beaengine icon indicating copy to clipboard operation
beaengine copied to clipboard

Published 20 hours ago verified publisher icon BeaEngine

pop dword ptr [esp]

Open Hendi48 opened this issue 9 months ago • 0 comments

In #2 you applied a change that broke decoding of pop dword ptr [esp+displ].

  • 8F0F24 must be disassembled to pop dword ptr [esp], not pop dword ptr [esp+4]
  • 8F442404 must be disassembled to pop dword ptr [esp+4], not pop dword ptr [esp+8]
  • 8F8424F0000000 must be disassembled to pop dword ptr [esp+F0], not pop dword ptr [esp+F4]
  • and so on

While the current output might seem more "logical", it's a discrepancy from all other disassemblers and assemblers. Copying output from BeaEngine into an x86 assembler will result in a broken program.

Hendi48 avatar May 21 '24 22:05 Hendi48