77D507EA > 8BFF mov edi, edi
77D507EC 55 push ebp
77D507ED 8BEC mov ebp, esp
77D507EF 833D BC14D777 0>cmp dword ptr [77D714BC], 0
77D507F6 74 24 je short 77D5081C
77D507F8 64:A1 18000000 mov eax, dword ptr fs:[18]
77D507FE 6A 00 push 0
77D50800 FF70 24 push dword ptr [eax+24]
77D50803 68 241BD777 push 77D71B24
77D50808 FF15 C412D177 call dword ptr [<&KERNEL32.InterlockedCompa>; kernel32.InterlockedCompareExchange
77D5080E 85C0 test eax, eax
77D50810 75 0A jnz short 77D5081C
77D50812 C705 201BD777 0>mov dword ptr [77D71B20], 1
77D5081C 6A 00 push 0
77D5081E FF75 14 push dword ptr [ebp+14]
77D50821 FF75 10 push dword ptr [ebp+10]
77D50824 FF75 0C push dword ptr [ebp+C]
77D50827 FF75 08 push dword ptr [ebp+8]
77D5082A E8 2D000000 call MessageBoxExA
77D5082F 5D pop ebp
断在77D5082A E8 2D000000 call MessageBoxExA则不提示注册错误
跟进去77D50808 FF15 C412D177 call dword ptr [<&KERNEL32.InterlockedCompa>; kernel32.InterlockedCompareExchange
代码如下
7C809842 > 8B4C24 04 mov ecx, dword ptr [esp+4]
7C809846 8B5424 08 mov edx, dword ptr [esp+8]
7C80984A 8B4424 0C mov eax, dword ptr [esp+C]
7C80984E F0:0FB111 lock cmpxchg dword ptr [ecx], edx
7C809852 C2 0C00 retn 0C
7C809855 90 nop
7C809856 > 8B4C24 04 mov ecx, dword ptr [esp+4]
7C80985A 8B4424 08 mov eax, dword ptr [esp+8]
7C80985E F0:0FC101 lock xadd dword ptr [ecx], eax
7C809862 C2 0800 retn 8
7C809865 90 nop
7C809866 > 8B4424 04 mov eax, dword ptr [esp+4]
7C80986A 0BC0 or eax, eax
7C80986C 78 38 js short 7C8098A6
7C80986E 8B5424 08 mov edx, dword ptr [esp+8]
7C809872 0BD2 or edx, edx
7C809874 0F88 B2000000 js 7C80992C
7C80987A F7E2 mul edx
7C80987C 8B4C24 0C mov ecx, dword ptr [esp+C]
7C809880 0BC9 or ecx, ecx
7C809882 0F88 E6000000 js 7C80996E
7C809888 D1F9 sar ecx, 1
7C80988A 03C1 add eax, ecx
7C80988C 83D2 00 adc edx, 0
7C80988F 3B5424 0C cmp edx, dword ptr [esp+C]
7C809893 73 0B jnb short 7C8098A0
7C809895 F77424 0C div dword ptr [esp+C]
7C809899 0BC0 or eax, eax
7C80989B 78 03 js short 7C8098A0
7C80989D C2 0C00 retn 0C
7C8098A0 33C0 xor eax, eax
7C8098A2 48 dec eax
7C8098A3 C2 0C00 retn 0C
7C8098A6 F7D8 neg eax
7C8098A8 8B5424 08 mov edx, dword ptr [esp+8]
7C8098AC 0BD2 or edx, edx
7C8098AE 78 22 js short 7C8098D2
7C8098B0 F7E2 mul edx
7C8098B2 8B4C24 0C mov ecx, dword ptr [esp+C]
7C8098B6 0BC9 or ecx, ecx
7C8098B8 78 42 js short 7C8098FC
7C8098BA D1F9 sar ecx, 1
7C8098BC 03C1 add eax, ecx
7C8098BE 83D2 00 adc edx, 0
7C8098C1 3B5424 0C cmp edx, dword ptr [esp+C]
7C8098C5 73 2F jnb short 7C8098F6
7C8098C7 F77424 0C div dword ptr [esp+C]
7C8098CB F7D8 neg eax
7C8098CD 7F 27 jg short 7C8098F6
7C8098CF C2 0C00 retn 0C
7C8098D2 F7DA neg edx
7C8098D4 F7E2 mul edx
7C8098D6 8B4C24 0C mov ecx, dword ptr [esp+C]
7C8098DA 0BC9 or ecx, ecx
7C8098DC 78 36 js short 7C809914
7C8098DE D1F9 sar ecx, 1
7C8098E0 03C1 add eax, ecx
7C8098E2 83D2 00 adc edx, 0
7C8098E5 3B5424 0C cmp edx, dword ptr [esp+C]
7C8098E9 73 0B jnb short 7C8098F6
7C8098EB F77424 0C div dword ptr [esp+C]
7C8098EF 0BC0 or eax, eax
7C8098F1 78 03 js short 7C8098F6
7C8098F3 C2 0C00 retn 0C
7C8098F6 33C0 xor eax, eax
7C8098F8 48 dec eax
7C8098F9 C2 0C00 retn 0C
7C8098FC F7D9 neg ecx
7C8098FE 51 push ecx
7C8098FF D1F9 sar ecx, 1
7C809901 03C1 add eax, ecx
7C809903 83D2 00 adc edx, 0
7C809906 59 pop ecx
7C809907 3BD1 cmp edx, ecx
7C809909 ^ 73 EB jnb short 7C8098F6
7C80990B F7F1 div ecx
7C80990D 0BC0 or eax, eax
7C80990F ^ 78 E5 js short 7C8098F6
7C809911 C2 0C00 retn 0C
7C809914 F7D9 neg ecx
7C809916 51 push ecx
7C809917 D1F9 sar ecx, 1
7C809919 03C1 add eax, ecx
7C80991B 83D2 00 adc edx, 0
7C80991E 59 pop ecx
7C80991F 3BD1 cmp edx, ecx
7C809921 ^ 73 D3 jnb short 7C8098F6
7C809923 F7F1 div ecx
7C809925 F7D8 neg eax
7C809927 ^ 7F CD jg short 7C8098F6
7C809929 C2 0C00 retn 0C
7C80992C F7DA neg edx
7C80992E F7E2 mul edx
7C809930 8B4C24 0C mov ecx, dword ptr [esp+C]
7C809934 0BC9 or ecx, ecx
7C809936 78 1E js short 7C809956
7C809938 D1F9 sar ecx, 1
7C80993A 03C1 add eax, ecx
7C80993C 83D2 00 adc edx, 0
7C80993F 3B5424 0C cmp edx, dword ptr [esp+C]
7C809943 73 0B jnb short 7C809950
7C809945 F77424 0C div dword ptr [esp+C]
7C809949 F7D8 neg eax
7C80994B 7F 03 jg short 7C809950
7C80994D C2 0C00 retn 0C
7C809950 33C0 xor eax, eax
7C809952 48 dec eax
7C809953 C2 0C00 retn 0C
7C809956 F7D9 neg ecx
7C809958 51 push ecx
7C809959 D1F9 sar ecx, 1
7C80995B 03C1 add eax, ecx
7C80995D 83D2 00 adc edx, 0
7C809960 59 pop ecx
7C809961 3BD1 cmp edx, ecx
7C809963 ^ 73 EB jnb short 7C809950
7C809965 F7F1 div ecx
7C809967 0BC0 or eax, eax
7C809969 ^ 78 8B js short 7C8098F6
7C80996B C2 0C00 retn 0C
7C80996E F7D9 neg ecx
7C809970 51 push ecx
7C809971 D1F9 sar ecx, 1
7C809973 03C1 add eax, ecx
7C809975 83D2 00 adc edx, 0
7C809978 59 pop ecx
7C809979 3BD1 cmp edx, ecx
7C80997B ^ 73 D3 jnb short 7C809950
7C80997D F7F1 div ecx
7C80997F F7D8 neg eax
7C809981 ^ 7F CD jg short 7C809950
7C809983 C2 0C00 retn 0C
7C809986 90 nop
7C809987 90 nop
7C809988 90 nop
7C809989 90 nop
7C80998A 90 nop
7C80998B > 6A FE push -2
7C80998D 58 pop eax
7C80998E C3 retn
7C80998F 90 nop
7C809990 90 nop
7C809991 90 nop
7C809992 90 nop
7C809993 90 nop
7C809994 8BFF mov edi, edi
7C809996 55 push ebp
7C809997 8BEC mov ebp, esp
7C809999 8B45 08 mov eax, dword ptr [ebp+8]
7C80999C 85C0 test eax, eax
7C80999E 0F84 801C0000 je 7C80B624
7C8099A4 A8 01 test al, 1
7C8099A6 0F85 F8060000 jnz 7C80A0A4
7C8099AC 5D pop ebp
7C8099AD C2 0800 retn 8
7C8099B0 90 nop
7C8099B1 90 nop
7C8099B2 90 nop
7C8099B3 90 nop
7C8099B4 90 nop
7C8099B5 > A1 8053887C mov eax, dword ptr [7C885380]
7C8099BA C3 retn
7C8099BB 90 nop
7C8099BC 90 nop
7C8099BD 90 nop
7C8099BE 90 nop
7C8099BF 90 nop
7C8099C0 > 64:A1 18000000 mov eax, dword ptr fs:[18]
7C8099C6 8B40 20 mov eax, dword ptr [eax+20]
7C8099C9 C3 retn
请高手提示一下如何爆破
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
