Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
kacejot2017-12-27 23:39:50
reverse engineering
kacejot, 2017-12-27 23:39:50

How to remove function call in exe by patching it?

My goal is to disable TLSCallback in order for the debugger to work.
I need to patch the code, not bypass the callback.
actual code:

.text:00401AA0 TlsCallback_0   proc near               ; DATA XREF: .rdata:TlsCallbacks↓o
.text:00401AA0                 jmp     TlsCallback_0_0
.text:00401AA0 TlsCallback_0   endp

Expected code:
.text:00401AA0 TlsCallback_0   proc near               ; DATA XREF: .rdata:TlsCallbacks↓o
.text:00401AA0 TlsCallback_0   endp

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
Rou1997, 2017-12-28
@kacejot

So you need to watch what is returned in TlsCallback_0_0 .
If nothing, then simply replace the instruction from jmp to nop in the amount of 1 pc. (judging by the code, both weigh 1 byte).
In general, the question is taken out of context.

Similar questions
M
Mikhail Smiryagin2019-04-23 18:50:35
How to transfer information to a program's dynamic array? 1Reply
F
Filipp422021-01-06 19:18:53
Is there a normal decompiler for Linux? 2Reply
D
DVoropaev2017-01-14 14:49:45
How to reverse engineer a crypted virus written in jscript (WSH)? 1Reply
A
AFakeman2015-03-19 21:58:39
How to start reverse engineering client-server programs? 1Reply
J
jetmax2021-03-25 14:41:12
How to protect wasm? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question