📄 a-3-30.htm
字号:
001B:00B8550B PUSH EBX<br>001B:00B8550C CALL KERNEL32!lstrlen<br>:u<br>001B:00B85511 CMP EAX,1A <-------一路F10到此,看到1A了吗?<br> 现在明白为什么要输入26个数字了吧<br>001B:00B85514 JZ 00B85520<br>001B:00B85516 MOV EAX,FFFFFFFE <----如果长度不对,将输入返回值<br>001B:00B8551B JMP 00B857F4 并直接跳到返回处了.记住此处的这个<br>跳转地址.<br>001B:00B85520 LEA EDX,[EBP-58]<br>001B:00B85523 PUSH EDX<br>001B:00B85524 PUSH 40FE0E30<br>001B:00B85529 PUSH 00<br>:u<br>001B:00B8552B PUSH 406CA000<br>001B:00B85530 PUSH 00<br>001B:00B85532 PUSH EBX<br>001B:00B85533 PUSH 01<br>001B:00B85535 CALL 00B88BFA<br>001B:00B8553A ADD ESP,1C<br>001B:00B8553D LEA ECX,[EBP-0168]<br>001B:00B85543 PUSH ECX<br>:u<br>001B:00B85544 LEA EAX,[EBP-58]<br>001B:00B85547 PUSH EAX<br>001B:00B85548 CALL 00B89085<br>001B:00B8554D ADD ESP,08<br>001B:00B85550 MOV DL,[EBP-0168]<br>001B:00B85556 MOV [EBP-01],DL<br>001B:00B85559 PUSH 0C<br>001B:00B8555B LEA ECX,[EBP-0168]<br>:u<br>001B:00B85561 PUSH ECX<br>001B:00B85562 CALL 00B8938B<br>001B:00B85567 ADD ESP,08<br>001B:00B8556A TEST AX,AX <---注意,开始做比较了<br>001B:00B8556D JZ 00B85579 <---看此时跳转否,如果不能跳转,执<br>行 r fl=z ,改掉z标志位<br>001B:00B8556F MOV EAX,FFFFFFFE<br>001B:00B85574 JMP 00B857F4 <---熟悉吧.<br>001B:00B85579 MOV DL,[EBP-01]<br>:u<br>001B:00B8557C AND EDX,7F<br>001B:00B8557F MOV CL,[00B9A6D0]<br>001B:00B85585 AND ECX,7F<br>001B:00B85588 CMP EDX,ECX <---注意<br>001B:00B8558A JZ 00B85594 <---看此时跳转否,如果不能跳转,执<br>行 r fl=z ,改掉z标志位<br>001B:00B8558C OR EAX,-01<br>001B:00B8558F JMP 00B857F4 <---熟悉吧<br>001B:00B85594 TEST BYTE PTR [EBP-01],80<br>:u<br>001B:00B85598 JZ 00B8571C<br>001B:00B8559E CMP DWORD PTR [00B9A6D4],00<br>001B:00B855A5 JGE 00B855B0<br>001B:00B855A7 CMP BYTE PTR [EBP-0167],00<br>001B:00B855AE JL 00B855C2<br>001B:00B855B0 CMP DWORD PTR [00B9A6D4],00<br>001B:00B855B7 JL 00B855D1<br>001B:00B855B9 CMP BYTE PTR [EBP-0167],00<br>:u<br>001B:00B855C0 JLE 00B855D1<br>001B:00B855C2 MOVSX ESI,BYTE PTR [EBP-0167]<br>001B:00B855C9 ADD ESI,[00B9A6D4]<br>001B:00B855CF JMP 00B855D7<br>001B:00B855D1 MOV ESI,[00B9A6D4]<br>001B:00B855D7 CMP DWORD PTR [00B95998],20<br>001B:00B855DE JGE 00B8563C<br>001B:00B855E0 CMP DWORD PTR [00B95998],00<br>:u<br>001B:00B855E7 JLE 00B8563C<br>001B:00B855E9 XOR EDI,EDI<br>001B:00B855EB PUSH DWORD PTR [00B95998]<br>001B:00B855F1 CALL 00B883CB<br>001B:00B855F6 POP ECX<br>001B:00B855F7 MOV EDX,EAX<br>001B:00B855F9 NOT EDI<br>001B:00B855FB MOV ECX,00000020<br>:u<br>001B:00B85600 SUB ECX,[00B95998]<br>001B:00B85606 SHL EDI,CL<br>001B:00B85608 NOT EDI<br>001B:00B8560A MOV EAX,[EBP-0164]<br>001B:00B85610 AND EAX,EDI<br>001B:00B85612 MOV [EBP-1C],EAX<br>001B:00B85615 MOV EAX,[EBP-1C]<br>001B:00B85618 ADD EAX,EDX<br>:u<br>001B:00B8561A CMP EDI,EAX<br>001B:00B8561C JAE 00B85620<br>001B:00B8561E MOV EAX,EDI<br>001B:00B85620 MOV ECX,[00B9A4D8]<br>001B:00B85626 SUB ECX,EDX<br>001B:00B85628 MOV EDX,ECX<br>001B:00B8562A MOV ECX,[EBP-0164]<br>001B:00B85630 SUB ECX,[EBP-1C]<br>:u<br>001B:00B85633 OR EDX,ECX<br>001B:00B85635 ADD EAX,EDX<br>001B:00B85637 MOV [EBP-14],EAX<br>001B:00B8563A JMP 00B85645<br>001B:00B8563C MOV EDX,[00B9A4D8]<br>001B:00B85642 MOV [EBP-14],EDX<br>001B:00B85645 LEA EAX,[EBP-24]<br>001B:00B85648 PUSH EAX<br>:u<br>001B:00B85649 LEA EDX,[EBP-20]<br>001B:00B8564C PUSH EDX<br>001B:00B8564D LEA ECX,[EBP-0160]<br>001B:00B85653 PUSH ECX<br>001B:00B85654 CALL 00B85E45<br>001B:00B85659 ADD ESP,0C<br>001B:00B8565C CMP DWORD PTR [EBP-24],00<br>001B:00B85660 JZ 00B85686<br>:u<br>001B:00B85662 MOV EAX,[00B9A4C8]<br>001B:00B85667 CMP EAX,[EBP-20]<br>001B:00B8566A JNZ 00B85686<br>001B:00B8566C MOV DX,[00B9A4CC]<br>001B:00B85673 SUB DX,[00B9A4D0]<br>001B:00B8567A ADD DX,[EBP-24]<br>001B:00B8567E MOV [EBP-16],DX<br>001B:00B85682 XOR EDI,EDI<br>:u<br>001B:00B85684 JMP 00B85697<br>001B:00B85686 MOV AX,[00B9A4CC]<br>001B:00B8568C MOV [EBP-16],AX<br>001B:00B85690 MOV DI,[00B9A4D0]<br>001B:00B85697 LEA EAX,[EBP-019C]<br>001B:00B8569D PUSH EAX<br>001B:00B8569E CALL 00B84A6F<br>001B:00B856A3 POP ECX<br>:u<br>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -