这种软件的开发平台,实在是太烂了,重复的废代码特别多。
举例说:
004010ED 68F0D8AF00 push SSZ00AFD8F0
004010F2 E829B75700 call SUB_L0097C820
004010F7 894508 mov [ebp+08h],eax
004010FA 83C404 add esp,00000004h
004010FD 8BC4 mov eax,esp
004010FF 8965E8 mov [ebp-18h],esp
00401102 6A00 push 00000000h
00401104 8D5508 lea edx,[ebp+08h]
00401107 83CB02 or ebx,00000002h
0040110A 52 push edx
0040110B 8BCF mov ecx,edi
0040110D C645FC05 mov byte ptr [ebp-04h],05h
00401111 895DF0 mov [ebp-10h],ebx
00401114 C70000000000 mov dword ptr [eax],00000000h
0040111A E891AC1900 call SUB_L0059BDB0
0040111F EB02 jmp L00401123
00401121 L00401121:
00401121 33C0 xor eax,eax
00401123 L00401123:
00401123 89461C mov [esi+1Ch],eax
00401126 C745FC00000000 mov dword ptr [ebp-04h],00000000h
0040112D F6C302 test bl,02h
00401130 741B jz L0040114D
00401132 8B4508 mov eax,[ebp+08h]
00401135 83E3FD and ebx,FFFFFFFDh
00401138 83C9FF or ecx,FFFFFFFFh
0040113B F0 lock
0040113C 0FC108 xadd [eax],ecx
0040113F 750C jnz L0040114D
00401141 8B5508 mov edx,[ebp+08h]
00401144 52 push edx
00401145 E866955700 call SUB_L0097A6B0
0040114A 83C404 add esp,00000004h
0040114D L0040114D:
0040114D 8B4E1C mov ecx,[esi+1Ch]
00401150 6A01 push 00000001h
00401152 E8299E1900 call SUB_L0059AF80
00401157 6A14 push 00000014h
00401159 E8945B6400 call SUB_L00A46CF2
0040115E 8BF8 mov edi,eax
00401160 83C404 add esp,00000004h
00401163 897DE4 mov [ebp-1Ch],edi
00401166 C645FC07 mov byte ptr [ebp-04h],07h
0040116A 85FF test edi,edi
0040116C 7436 jz L004011A4
0040116E 6AFF push FFFFFFFFh
========================
和下面一段:
00401072 6860D9AF00 push SSZ00AFD960
00401077 E8A4B75700 call SUB_L0097C820
0040107C 894508 mov [ebp+08h],eax
0040107F 83C404 add esp,00000004h
00401082 8BC4 mov eax,esp
00401084 8965E4 mov [ebp-1Ch],esp
00401087 6A00 push 00000000h
00401089 8D4D08 lea ecx,[ebp+08h]
0040108C 51 push ecx
0040108D BB01000000 mov ebx,00000001h
00401092 8BCF mov ecx,edi
00401094 C645FC02 mov byte ptr [ebp-04h],02h
00401098 895DF0 mov [ebp-10h],ebx
0040109B C70000000000 mov dword ptr [eax],00000000h
004010A1 E80AAD1900 call SUB_L0059BDB0
004010A6 EB02 jmp L004010AA
004010A8 L004010A8:
004010A8 33C0 xor eax,eax
004010AA L004010AA:
004010AA 894614 mov [esi+14h],eax
004010AD C745FC00000000 mov dword ptr [ebp-04h],00000000h
004010B4 F6C301 test bl,01h
004010B7 741B jz L004010D4
004010B9 8B5508 mov edx,[ebp+08h]
004010BC 83E3FE and ebx,FFFFFFFEh
004010BF 83C8FF or eax,FFFFFFFFh
004010C2 F0 lock
004010C3 0FC102 xadd [edx],eax
004010C6 750C jnz L004010D4
004010C8 8B4D08 mov ecx,[ebp+08h]
004010CB 51 push ecx
004010CC E8DF955700 call SUB_L0097A6B0
004010D1 83C404 add esp,00000004h
004010D4 L004010D4:
004010D4 6A14 push 00000014h
004010D6 E8175C6400 call SUB_L00A46CF2
004010DB 8BF8 mov edi,eax
004010DD 83C404 add esp,00000004h
004010E0 897DE4 mov [ebp-1Ch],edi
004010E3 C645FC04 mov byte ptr [ebp-04h],04h
004010E7 85FF test edi,edi
004010E9 7436 jz L00401121
004010EB 6AFF push FFFFFFFFh
=========================
猛一看,还真像孪生兄弟,