
10005259 8A8E 54F70300 MOV CL,BYTE PTR DS:[ESI+3F754]
1000525F 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX
10005265 83C8 FF OR EAX,FFFFFFFF
10005268 8D5424 0C LEA EDX,DWORD PTR SS:[ESP+C]
1000526C 8986 70ED0300 MOV DWORD PTR DS:[ESI+3ED70],EAX
10005272 8986 74ED0300 MOV DWORD PTR DS:[ESI+3ED74],EAX
10005278 8986 78ED0300 MOV DWORD PTR DS:[ESI+3ED78],EAX
1000527E 8986 7CED0300 MOV DWORD PTR DS:[ESI+3ED7C],EAX
10005284 52 PUSH EDX
10005285 8D4424 18 LEA EAX,DWORD PTR SS:[ESP+18]
10005289 884C24 24 MOV BYTE PTR SS:[ESP+24],CL
1000528D 6A 05 PUSH 5
1000528F 50 PUSH EAX
10005290 8D4C24 28 LEA ECX,DWORD PTR SS:[ESP+28]
10005294 BF 01000000 MOV EDI,1
10005299 6A 0A PUSH 0A
1000529B 51 PUSH ECX
1000529C 899E 24F70300 MOV DWORD PTR DS:[ESI+3F724],EBX
100052A2 899E A4ED0300 MOV DWORD PTR DS:[ESI+3EDA4],EBX
100052A8 899E A8ED0300 MOV DWORD PTR DS:[ESI+3EDA8],EBX
100052AE 899E 80ED0300 MOV DWORD PTR DS:[ESI+3ED80],EBX
100052B4 899E 84ED0300 MOV DWORD PTR DS:[ESI+3ED84],EBX
100052BA 899E 8CED0300 MOV DWORD PTR DS:[ESI+3ED8C],EBX
100052C0 899E 94ED0300 MOV DWORD PTR DS:[ESI+3ED94],EBX
100052C6 899E 90ED0300 MOV DWORD PTR DS:[ESI+3ED90],EBX
100052CC 899E 88ED0300 MOV DWORD PTR DS:[ESI+3ED88],EBX
100052D2 89BE 98ED0300 MOV DWORD PTR DS:[ESI+3ED98],EDI
100052D8 89BE 9CED0300 MOV DWORD PTR DS:[ESI+3ED9C],EDI
100052DE 899E 28F70300 MOV DWORD PTR DS:[ESI+3F728],EBX
100052E4 899E 2CF70300 MOV DWORD PTR DS:[ESI+3F72C],EBX
100052EA 899E 30F70300 MOV DWORD PTR DS:[ESI+3F730],EBX
100052F0 899E 34F70300 MOV DWORD PTR DS:[ESI+3F734],EBX
100052F6 899E 38F70300 MOV DWORD PTR DS:[ESI+3F738],EBX
100052FC C786 3CF70300 3>MOV DWORD PTR DS:[ESI+3F73C],37
10005306 C786 40F70300 4>MOV DWORD PTR DS:[ESI+3F740],4B
10005310 C786 44F70300 D>MOV DWORD PTR DS:[ESI+3F744],0DC
1000531A 895C24 20 MOV DWORD PTR SS:[ESP+20],EBX
1000531E C64424 30 01 MOV BYTE PTR SS:[ESP+30],1
10005323 885C24 31 MOV BYTE PTR SS:[ESP+31],BL
10005327 C64424 32 03 MOV BYTE PTR SS:[ESP+32],3
1000532C 885C24 33 MOV BYTE PTR SS:[ESP+33],BL
10005330 C64424 35 04 MOV BYTE PTR SS:[ESP+35],4
10005335 885C24 36 MOV BYTE PTR SS:[ESP+36],BL
10005339 885C24 37 MOV BYTE PTR SS:[ESP+37],BL
1000533D 885C24 38 MOV BYTE PTR SS:[ESP+38],BL
10005341 C64424 39 01 MOV BYTE PTR SS:[ESP+39],1
10005346 68 F0080C10 PUSH IMAGEO~1.100C08F0 ; 0007
1000534B 8B96 50F70300 MOV EDX,DWORD PTR DS:[ESI+3F750]
10005351 52 PUSH EDX
10005352 E8 09B90200 CALL IMAGEO~1.10030C60
10005357 8986 48F70300 MOV DWORD PTR DS:[ESI+3F748],EAX
1000535D 8A4424 14 MOV AL,BYTE PTR SS:[ESP+14]
10005361 3AC3 CMP
AL,BL
10005363 74 36 JE SHORT IMAGEO~1.1000539B关键跳转
10005365 6A 10 PUSH 10
10005367 68 E4080C10 PUSH IMAGEO~1.100C08E4 ; 系统错误:
1000536C 68 A4080C10 PUSH IMAGEO~1.100C08A4 ; 程序无法正常运行,将自动退出!
10005371 8BCE MOV ECX,ESI
10005373 E8 6CDC0200 CALL <JMP.&MFC42.#4224_?MessageBoxA@CWnd>
10005378 8B86 50F70300 MOV EAX,DWORD PTR DS:[ESI+3F750]
1000537E 50 PUSH EAX
1000537F E8 1CB40200 CALL IMAGEO~1.100307A0
10005384 8B8E 50F70300 MOV ECX,DWORD PTR DS:[ESI+3F750]
1000538A 51 PUSH ECX
1000538B FF15 0C970910 CALL DWORD PTR DS:[<&MSVCRT.free>] ; msvcrt.free
10005391 83C4 04 ADD ESP,4
10005394 57 PUSH EDI
10005395 FF15 F8960910 CALL DWORD PTR DS:[<&MSVCRT.exit>] ; msvcrt.exit
1000539B 8B4C24 34 MOV ECX,DWORD PTR SS:[ESP+34]
1000539F 899E 64F70300 MOV DWORD PTR DS:[ESI+3F764],EBX
100053A5 899E 60F70300 MOV DWORD PTR DS:[ESI+3F760],EBX
100053AB 899E 80F70300 MOV DWORD PTR DS:[ESI+3F780],EBX
100053B1 8BC6 MOV EAX,ESI
100053B3 5F POP EDI
100053B4 5E POP ESI
100053B5 5B POP EBX
100053B6 64:890D 0000000>MOV DWORD PTR FS:[0],ECX
100053BD 83C4 34 ADD ESP,34
100053C0 C3 RETN
[课程]FART 脱壳王!加量不加价!FART作者讲授!