Exetools  

Go Back   Exetools > General > General Discussion
Reload this Page Import Rebuilding Without Import Table
Register Forum Rules FAQ Calendar Mark Forums Read

Notices

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #3  
Old 01-11-2005, 20:12
MarkusO
 
Posts: n/a
@hajir:
I think "Kerlingen" knows about what you write since he says that he has patched the imports to point directly to the API.
As far as I understand him, he has this kind of code:
Code:
(...)
call     some_label     ; E8 call, not FF15 call
(...)
some_label:
jmp     dllname!exportname     ; "E9" relative jump
So his problem is that normally there is a call or jump to an address of the import table but here it isn't and he doesn't find the IAT in merory or there is even no IAT, so he has no table of entries like you called it.

@kerlingen:
Have you tried to find code like this
Code:
mov     esi, [offset iat+somevalue]
call    esi

;or

jmp     dword ptr [xxxxxxxx]     ; FF25 jump
If your code is written in high-level language (which I think nearly all games are) you should find my code somewhere.
Reply With Quote
 

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Add imports to DLL import table jonwil General Discussion 5 09-07-2020 16:47
How to shuffle names in the PE import table? Newbie_Cracker General Discussion 5 08-25-2019 03:59
Reliable PE Library or DLL for Adding Functions to Import Table omidgl General Discussion 3 06-28-2008 09:53
Can`t restore import table thechatter General Discussion 9 11-14-2003 21:01
Changing Import Table?? magic General Discussion 3 09-14-2003 01:59


All times are GMT +8. The time now is 21:29.

Aaron's homepage - Top

Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( Since 1998 )