flat assembler
Message board for the users of flat assembler.
![]() |
Author |
|
typedef 28 Sep 2011, 21:00
Can you restate your question and or visual aid please?
|
|||
![]() |
|
LocoDelAssembly 28 Sep 2011, 21:12
Use a label to indicate where you want the entry point, then in any place of the source (but preferably just after "format pe ...") use "entry your_label_to_your_entry".
If you are using win*x*.inc, then .end macro expects as an argument the entry point so you can specify it like ".end your_kabel_to_your_entry". |
|||
![]() |
|
Overflowz 28 Sep 2011, 21:15
LocoDelAssembly
can you write little example please ? I don't get it. typedef use debugger. I suck at English right now, cause I'm really tired. |
|||
![]() |
|
LocoDelAssembly 28 Sep 2011, 22:42
Code: format pe gui 4.0 entry start ; Specifies the entry point section '.code' code readable executable db 'LOCO'; junk code start: ;entry point ret |
|||
![]() |
|
typedef 28 Sep 2011, 23:41
^^Seriously this is what he was asking for ? LOL, I've seen him do that 1K times.
Code: section '.code' code readable executable ;writeable (I like to enable this flag ) |
|||
![]() |
|
ProphetOfDoom 29 Sep 2011, 00:21
I suspect he's referring to changing the image base (where the executable is loaded in virtual memory) which would in turn affect where the entry point is.
![]() |
|||
![]() |
|
typedef 29 Sep 2011, 00:43
ProphetOfDoom ?
Who the eF are you ? Are you really the Prophet of Doom ? If so tell me when it will occur because I'm tired of this economic turmoil. |
|||
![]() |
|
Overflowz 29 Sep 2011, 00:50
LocoDelAssembly
Oh, I'm sorry. I asked wrong question, ProphetOfDoom is right, I need to change base address of image. Sorry.. ![]() |
|||
![]() |
|
addes3 29 Sep 2011, 18:17
[tt]format pe gui at 513000h[/tt]
|
|||
![]() |
|
Overflowz 29 Sep 2011, 20:26
addes3
it says, invalid Win32 file. |
|||
![]() |
|
LocoDelAssembly 29 Sep 2011, 21:38
Odd, I thought ProphetOfDoom answered the question but now I look again he only clarified Overflowz's question.
Anyway, the solution is the one provided by addes3, but perhaps you'll need to add version and also subtract 0x1000 (check with OllyDbg to see where your first section starts). Also, when doing this, make sure you executable is importing KERNEL32.DLL (or another DLL which directly or indirectly imports such DLL), because if it doesn't then you may get problems on some Windows versions. PS: I forgot to copy this link: http://flatassembler.net/docs.php?article=manual#2.4.2 |
|||
![]() |
|
Overflowz 30 Sep 2011, 08:33
Thank you ! I figured out.
![]() |
|||
![]() |
|
< Last Thread | Next Thread > |
Forum Rules:
|
Copyright © 1999-2025, Tomasz Grysztar. Also on GitHub, YouTube.
Website powered by rwasa.