Скачать - Xakep Online

lea rdx,[_message] ; lpText ïåðåäàåì ñìåùåíèå âûâîäèìîé ñòðîêè
mov rcx,0
; hWnd ïåðåäàì äåñêðèïòîð îêíà âëàäåëüöà
; (ìîæíî òàêæå èñïîëüçîâàòü xor rcx, rcx,
; ÷òî íà òðè áàéòà êîðî÷å)
call [MessageBox] ; âûçûâàåì ôóíêöèþ MessageBox
mov ecx,eax ; çàíîñèì â ecx ðåçóëüòàò âîçâðàòà
; (Ôóíêöèÿ ExitProcess îæèäàåò 32-áèòíûé ïàðàìåòð
; ìîæíî èñïîëüçîâàòü è mov rcx, rax, íî ýòî áóäåò
; íà áàéò äëèííåå)
call [ExitProcess] ; âûçûâàåì ôóíêöèþ ExitProcess
; ñîçäàòü ñåêöèþ äàííûõ ñ àòðèáóòàìè íà ÷òåíèå è çàïèñü
; (âîîáùå-òî â äàííîì ñëó÷àå àòðèáóò íà çàïèñü íåîáÿçàòåëåí,
; ïîñêîëüêó ìû íè÷åãî íå ïèøåì, à òîëüêî ÷èòàåì)
section '.data' data readable writeable
_caption db 'PENUMBRA is awesome!',0; ASCIIZ-ñòðîêà çàãîëîâêà îêíà
_message db 'Hello World!',0 ; ASCIIZ-ñòðîêà âûâîäèìàÿ íà ýêðàí
; ñîçäàòü ñåêöèþ èìïîðòà ñ àòðèáóòàìè íà ÷òåíèå è çàïèñü
; (çäåñü àòðèáóò íà çàïèñü îáÿçàòåëåí, ïîñêîëüêó ïðè çàãðóçêå PE-Ôàéëà
; â ñåêöèþ èìïîðòà ; áóäóò çàïèñûâàòüñÿ ôàêòè÷åñêèå àäðåñà API-ôóíêöèé)
section '.idata' import data readable writeable
dd 0,0,0,RVA kernel_name,RVA kernel_table
dd 0,0,0,RVA user_name,RVA user_table
dd 0,0,0,0,0 ; çàâåðøàåì ñïèñîê äâóìÿ 64-ðàçðÿíûìè íóëåìè!!!
kernel_table:
ExitProcess dq RVA _ExitProcess
dq 0 ; çàâåðøàåì ñïèñîê 64-ðàçðÿíûì íóëåì!!!
user_table:
MessageBox dq RVA _MessageBoxA
dq 0
äèçàññåìáëèðîâàíèå 64-áèòíîãî PE-ôàéëà 32-áèòíîé âåðñèé IDA Pro
64-ðàçðÿäíûì êîäîì áåç íåîáõîäèìîñòè. Åãî ñëåäóåò èñïîëüçîâàòü
òîëüêî òàì, ãäå 64-áèòíàÿ àðèôìåòèêà è 8 äîïîëíèòåëüíûõ ðåãèñòðîâ
äåéñòâèòåëüíî äàþò îùóòèìûé âûèãðûø. Íàïðèìåð, â ìàòåìàòè÷åñêèõ
çàäà÷àõ èëè ïðîãðàììàõ äëÿ âñêðûòèÿ ïàðîëåé.
[äèçàññåìáëåðíûé ëèñòèíã 32-áèòíîãî ïðèëîæåíèÿ hello, world!]
code:00401000 6A 00
push0
code:00401002 68 00 20 40 00 pushoffset aPENUMBRA
code:00401007 68 17 20 40 00 pushoffset aHelloWorld
code:0040100C 6A 00
push0
code:0040100E FF 15 44 30 40 00 call ds:MessageBoxA
code:00401014 6A 00
push0
code:00401016 FF 15 3C 30 40 00 call ds:ExitProcess
 êà÷åñòâå çàêëþ÷èòåëüíîãî óïðàæíåíèÿ ïåðåïèøåì íàøå ïðèëîæåíèå
â ñòèëå MASM, ïîêëîííèêîâ êîòîðîãî íóæíî íå áèòü, à óâàæàòü. Íèêàêèõ
ðàäèêàëüíûõ îòëè÷èé íå íàáëþäàåòñÿ:
[64-áèòíîå ïðèëîæåíèå hello, world ïîä Windows íà MASM'å]
[XÀÊÅÐ 11 [83] 05 > ÊÎÄÈÍÃ 122]
kernel_name db 'KERNEL32.DLL',0
user_name db 'USER32.DLL',0
_ExitProcess dw 0
db 'ExitProcess',0
_MessageBoxA dw 0
db 'MessageBoxA',0
Àññåìáëèðóåì ôàéë (fasm PE64DEMO.ASM) è çàïóñòèì îáðàçîâàâøèéñÿ EXE
íà âûïîëíåíèå. Ïîä 32-ðàçðÿäíîé Windows îí, åñòåñòâåííî, íå çàïóñòèòñÿ.
Âäîâîëü íàèãðàâøèñü íàøåì ïåðâûì x86-64 ôàéëîì, çàãðóçèì åãî
â äèçàññåìáëåð (íàïðèìåð, â IDA Pro 4.7. Îíà õîòü è ìàòåðèòüñÿ,
ïðåäëàãàÿ èñïîëüçîâàòü ñïåöèàëüíóþ 64-áèòíóþ âåðñèþ, íî ïðè íàæàòèè
íà yes âñå êîððåêòíî äèçàññåìáëèðóåò, âî âñÿêîì ñëó÷àå äî
òåõ ïîð, ïîêà íå ñòîëêíåòñÿ ñ ïîäëèííûì 64-áèòíûì àäðåñîì èëè
îïåðàíäîì, ñ êîòîðûì ïðîèçîéäåò îáðåçàíèå, â ÷àñòíîñòè, mov
r9,1234567890h äèçàññåìáëèðóåòñÿ, êàê mov r9, 34567890h, òàê ÷òî
ïåðåõîä íà 64-áèòíóþ âåðñèþ IDA âñå æå î÷åíü æåëàòåëåí, òåì áîëåå,
÷òî, íà÷èíàÿ ñ IDA 4.9, îíà âõîäèò â áàçîâóþ ïîñòàâêó). Ïîñìîòðèì,
÷òî ó íàøåé ïðîãðàììû âíóòðè
[äèçàññåìáëåðíûé ëèñòèíã 64-áèòíîãî ïðèëîæåíèÿ hello, world!]
.code:0000000000401000 41 B9 00 00 00 00 mov r9d, 0
.code:0000000000401006 4C 8D 05 F3 0F 00 00 lea r8, aPENUMBRA
.code:000000000040100D 48 8D 15 03 10 00 00 lea rdx, aHelloWorld ;
"Hello World!"
.code:0000000000401014 48 C7 C1 00 00 00 00 mov rcx, 0
.code:000000000040101B FF 15 2B 20 00 00 call cs:MessageBoxA
.code:0000000000401021 89 C1
mov ecx, eax
.code:0000000000401023 FF 15 13 20 00 00 call cs:ExitProcess
×òî æ, äîâîëüíî ãðîìîçäêî, îáúåìíî è êîíöåïòóàëüíî. Äëÿ ñðàâíåíèÿ,
äèçàññåìáëèðîâàííûé ëèñòèíã àíàëîãè÷íîãî 32-ðàçðÿäíîãî ôàéëà ïðèâåäåí
íèæå. Ñòàðûé x86 êîä â 1,6 ðàç êîðî÷å! À âåäü ýòî òîëüêî äåìîíñòðàöèîííàÿ
ïðîãðàììà èç íåñêîëüêèõ ñòðîê! Íà ïîëíîâåñíûõ ïðèëîæåíèÿõ
ðàçðûâ áóäåò òîëüêî íàðàñòàòü! Òàê ÷òî íå ñòîèò çëîóïîòðåáëÿòü
; îáúÿâëÿåì âíåøíèå API-ôóíêöèè, êîòîðûå ìû áóäåì âûçûâàòü
extrn MessageBoxA: PROC
extrn ExitProcess: PROC
; ñåêöèÿ äàííûõ ñ àòðèáóòàìè ïî óìîë÷àíèþ (÷òåíèå è çàïèñü)
.data
mytit db 'PENUMBRA is awesome!', 0
mymsg db 'Hello World!', 0
; ñåêöèÿ êîäà ñ àòðèáóòàìè ïî óìîë÷àíèþ (÷òåíèå è èñïîëíåíèå)
.code
Main:
mov r9d, 0 ; uType = MB_OK
lea r8, mytit ; LPCSTR lpCaption
lea rdx, mymsg ; LPCSTR lpText
mov rcx, 0 ; hWnd = HWND_DESKTOP
call MessageBoxA
mov ecx, eax
call ExitProcess
End Main
; uExitCode = MessageBox(...)
Àññåìáëèðîâàíèå è ëèíêîâêà ïðîõîäèò òàê:
ml64 XXX.asm /link /subsystem:windows /defaultlib:kernel32.lib /defaultlib:user32.lib
/entry:main
â ðåçóëüòàòå ÷åãî îáðàçóåòñÿ ãîòîâûé ê óïîòðåáëåíèþ exe-ôàéë ñ ðóìÿíîé
ïîäæàðåííîé êîðî÷êîé íàøåãî ÖÏ (FASM àññåìáëèðóåò íàìíîãî áûñòðåå).
Êàê ïîêàçûâàåò ïðàêòèêà, çàïðîñû òèïà x86-64 [AMD64] assembler example
íåýôôåêòèâíû è ãîðàçäî ëó÷øå èñïîëüçîâàòü ÷òî-íèáóäü âðîäå mov rax.
[çàêëþ÷åíèå] Âîò ìû è ïîçíàêîìèëèñü ñ àðõèòåêòóðîé x86-64! Çäåñü
äåéñòâèòåëüíî åñòü ìåñòî, ãäå ðàçâåðíóòñÿ è ÷åìó ïîó÷èòüñÿ! Íàñêîëüêî
ýòè çíàíèÿ îêàæóòñÿ âîñòðåáîâàíû íà ïðàêòèêå — òàê ñðàçó è íå ñêàæåøü.
Ó AMD åñòü õîðîøèå øàíñû ïîøàòíóòü ðûíîê, íî âåäü è Intel íå
äðåìëåò, àêòèâíî ïðîäâèãàÿ ñîáñòâåííûå 64-ðàçðÿäíûå ïëàòôîðìû, èçâåñòíûå
ïîä îáùåì èìåíåì IA64, íî î íèõ êàê-íèáóäü â äðóãîé ðàç