//format addr, instruction bytes & asm ops into a list of strings for all bytes in code section
public void showSectionCode(Section section)
{
if (section.isCode())
{
InfoWindow infoWin = new InfoWindow();
infoWin.setTitle("Section [" + section.secNum + "] " + section.secName + " Code");
uint srcpos = 0;
List <String> codeList = new List <String>();
String asmLine = null;
i32Disasm disasm = new i32Disasm(section.data, srcpos);
Instruction instr;
uint instrlen = 0;
uint codeaddr = section.imageBase + section.memloc; //starting pos of code in mem, used for instr addrs
while (srcpos < (section.data.Length - MAXINSTRLEN))
{
instr = disasm.getInstr(codeaddr); //disasm bytes at cur source pos into next instruction
asmLine = instr.displayIntruction();
codeList.Add(asmLine);
instrlen = (uint)instr.getBytes().Count; //determines how many bytes to format in line
srcpos += instrlen;
codeaddr += instrlen;
}
String text = String.Join("\r\n", codeList);
infoWin.setText(text);
infoWin.Show(fwindow);
}
}
public void showSectionData(Section section)
{
StringBuilder dataStr = new StringBuilder(); //the whole thing as one LONG string
StringBuilder ascii = new StringBuilder(); //the ascii representation of the bytes on one line
InfoWindow infoWin = new InfoWindow();
infoWin.setTitle("Section [" + section.secNum + "] " + section.secName + " Data");
int bpos = 0;
uint loc = section.memloc;
for (; bpos < section.data.Length;)
{
if (bpos % 16 == 0)
{
dataStr.Append(loc.ToString("X8") + ": "); //address field if at start of line
}
uint b = section.data[bpos];
dataStr.Append(b.ToString("X2")); //single byte value in hex
dataStr.Append(" ");
ascii.Append((b >= 0x20 && b <= 0x7E) ? ((char)b).ToString() : "."); //and its ascii equivalent
bpos++;
loc++;
if (bpos % 16 == 0)
{
dataStr.AppendLine(ascii.ToString()); //ascii field if at end of line
ascii.Clear();
}
}
if (bpos % 16 != 0) //fill out partial last line
{
int remainder = (bpos % 16);
for (; remainder < 16; remainder++)
{
dataStr.Append(" "); //space over to line up ascii field
}
dataStr.AppendLine(ascii.ToString());
}
String text = dataStr.ToString();
infoWin.setText(text);
infoWin.Show(fwindow);
}
//- displaying ---------------------------------------------------------------
public void showExeHeaderInfo()
{
InfoWindow infoWin = new InfoWindow();
infoWin.setTitle("EXE Header");
String coffHdr =
"machine = " + winexe.machine + "\r\n" +
"sectioncount = " + winexe.sectionCount + "\r\n" +
"timestamp = " + winexe.timeStamp + "\r\n" +
"symbol tbl ptr = " + winexe.symbolTblAddr + "\r\n" +
"symbol count = " + winexe.symbolCount + "\r\n" +
"optional header size = " + winexe.optionalHdrSize + "\r\n" +
"characteristics = " + winexe.characteristics;
String optionalHdr =
"magic number = " + winexe.magicNum + "\r\n" +
"linker version = " + winexe.majorLinkerVersion + "." + winexe.minorLinkerVersion + "\r\n" +
"size of code = " + winexe.sizeOfCode + "\r\n" +
"size of initializedData = " + winexe.sizeOfInitializedData + "\r\n" +
"size of uninitializedData = " + winexe.sizeOfUninitializedData + "\r\n" +
"entry point = " + winexe.addressOfEntryPoint + "\r\n" +
"base of code = " + winexe.baseOfCode + "\r\n" +
"base of data = " + winexe.baseOfData + "\r\n" +
"image base = " + winexe.imageBase.ToString("X") + "\r\n" +
"memory alignment = " + winexe.sectionAlignment + "\r\n" +
"file alignment = " + winexe.fileAlignment + "\r\n" +
"OS version = " + winexe.majorOSVersion + "." + winexe.minorOSVersion + "\r\n" +
"image version = " + winexe.majorImageVersion + "." + winexe.minorImageVersion + "\r\n" +
"subsystem version = " + winexe.majorSubsystemVersion + "." + winexe.minorSubsystemVersion + "\r\n" +
"win32 version = " + winexe.win32VersionValue + "\r\n" +
"size of image = " + winexe.sizeOfImage + "\r\n" +
"size of headers = " + winexe.sizeOfHeaders + "\r\n" +
"checksum = " + winexe.checksum + "\r\n" +
"subsystem = " + winexe.subsystem + "\r\n" +
"DLL characteristics = " + winexe.dLLCharacteristics + "\r\n" +
"size of stack reserve = " + winexe.sizeOfStackReserve + "\r\n" +
"size of stack commit = " + winexe.sizeOfStackCommit + "\r\n" +
"size of heap reserve = " + winexe.sizeOfHeapReserve + "\r\n" +
"size of heap commit = " + winexe.sizeOfHeapCommit + "\r\n" +
"loader flags = " + winexe.loaderFlags;
String dataDir =
"export table = " + winexe.dExportTable.rva + " : " + winexe.dExportTable.size + "\r\n" +
"import table = " + winexe.dImportTable.rva + " : " + winexe.dImportTable.size + "\r\n" +
"resource table = " + winexe.dResourceTable.rva + " : " + winexe.dResourceTable.size + "\r\n" +
"exception table = " + winexe.exceptionTable.rva + " : " + winexe.exceptionTable.size + "\r\n" +
"certificate table = " + winexe.certificatesTable.rva + " : " + winexe.certificatesTable.size + "\r\n" +
"base relocation table = " + winexe.baseRelocationTable.rva + " : " + winexe.baseRelocationTable.size + "\r\n" +
"debug data = " + winexe.debugTable.rva + " : " + winexe.debugTable.size + "\r\n" +
"architecture = " + winexe.architecture.rva + " : " + winexe.architecture.size + "\r\n" +
"global pointer = " + winexe.globalPtr.rva + " : " + winexe.globalPtr.size + "\r\n" +
"thread local storage table = " + winexe.threadLocalStorageTable.rva + " : " + winexe.threadLocalStorageTable.size + "\r\n" +
"load configuration table = " + winexe.loadConfigurationTable.rva + " : " + winexe.loadConfigurationTable.size + "\r\n" +
" bound import table = " + winexe.boundImportTable.rva + " : " + winexe.boundImportTable.size + "\r\n" +
"import address table = " + winexe.importAddressTable.rva + " : " + winexe.importAddressTable.size + "\r\n" +
"delay import descriptor = " + winexe.delayImportDescriptor.rva + " : " + winexe.delayImportDescriptor.size + "\r\n" +
"CLR runtime header = " + winexe.CLRRuntimeHeader.rva + " : " + winexe.CLRRuntimeHeader.size + "\r\n" +
"reserved = " + winexe.reserved.rva + " : " + winexe.reserved.size;
String text = coffHdr + "\r\n\r\n" + optionalHdr + "\r\n\r\n" + dataDir;
infoWin.setText(text);
infoWin.Show(fwindow);
}