mirror of
https://github.com/bitdefender/bddisasm.git
synced 2024-11-25 17:08:35 +00:00
Merge pull request #107 from ScimitarEnjoyer/bugfix/unsupported-inst-edge-case
bdshemu: Fix edge case with unsupported instrs
This commit is contained in:
commit
7d005faa03
@ -1793,13 +1793,6 @@ ShemuX86Emulate(
|
||||
nd_memzero(&dst, sizeof(dst));
|
||||
nd_memzero(&src, sizeof(src));
|
||||
|
||||
// The stop flag has been set, this means we've reached a valid instruction, but that instruction cannot be
|
||||
// emulated (for example, SYSCALL, INT, system instructions, etc).
|
||||
if (stop)
|
||||
{
|
||||
return SHEMU_ABORT_CANT_EMULATE;
|
||||
}
|
||||
|
||||
// If we already have a detection and we wish to stop on detections, do so now.
|
||||
if ((0 != Context->Flags) && (0 != (Context->Options & SHEMU_OPT_STOP_ON_EXPLOIT)))
|
||||
{
|
||||
@ -1942,7 +1935,7 @@ ShemuX86Emulate(
|
||||
}
|
||||
}
|
||||
|
||||
continue;
|
||||
goto post_emulate;
|
||||
}
|
||||
|
||||
// This flag can only be set for APX instructions.
|
||||
@ -3557,6 +3550,14 @@ check_far_branch:
|
||||
|
||||
break;
|
||||
}
|
||||
|
||||
post_emulate:
|
||||
// The stop flag has been set, this means we've reached a valid instruction, but that instruction cannot be
|
||||
// emulated (for example, SYSCALL, INT, system instructions, etc).
|
||||
if (stop)
|
||||
{
|
||||
return SHEMU_ABORT_CANT_EMULATE;
|
||||
}
|
||||
}
|
||||
|
||||
// Minimum percent of the instructions were NOPs => consider we have a NOP sled. Note that we get here only if
|
||||
|
@ -8,5 +8,5 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 9A000002003300 CALLF 0x0033:0x00020000
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -62,6 +62,6 @@ IP: 0x000000000020000f 89851C000000 MOV dword ptr [ebp
|
||||
RIP = 0x0000000000200015 RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200015 FF9D1C000000 CALLF fword ptr [ebp+0x1c]
|
||||
Memory LOAD, address 0x000000000020001c, size 6, value 1B0020003300
|
||||
Emulation terminated with status 0x0000000a, flags: 0x82, 0 NOPs, 0 NULLs, 7 total instructions, 6 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x82, 0 NOPs, 0 NULLs, 6 total instructions, 6 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -54,5 +54,5 @@ IP: 0x0000000000200008 83042405 ADD dword ptr [esp
|
||||
RIP = 0x000000000020000c RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000c CF IRETD
|
||||
Memory LOAD, address 0x00000000001fdff4, size 12, value 0D0020003300000002020000
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -8,5 +8,5 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 EA000002003300 JMPF 0x0033:0x00020000
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -62,6 +62,6 @@ IP: 0x000000000020000f 89851C000000 MOV dword ptr [ebp
|
||||
RIP = 0x0000000000200015 RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200015 FFAD1C000000 JMPF fword ptr [ebp+0x1c]
|
||||
Memory LOAD, address 0x000000000020001c, size 6, value 1B0020003300
|
||||
Emulation terminated with status 0x0000000a, flags: 0x82, 0 NOPs, 0 NULLs, 7 total instructions, 6 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x82, 0 NOPs, 0 NULLs, 6 total instructions, 6 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -30,5 +30,5 @@ IP: 0x0000000000200013 61 POPAD
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200014 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200014 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -72,4 +72,4 @@ IP: 0x0000000000200009 90 NOP
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000a RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000a CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 8 total instructions, 7 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 7 total instructions, 7 unique instructions
|
||||
|
@ -68,4 +68,4 @@ IP: 0x000000000020000d 89C8 MOV eax, ecx
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000f RFLAGS = 0x0000000000000247 CF:1 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000f CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 8 total instructions, 7 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 7 total instructions, 7 unique instructions
|
||||
|
@ -43,5 +43,5 @@ IP: 0x0000000000200007 83042405 ADD dword ptr [esp
|
||||
RIP = 0x000000000020000b RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000b CB RETF
|
||||
Memory LOAD, address 0x00000000001fdff8, size 8, value 0C00200033000000
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x80, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
SHEMU_FLAG_HEAVENS_GATE
|
||||
|
@ -28,4 +28,4 @@ IP: 0x0000000000200001 94 XCHG esp, eax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200002 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200002 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -80,5 +80,5 @@ IP: 0x0000000000200013 94 XCHG esp, eax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200014 RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200014 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 1 NOPs, 0 NULLs, 9 total instructions, 8 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 1 NOPs, 0 NULLs, 8 total instructions, 8 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -70,6 +70,6 @@ IP: 0x0000000000200012 94 XCHG esp, eax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200013 RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200013 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x102, 1 NOPs, 0 NULLs, 8 total instructions, 7 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x102, 1 NOPs, 0 NULLs, 7 total instructions, 7 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
SHEMU_FLAG_STACK_PIVOT
|
||||
|
@ -8,5 +8,5 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 0F34 SYSENTER
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
SHEMU_FLAG_SYSCALL
|
||||
|
@ -158,4 +158,4 @@ IP: 0x0000000000200015 14FE ADC al, 0xfe
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200017 RFLAGS = 0x0000000000000247 CF:1 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200017 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 17 total instructions, 16 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 16 total instructions, 16 unique instructions
|
||||
|
@ -8,4 +8,4 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
|
@ -548,4 +548,4 @@ IP: 0x00000000002000b6 480FBDC0 BSR rax, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002000ba RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002000ba CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 56 total instructions, 55 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 55 total instructions, 55 unique instructions
|
||||
|
@ -59,5 +59,5 @@ IP: 0x0000000000200011 C606CC MOV byte ptr [rsi]
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200014 RFLAGS = 0x0000000000000247 CF:1 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200014 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x4, 0 NOPs, 0 NULLs, 7 total instructions, 6 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x4, 0 NOPs, 0 NULLs, 6 total instructions, 6 unique instructions
|
||||
SHEMU_FLAG_WRITE_SELF
|
||||
|
@ -49,5 +49,5 @@ IP: 0x000000000020000b C606CC MOV byte ptr [rsi]
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000e RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000e CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x4, 0 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x4, 0 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
SHEMU_FLAG_WRITE_SELF
|
||||
|
@ -50,5 +50,5 @@ IP: 0x0000000000200007 90 NOP
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200008 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200008 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -120,4 +120,4 @@ IP: 0x000000000020000f 90 NOP
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200010 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200010 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 13 total instructions, 12 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 12 total instructions, 12 unique instructions
|
||||
|
@ -98,4 +98,4 @@ IP: 0x0000000000200026 480FC8 BSWAP rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200029 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200029 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 11 total instructions, 10 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 10 total instructions, 10 unique instructions
|
||||
|
@ -48,4 +48,4 @@ IP: 0x000000000020000e 0F45CB CMOVNZ ecx, ebx
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200011 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200011 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
|
@ -158,4 +158,4 @@ IP: 0x0000000000200036 0FB1CA CMPXCHG edx, ecx
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200039 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200039 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 17 total instructions, 16 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 16 total instructions, 16 unique instructions
|
||||
|
@ -28,4 +28,4 @@ IP: 0x000000000020000a 6631C0 XOR ax, ax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000d RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000d 66F7F0 DIV ax
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -28,4 +28,4 @@ IP: 0x0000000000200005 F7D7 NOT edi
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200007 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200007 F7FF IDIV edi
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -118,4 +118,4 @@ IP: 0x0000000000200021 69C200000001 IMUL eax, edx, 0x01
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200027 RFLAGS = 0x0000000000000a03 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:1
|
||||
IP: 0x0000000000200027 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 13 total instructions, 12 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 12 total instructions, 12 unique instructions
|
||||
|
@ -168,4 +168,4 @@ IP: 0x000000000020004f 48F7EA IMUL rdx
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200052 RFLAGS = 0x0000000000000a03 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:1
|
||||
IP: 0x0000000000200052 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 18 total instructions, 17 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 17 total instructions, 17 unique instructions
|
||||
|
@ -50,5 +50,5 @@ IP: 0x000000000020000a 488B0424 MOV rax, qword ptr
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000e RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000e CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -40,5 +40,5 @@ IP: 0x0000000000200007 48032C24 ADD rbp, qword ptr
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000b RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000b CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -30,4 +30,4 @@ IP: 0x0000000000200006 C3 RETN
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200005 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200005 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -30,4 +30,4 @@ IP: 0x0000000000200005 48833C2400 CMP qword ptr [rsp
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000a RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000a CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -41,4 +41,4 @@ IP: 0x0000000000200007 48010424 ADD qword ptr [rsp
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000b RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000b CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
|
@ -63,4 +63,4 @@ IP: 0x000000000020000f 488B0404 MOV rax, qword ptr
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200013 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200013 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 7 total instructions, 6 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 6 total instructions, 6 unique instructions
|
||||
|
@ -30,4 +30,4 @@ IP: 0x0000000000200006 FF2424 JMP qword ptr [rsp
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200005 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200005 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -40,5 +40,5 @@ IP: 0x0000000000200008 48AD LODSQ
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000a RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000a CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x2, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
SHEMU_FLAG_LOAD_RIP
|
||||
|
@ -28,4 +28,4 @@ IP: 0x0000000000200002 8EC0 MOV es, eax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200004 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200004 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -186,4 +186,4 @@ IP: 0x000000000020004f 0FB64608 MOVZX eax, byte ptr
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200053 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200053 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 19 total instructions, 18 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 18 total instructions, 18 unique instructions
|
||||
|
@ -368,4 +368,4 @@ IP: 0x00000000002000af F3480FB8C8 POPCNT rcx, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002000b4 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002000b4 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 38 total instructions, 37 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 37 total instructions, 37 unique instructions
|
||||
|
@ -18,5 +18,5 @@ IP: 0x0000000000200000 90 NOP
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200001 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200001 0F010C24 SIDT tbyte ptr [rsp]
|
||||
Emulation terminated with status 0x0000000a, flags: 0x1000000000, 1 NOPs, 0 NULLs, 3 total instructions, 2 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x1000000000, 1 NOPs, 0 NULLs, 2 total instructions, 2 unique instructions
|
||||
SHEMU_FLAG_SIDT
|
||||
|
@ -1208,4 +1208,4 @@ IP: 0x00000000002000c9 C0D01E RCL al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002000cc RFLAGS = 0x0000000000000203 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002000cc CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 122 total instructions, 121 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 121 total instructions, 121 unique instructions
|
||||
|
@ -1208,4 +1208,4 @@ IP: 0x00000000002000c9 C0D81E RCR al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002000cc RFLAGS = 0x0000000000000203 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002000cc CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 122 total instructions, 121 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 121 total instructions, 121 unique instructions
|
||||
|
@ -68,4 +68,4 @@ IP: 0x0000000000200009 0F31 RDTSC
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000b RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000b CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 8 total instructions, 7 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 7 total instructions, 7 unique instructions
|
||||
|
@ -608,4 +608,4 @@ IP: 0x0000000000200063 C0C01E ROL al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200066 RFLAGS = 0x0000000000000203 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200066 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 62 total instructions, 61 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 61 total instructions, 61 unique instructions
|
||||
|
@ -608,4 +608,4 @@ IP: 0x0000000000200063 C0C81E ROR al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200066 RFLAGS = 0x0000000000000203 CF:1 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200066 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 62 total instructions, 61 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 61 total instructions, 61 unique instructions
|
||||
|
@ -328,4 +328,4 @@ IP: 0x0000000000200033 C0F81E SAR al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200036 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200036 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 34 total instructions, 33 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 33 total instructions, 33 unique instructions
|
||||
|
@ -288,4 +288,4 @@ IP: 0x0000000000200028 1C20 SBB al, 0x20
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020002a RFLAGS = 0x0000000000000287 CF:1 PF:1 AF:0 ZF:0 SF:1 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020002a CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 30 total instructions, 29 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 29 total instructions, 29 unique instructions
|
||||
|
@ -608,4 +608,4 @@ IP: 0x0000000000200063 C0E01E SHL al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200066 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200066 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 62 total instructions, 61 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 61 total instructions, 61 unique instructions
|
||||
|
@ -128,4 +128,4 @@ IP: 0x000000000020004a 480FA4D841 SHLD rax, rbx, 0x41
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020004f RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020004f CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 14 total instructions, 13 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 13 total instructions, 13 unique instructions
|
||||
|
@ -38,4 +38,4 @@ IP: 0x000000000020000a 660FA4D81F SHLD ax, bx, 0x1f
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000f RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000f CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
|
@ -608,4 +608,4 @@ IP: 0x0000000000200063 C0E81E SHR al, 0x1e
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200066 RFLAGS = 0x0000000000000a46 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:1
|
||||
IP: 0x0000000000200066 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 62 total instructions, 61 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 61 total instructions, 61 unique instructions
|
||||
|
@ -128,4 +128,4 @@ IP: 0x000000000020004a 480FACD841 SHRD rax, rbx, 0x41
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020004f RFLAGS = 0x0000000000000287 CF:1 PF:1 AF:0 ZF:0 SF:1 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020004f CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 14 total instructions, 13 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 13 total instructions, 13 unique instructions
|
||||
|
@ -38,4 +38,4 @@ IP: 0x000000000020000a 660FACD81F SHRD ax, bx, 0x1f
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000f RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000f CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
|
@ -18,4 +18,4 @@ IP: 0x0000000000200000 90 NOP
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200001 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200001 0F010C24 SIDT tbyte ptr [rsp]
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 3 total instructions, 2 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 2 total instructions, 2 unique instructions
|
||||
|
@ -28,4 +28,4 @@ IP: 0x0000000000200001 4894 XCHG rsp, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200003 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200003 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 4 total instructions, 3 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 3 total instructions, 3 unique instructions
|
||||
|
@ -48,4 +48,4 @@ IP: 0x000000000020000b 4894 XCHG rsp, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000d RFLAGS = 0x0000000000000206 CF:0 PF:1 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000d CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 6 total instructions, 5 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 5 total instructions, 5 unique instructions
|
||||
|
@ -38,5 +38,5 @@ IP: 0x0000000000200008 4894 XCHG rsp, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x000000000020000a RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x000000000020000a CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x100, 1 NOPs, 0 NULLs, 5 total instructions, 4 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x100, 1 NOPs, 0 NULLs, 4 total instructions, 4 unique instructions
|
||||
SHEMU_FLAG_STACK_PIVOT
|
||||
|
@ -8,5 +8,5 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 0F05 SYSCALL
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
SHEMU_FLAG_SYSCALL
|
||||
|
@ -8,5 +8,5 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 CD80 INT 0x80
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x10, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
SHEMU_FLAG_SYSCALL
|
||||
|
@ -8,4 +8,4 @@
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200000 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200000 CD33 INT 0x33
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 2 total instructions, 1 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 1 total instructions, 1 unique instructions
|
||||
|
@ -968,4 +968,4 @@ IP: 0x00000000002001af F3480FBCC8 TZCNT rcx, rax
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002001b4 RFLAGS = 0x0000000000000242 CF:0 PF:0 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002001b4 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 98 total instructions, 97 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 1 NOPs, 0 NULLs, 97 total instructions, 97 unique instructions
|
||||
|
@ -89,4 +89,4 @@ IP: 0x000000000020002d D5668A34FA MOV r30b, byte ptr
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x00000000000000bd R31 = 0x0000000000000001
|
||||
RIP = 0x0000000000200032 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200032 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 10 total instructions, 9 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 9 total instructions, 9 unique instructions
|
||||
|
@ -62,4 +62,4 @@ IP: 0x0000000000200013 D5195F POPP r31
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0xbdbdbdbdbdbdbdbd
|
||||
RIP = 0x0000000000200016 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200016 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 7 total instructions, 6 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 6 total instructions, 6 unique instructions
|
||||
|
@ -268,4 +268,4 @@ IP: 0x00000000002000ba 626C7D1C01DE ADDNF ax, r22w, r27w
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x00000000002000c0 RFLAGS = 0x0000000000000246 CF:0 PF:1 AF:0 ZF:1 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x00000000002000c0 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 28 total instructions, 27 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 27 total instructions, 27 unique instructions
|
||||
|
@ -83,4 +83,4 @@ IP: 0x0000000000200028 5E POP rsi
|
||||
R28 = 0x0000000000000000 R29 = 0x0000000000000000 R30 = 0x0000000000000000 R31 = 0x0000000000000000
|
||||
RIP = 0x0000000000200029 RFLAGS = 0x0000000000000202 CF:0 PF:0 AF:0 ZF:0 SF:0 TF:0 IF:1 DF:0 OF:0
|
||||
IP: 0x0000000000200029 CC INT3
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 9 total instructions, 8 unique instructions
|
||||
Emulation terminated with status 0x0000000a, flags: 0x0, 0 NOPs, 0 NULLs, 8 total instructions, 8 unique instructions
|
||||
|
Loading…
Reference in New Issue
Block a user