Back to Index
Next: sub_02CD112A

Labelmas.ModuleEntryPoint

02CD1000 >/$ JMP SHORT Labelmas.02CD1012               ;  ModuleEntryPoint
02CD1002  |  DB 66                                     ;  CHAR 'f'
02CD1003  |  DB 62                                     ;  CHAR 'b'
02CD1004  |  DB 3A                                     ;  CHAR ':'
02CD1005  |  DB 43                                     ;  CHAR 'C'
02CD1006  |  DB 2B                                     ;  CHAR '+'
02CD1007  |  DB 2B                                     ;  CHAR '+'
02CD1008  |  DB 48                                     ;  CHAR 'H'
02CD1009  |  DB 4F                                     ;  CHAR 'O'
02CD100A  |  DB 4F                                     ;  CHAR 'O'
02CD100B  |  DB 4B                                     ;  CHAR 'K'
02CD100C  |  NOP 
02CD100D  |  DB E9 
02CD100E  |. DD OFFSET Labelmas.___CPPdebugHook 
02CD1012  |> MOV EAX,DWORD PTR DS:[2CDE0EB] 
02CD1017  |. SHL EAX,2 
02CD101A  |. MOV DWORD PTR DS:[2CDE0EF],EAX 
02CD101F  |. MOV EAX,DWORD PTR SS:[ESP+8] 
02CD1023  |. MOV DWORD PTR DS:[2CDE15D],EAX 
02CD1028  |. CALL DWORD PTR DS:[EAX*4+2CDE14D] 
02CD102F  |. CMP DWORD PTR DS:[2CDE15D],1 
02CD1036  |. JNZ SHORT Labelmas.02CD1096 
02CD1038  |. CMP BYTE PTR DS:[2CDE0F7],0 
02CD103F  |. JE SHORT Labelmas.02CD1065 
02CD1041  |. CALL <JMP.&KERNEL32.GetVersion> 
02CD1046  |. MOV EDX,Labelmas.02CDE0F8                 ;  ASCII "Nonshared DATA segment required"
02CD104B  |. AND EAX,80000000 
02CD1050  |. JE SHORT Labelmas.02CD1057 
02CD1052  |. MOV EDX,Labelmas.02CDE118                 ;  ASCII "Cannot run multiple instances of a DLL under WIN32s"
02CD1057  |> PUSH EDX 
02CD1058  |. CALL Labelmas.02CDAB88 
02CD105D  |. POP EAX 
02CD105E  |. XOR EAX,EAX 
02CD1060  |. JMP Labelmas.02CD10F4 
02CD1065  |> INC BYTE PTR DS:[2CDE0F7] 
02CD106B  |. CMP DWORD PTR DS:[2CDE15D],1 
02CD1072  |. JNZ SHORT Labelmas.02CD108E 
02CD1074  |. CALL Labelmas.02CDB8A4 
02CD1079  |. PUSH EDX 
02CD107A  |. MOV EDX,DWORD PTR SS:[ESP+8] 
02CD107E  |. CALL Labelmas.02CD285C 
02CD1083  |. POP EDX 
02CD1084  |. CALL Labelmas.02CD1BF8 
02CD1089  |. CALL Labelmas.02CD2864 
02CD108E  |> PUSH 0 
02CD1090  |. CALL Labelmas.02CD35B8 
02CD1095  |. POP ECX 
02CD1096  |> PUSH Labelmas.02CDE0A0 
02CD109B  |. MOV EAX,DWORD PTR SS:[ESP+8] 
02CD109F  |. MOV DWORD PTR DS:[2CDE0F3],EAX 
02CD10A4  |. CMP DWORD PTR DS:[2CDE15D],1 
02CD10AB  |. JE SHORT Labelmas.02CD10C4 
02CD10AD  |. CMP DWORD PTR DS:[2CDE15D],2 
02CD10B4  |. JE SHORT Labelmas.02CD10C4 
02CD10B6  |. CALL Labelmas.02CDB6AC 
02CD10BB  |. MOV BYTE PTR DS:[2CDE14C],0 
02CD10C2  |. JMP SHORT Labelmas.02CD10CB 
02CD10C4  |> MOV BYTE PTR DS:[2CDE14C],1 
02CD10CB  |> CMP DWORD PTR DS:[2CE167C],0 
02CD10D2  |. JE SHORT Labelmas.02CD10E6 
02CD10D4  |. PUSH EAX 
02CD10D5  |. MOV EAX,DWORD PTR DS:[2CDE15D] 
02CD10DA  |. PUSH EAX 
02CD10DB  |. MOV EAX,DWORD PTR SS:[ESP+18] 
02CD10DF  |. PUSH EAX 
02CD10E0  |. CALL DWORD PTR DS:[2CE167C] 
02CD10E6  |> CMP BYTE PTR DS:[2CDE14C],0 
02CD10ED  |. JE SHORT Labelmas.02CD10F4 
02CD10EF  |. CALL Labelmas.02CDB6AC 
02CD10F4  |> ADD ESP,4 
02CD10F7  |. CMP DWORD PTR DS:[2CDE15D],0 
02CD10FE  |. JNZ SHORT Labelmas.02CD1114 
02CD1100  |. CALL Labelmas.02CD1BE8 
02CD1105  |. CALL Labelmas.02CD2860 
02CD110A  |. CALL Labelmas.02CDB8A8 
02CD110F  |. CALL Labelmas.02CD11E8 
02CD1114  \> RETN 0C 
02CD1117   . JMP Labelmas.02CD3604 
02CD111C   . XOR EAX,EAX 
02CD111E   . MOV AL,BYTE PTR DS:[2CDE0E9] 
02CD1123   . RETN 
02CD1124   . MOV EAX,DWORD PTR DS:[2CDE0F3] 
02CD1129   . RETN
Converted to HTML using olly2html.pl 0.1 by Joe Stewart