diff options
| author | serpilliere <devnull@localhost> | 2011-08-10 11:31:40 +0200 |
|---|---|---|
| committer | serpilliere <devnull@localhost> | 2011-08-10 11:31:40 +0200 |
| commit | 309c208f80552f50eeaa9a7f2aa72cc9cc4b9573 (patch) | |
| tree | 92f49c161db312143ee14f027cf0ba1d357e4294 | |
| parent | 6cb249e18cf968a51379b821ca803b6ef49a5965 (diff) | |
| download | miasm-309c208f80552f50eeaa9a7f2aa72cc9cc4b9573.tar.gz miasm-309c208f80552f50eeaa9a7f2aa72cc9cc4b9573.zip | |
updt win api
| -rw-r--r-- | miasm/tools/win_api.py | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/miasm/tools/win_api.py b/miasm/tools/win_api.py index 1169bb7c..2552731a 100644 --- a/miasm/tools/win_api.py +++ b/miasm/tools/win_api.py @@ -1563,3 +1563,19 @@ def kernel32_SetFileAttributesA(): regs['eip'] = ret_ad regs['eax'] = eax vm_set_gpreg(regs) + +def ntdll_RtlMoveMemory(): + ret_ad = vm_pop_uint32_t() + dst = vm_pop_uint32_t() + src = vm_pop_uint32_t() + l = vm_pop_uint32_t() + print whoami(), hex(ret_ad), hex(dst), hex(src), hex(l) + + + s = vm_get_str(src, l) + vm_set_mem(dst, s) + + regs = vm_get_gpreg() + regs['eip'] = ret_ad + regs['eax'] = 1 + vm_set_gpreg(regs) |