You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

23 lines
2.5 KiB

5 years ago
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
<title>IDA - llauncher_dump.i64 (llauncher_dump.exe) C:\Users\xerox\Desktop\amlegit.com\files\llauncher\llauncher_dump.i64</title>
</head>
<body bgcolor="#ffffff">
<span style="white-space: pre; font-family: Consolas; color: blue; background: #ffffff">
<span style="color:black">.text:00007FF7D93BAD9E </span><span style="color:gray">; ---------------------------------------------------------------------------
</span><span style="color:black">.text:00007FF7D93BAD9E </span><span style="color:navy">call export_loader_addr </span>; ExportLoad()
<span style="color:black">.text:00007FF7D93BADA0 </span><span style="color:navy">test al, al
</span><span style="color:black">.text:00007FF7D93BADA2 </span><span style="color:navy">lea get_proc_result, [rbp+</span><span style="color:green">arg_8</span><span style="color:navy">]
</span><span style="color:black">.text:00007FF7D93BADA6 </span><span style="color:navy">mov [rbp+</span><span style="color:green">arg_18</span><span style="color:navy">], get_proc_result
</span><span style="color:black">.text:00007FF7D93BADAA </span><span style="color:navy">jnz short </span><span style="color:gray">loaded_intel_driver </span>; if(ExportLoad())
<span style="color:black">.text:00007FF7D93BADAC </span><span style="color:navy">mov edx, </span><span style="color:green">20h </span><span style="color:gray">; &#039; &#039;
</span><span style="color:black">.text:00007FF7D93BADB1 </span><span style="color:navy">lea rcx, aFailedToLoadVu </span><span style="color:gray">; &quot;Failed to load vulnerable driver&quot;
</span><span style="color:black">.text:00007FF7D93BADB8 </span><span style="color:navy">call sub_7FF7D958DEFC
</span><span style="color:black">.text:00007FF7D93BADBD </span><span style="color:navy">int </span><span style="color:green">3 </span>; Trap to Debugger
<span style="color:black">.text:00007FF7D93BADBE </span><span style="color:gray">; ---------------------------------------------------------------------------
</span><span style="color:black">.text:00007FF7D93BADBE </span><span style="color:navy">mov [rbp+</span><span style="color:green">arg_8</span><span style="color:navy">], get_proc_result
</span></body></html>