54 lines
2.5 KiB
JSON
54 lines
2.5 KiB
JSON
{
|
|
"entry": "0x10011d7",
|
|
"calls": [
|
|
{ "adress": "0x10011e6", "name": "KERNEL32.DLL!GetModuleHandleA" },
|
|
{ "adress": "0x1001243", "name": "MSVCRT.DLL!__set_app_type" },
|
|
{ "adress": "0x1001258", "name": "MSVCRT.DLL!__p__fmode" },
|
|
{ "adress": "0x1001266", "name": "MSVCRT.DLL!__p__commode" },
|
|
{ "adress": "0x10013be", "name": "MSVCRT.DLL!_controlfp" },
|
|
{ "adress": "0x1001358", "name": "MSVCRT.DLL!_initterm" },
|
|
{ "adress": "0x10012cb", "name": "MSVCRT.DLL!__getmainargs" },
|
|
{ "adress": "0x10010f2", "name": "WS2_32.DLL!WSAStartup" },
|
|
{ "adress": "0x1001160", "name": "WS2_32.DLL!gethostname" },
|
|
{ "adress": "0x10011ba", "name": "USER32.DLL!CharToOemBuffA" },
|
|
{ "adress": "0x10011c7", "name": "MSVCRT.DLL!puts" },
|
|
{ "adress": "0x10011d0", "name": "MSVCRT.DLL!exit" }
|
|
],
|
|
"entry_reg_values": {
|
|
"EAX": "0x000cff0c ",
|
|
"EBX": "0x7efde000 ",
|
|
"ECX": "0x00000000 ",
|
|
"EDX": "0x010058c0",
|
|
"ESI": "0x00000000 ",
|
|
"EDI": "0x00000000 ",
|
|
"EBP": "0x000cff94 ",
|
|
"ESP": "0x000cff8c",
|
|
"eflags": "0x00000203"
|
|
},
|
|
"prevwave_getprocaddr": [
|
|
{ "function": "FormatMessageA", "func_addr": "0x75985fbd" },
|
|
{ "function": "LocalFree", "func_addr": "0x75962d3c" },
|
|
{ "function": "GetModuleHandleA", "func_addr": "0x75961245" },
|
|
{ "function": "GetLastError", "func_addr": "0x759611c0" },
|
|
{ "function": "__p__commode", "func_addr": "0x752c27c3" },
|
|
{ "function": "__p__fmode", "func_addr": "0x752c27ce" },
|
|
{ "function": "__set_app_type", "func_addr": "0x752c2804" },
|
|
{ "function": "_controlfp", "func_addr": "0x752be1e1" },
|
|
{ "function": "_cexit", "func_addr": "0x752c37d4" },
|
|
{ "function": "_adjust_fdiv", "func_addr": "0x753532ec" },
|
|
{ "function": "_except_handler3", "func_addr": "0x752dd770" },
|
|
{ "function": "_XcptFilter", "func_addr": "0x752ddc75" },
|
|
{ "function": "_exit", "func_addr": "0x7531b2c0" },
|
|
{ "function": "_c_exit", "func_addr": "0x7531b2db" },
|
|
{ "function": "__setusermatherr", "func_addr": "0x753477ad" },
|
|
{ "function": "_initterm", "func_addr": "0x752bc151" },
|
|
{ "function": "__getmainargs", "func_addr": "0x752c2bc0" },
|
|
{ "function": "__initenv", "func_addr": "0x753504e8" },
|
|
{ "function": "_write", "func_addr": "0x752c4078" },
|
|
{ "function": "strchr", "func_addr": "0x752bdbeb" },
|
|
{ "function": "puts", "func_addr": "0x75328d04" },
|
|
{ "function": "exit", "func_addr": "0x752c36aa" },
|
|
{ "function": "s_perror", "func_addr": "0x6c8a1be4" },
|
|
{ "function": "CharToOemBuffA", "func_addr": "0x76aeb1b0" }
|
|
]
|
|
}
|