j/MicroCorruption
1
0
Fork 0
mirror of https://git.soft.fish/val/MicroCorruption.git synced 2024-11-22 07:16:05 +00:00
Code Issues Packages Projects Releases Wiki Activity
6515375694
MicroCorruption/20-Vancouver/notes.md

637 B
Raw Blame History

Taken verbatim from my notebook

Page 1

Vancouver   ✓
    Reads 0x400 B -> 2400 (payld)

    payld[0] -> r11 ;
    swpb r11        ; BE to LE conversion
    payld[1] -> r15 ;
    bis  r15, r11   ;

    payld[2] -> r10 ; size
    cmp  #2,  r10   ; if size <= 2
    execute debug payload

    gg ez   mov  #ff00, r15
            mov  r15,   sr
            call #10

debug payload
    [loadaddr][size][payload...]
     8000      04    f40000ff

    44b2 04 3f40 00ff [contents at 44b6]

Editor's note:

For size's sake, the payload reuses some code to call INT after setting sr to ff00

The actual payload is "44b2043f5000ff"