00406DA0 - FF25 48454900 jmp dword ptr ds:[<&user32.SendM>; user32.SendMessageA
00406DA6 8BC0 mov eax,eax
00406DA8 - FF25 44454900 jmp dword ptr ds:[<&user32.SetAc>; user32.SetActiveWindow
00406DAE 8BC0 mov eax,eax
00406DB0 - FF25 40454900 jmp dword ptr ds:[<&user32.SetCa>; user32.SetCapture
00406DB6 8BC0 mov eax,eax
00406DB8 - FF25 3C454900 jmp dword ptr ds:[<&user32.SetCl>; user32.SetClassLongA
00406DBE 8BC0 mov eax,eax
00406DC0 - FF25 38454900 jmp dword ptr ds:[<&user32.SetCl>; user32.SetClipboardData
00406DC6 8BC0 mov eax,eax
00406DC8 - FF25 34454900 jmp dword ptr ds:[<&user32.SetCu>; user32.SetCursor
00406DCE 8BC0 mov eax,eax
00406DD0 - FF25 30454900 jmp dword ptr ds:[<&user32.SetFo>; user32.SetFocus
00406DD6 8BC0 mov eax,eax
00406DD8 - FF25 2C454900 jmp dword ptr ds:[<&user32.SetFo>; user32.SetForegroundWindow
00406DDE 8BC0 mov eax,eax
00406DE0 - FF25 28454900 jmp dword ptr ds:[<&user32.SetMe>; user32.SetMenu
00406DE6 8BC0 mov eax,eax
00406DE8 - FF25 24454900 jmp dword ptr ds:[<&user32.SetMe>; user32.SetMenuItemInfoA
00406DEE 8BC0 mov eax,eax
00406DF0 - FF25 20454900 jmp dword ptr ds:[<&user32.SetPa>; user32.SetParent
00406DF6 8BC0 mov eax,eax
00406DF8 - FF25 1C454900 jmp dword ptr ds:[<&user32.SetPr>; user32.SetPropA
00406DFE 8BC0 mov eax,eax
00406E00 - FF25 18454900 jmp dword ptr ds:[<&user32.SetRe>; user32.SetRect
00406E06 8BC0 mov eax,eax
00406E08 - FF25 14454900 jmp dword ptr ds:[<&user32.SetSc>; user32.SetScrollInfo
00406E0E 8BC0 mov eax,eax
00406E10 - FF25 10454900 jmp dword ptr ds:[<&user32.SetSc>; user32.SetScrollPos
00406E16 8BC0 mov eax,eax
00406E18 - FF25 0C454900 jmp dword ptr ds:[<&user32.SetSc>; user32.SetScrollRange
00406E1E 8BC0 mov eax,eax
00406E20 - FF25 08454900 jmp dword ptr ds:[<&user32.SetTi>; user32.SetTimer
00406E26 8BC0 mov eax,eax
00406E28 - FF25 04454900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowLongA
00406E2E 8BC0 mov eax,eax
00406E30 - FF25 00454900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowLongW
00406E36 8BC0 mov eax,eax
00406E38 - FF25 FC444900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowPlacement
00406E3E 8BC0 mov eax,eax
00406E40 - FF25 F8444900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowPos
00406E46 8BC0 mov eax,eax
00406E48 - FF25 F4444900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowTextA
00406E4E 8BC0 mov eax,eax
00406E50 - FF25 F0444900 jmp dword ptr ds:[<&user32.SetWi>; user32.SetWindowsHookExA
00406E56 8BC0 mov eax,eax
00406E58 - FF25 EC444900 jmp dword ptr ds:[<&user32.ShowO>; user32.ShowOwnedPopups
00406E5E 8BC0 mov eax,eax
00406E60 - FF25 E8444900 jmp dword ptr ds:[<&user32.ShowS>; user32.ShowScrollBar
00406E66 8BC0 mov eax,eax
00406E68 - FF25 E4444900 jmp dword ptr ds:[<&user32.ShowW>; user32.ShowWindow
00406E6E 8BC0 mov eax,eax
00406E70 - FF25 E0444900 jmp dword ptr ds:[<&user32.Syste>; user32.SystemParametersInfoA
00406E76 8BC0 mov eax,eax
00406E78 - FF25 DC444900 jmp dword ptr ds:[<&user32.Track>; user32.TrackPopupMenu
00406E7E 8BC0 mov eax,eax
00406E80 - FF25 D8444900 jmp dword ptr ds:[<&user32.Trans>; user32.TranslateMDISysAccel
00406E86 8BC0 mov eax,eax
00406E88 - FF25 D4444900 jmp dword ptr ds:[<&user32.Trans>; user32.TranslateMessage
00406E8E 8BC0 mov eax,eax
00406E90 - FF25 D0444900 jmp dword ptr ds:[<&user32.Unhoo>; user32.UnhookWindowsHookEx
00406E96 8BC0 mov eax,eax
00406E98 - FF25 CC444900 jmp dword ptr ds:[<&user32.Unreg>; user32.UnregisterClassA
00406E9E 8BC0 mov eax,eax
00406EA0 - FF25 C8444900 jmp dword ptr ds:[<&user32.Updat>; user32.UpdateWindow
00406EA6 8BC0 mov eax,eax
00406EA8 - FF25 C4444900 jmp dword ptr ds:[<&user32.WaitM>; user32.WaitMessage
00406EAE 8BC0 mov eax,eax
00406EB0 - FF25 C0444900 jmp dword ptr ds:[<&user32.Windo>; user32.WindowFromPoint
00406EB6 8BC0 mov eax,eax
00406EB8 33C9 xor ecx,ecx
00406EBA E8 89BDFFFF call Unpack_.00402C48
00406EBF C3 retn
00406EC0 52 push edx
00406EC1 50 push eax
00406EC2 E8 51F7FFFF call <jmp.&kernel32.GlobalAlloc>
00406EC7 50 push eax
[课程]Linux pwn 探索篇!
