about summary refs log tree commit diff stats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--miasm/tools/win_api.py16
1 files changed, 16 insertions, 0 deletions
diff --git a/miasm/tools/win_api.py b/miasm/tools/win_api.py
index 1169bb7c..2552731a 100644
--- a/miasm/tools/win_api.py
+++ b/miasm/tools/win_api.py
@@ -1563,3 +1563,19 @@ def kernel32_SetFileAttributesA():
     regs['eip'] = ret_ad
     regs['eax'] = eax
     vm_set_gpreg(regs)
+
+def ntdll_RtlMoveMemory():
+    ret_ad = vm_pop_uint32_t()
+    dst = vm_pop_uint32_t()
+    src = vm_pop_uint32_t()
+    l = vm_pop_uint32_t()
+    print whoami(), hex(ret_ad), hex(dst), hex(src), hex(l)
+
+
+    s = vm_get_str(src, l)
+    vm_set_mem(dst, s)
+
+    regs = vm_get_gpreg()
+    regs['eip'] = ret_ad
+    regs['eax'] = 1
+    vm_set_gpreg(regs)