进入关键call看看
:00404070 53 push ebx
:00404071 56 push esi
:00404072 57 push edi
:00404073 89C6 mov esi, eax
:00404075 89D7 mov edi, edx
:00404077 39D0 cmp eax, edx
:00404079 0F848F000000 je 0040410E
:0040407F 85F6 test esi, esi
:00404081 7468 je 004040EB
:00404083 85FF test edi, edi
:00404085 746B je 004040F2
:00404087 8B46FC mov eax, dword ptr [esi-04]
:0040408A 8B57FC mov edx, dword ptr [edi-04]
:0040408D 29D0 sub eax, edx
:0040408F 7702 ja 00404093
:00404091 01C2 add edx, eax
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:0040408F(C)
|
:00404093 52 push edx
:00404094 C1EA02 shr edx, 02
:00404097 7426 je 004040BF
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004040B5(C)
|
:00404099 8B0E mov ecx, dword ptr [esi]
:0040409B 8B1F mov ebx, dword ptr [edi]
:0040409D 39D9 cmp ecx, ebx
:0040409F 7558 jne 004040F9
:004040A1 4A dec edx
:004040A2 7415 je 004040B9
:004040A4 8B4E04 mov ecx, dword ptr [esi+04]
:004040A7 8B5F04 mov ebx, dword ptr [edi+04]
:004040AA 39D9 cmp ecx, ebx
:004040AC 754B jne 004040F9
:004040AE 83C608 add esi, 00000008
:004040B1 83C708 add edi, 00000008
:004040B4 4A dec edx
:004040B5 75E2 jne 00404099
:004040B7 EB06 jmp 004040BF
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:004040A2(C)
|
:004040B9 83C604 add esi, 00000004
:004040BC 83C704 add edi, 00000004
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:00404097(C), :004040B7(U)
|
:004040BF 5A pop edx
:004040C0 83E203 and edx, 00000003
:004040C3 7422 je 004040E7
:004040C5 8B0E mov ecx, dword ptr [esi]
:004040C7 8B1F mov ebx, dword ptr [edi]
:004040C9 38D9 cmp cl, bl
:004040CB 7541 jne 0040410E
:004040CD 4A dec edx
:004040CE 7417 je 004040E7
:004040D0 38FD cmp ch, bh
:004040D2 753A jne 0040410E
:004040D4 4A dec edx
:004040D5 7410 je 004040E7
:004040D7 81E30000FF00 and ebx, 00FF0000
:004040DD 81E10000FF00 and ecx, 00FF0000
:004040E3 39D9 cmp ecx, ebx
:004040E5 7527 jne 0040410E
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:004040C3(C), :004040CE(C), :004040D5(C)
|
:004040E7 01C0 add eax, eax
:004040E9 EB23 jmp 0040410E
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404081(C)
|
:004040EB 8B57FC mov edx, dword ptr [edi-04]
:004040EE 29D0 sub eax, edx
:004040F0 EB1C jmp 0040410E
* Referenced by a (U)nconditional or (C)onditional Jump at Address:
|:00404085(C)
|
:004040F2 8B46FC mov eax, dword ptr [esi-04]
:004040F5 29D0 sub eax, edx
:004040F7 EB15 jmp 0040410E
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:0040409F(C), :004040AC(C)
|
:004040F9 5A pop edx
:004040FA 38D9 cmp cl, bl
:004040FC 7510 jne 0040410E
:004040FE 38FD cmp ch, bh
:00404100 750C jne 0040410E
:00404102 C1E910 shr ecx, 10
:00404105 C1EB10 shr ebx, 10
:00404108 38D9 cmp cl, bl
:0040410A 7502 jne 0040410E
:0040410C 38FD cmp ch, bh
* Referenced by a (U)nconditional or (C)onditional Jump at Addresses:
|:00404079(C), :004040CB(C), :004040D2(C), :004040E5(C), :004040E9(U)
|:004040F0(U), :004040F7(U), :004040FC(C), :00404100(C), :0040410A(C)
|
:0040410E 5F pop edi
:0040410F 5E pop esi
:00404110 5B pop ebx
:00404111 C3 ret
很多吧:P,其实在动态跟踪的时候,只有几个cmp指令注意,看看再想想,是爆破还是算随你喜欢
