ropshell> use 1dad723040b3b62f1c60c1942826704f (download)
name         : ecw.exe (x86_64/PE)
base address : 0x140001000
total gadgets: 6333
ropshell> suggest "load mem"
> 0x140065998 : mov rax, [rcx]; ret
> 0x140001dbc : mov eax, [rcx]; ret
> 0x140003684 : mov rax, [rcx + 0x10]; ret
> 0x1400022b0 : mov eax, [rcx + 0x10]; ret
> 0x1400462e2 : mov rcx, [r9]; inc [rcx]; ret
> 0x14003a6c6 : movzx ecx, [rdx]; sub eax, ecx; ret
> 0x14000498b : mov edx, [rax]; movsxd rax, edx; ret
> 0x140047418 : mov rax, [rdx]; mov [rcx], rax; ret
> 0x14000540c : mov rax, [r8]; mov [rdx], rax; ret
> 0x140030658 : mov rcx, [rdx]; mov [rax], rcx; ret
> 0x140047419 : mov eax, [rdx]; mov [rcx], rax; ret
> 0x1400301ce : mov ecx, [rdi]; call rbx
> 0x1400462c6 : mov rax, [r9]; mov al, [rax + 0x18]; ret
> 0x140008fad : mov ebp, [rsi]; add al, 0; add rsp, 0x28; ret
> 0x14000902a : mov rax, [r8 + 0x50]; mov [rax], ecx; ret
> 0x140037149 : mov rbx, [r11 + 0x10]; mov rsp, r11; pop rdi; ret
> 0x1400027ea : mov rsi, [r11 + 0x18]; mov rsp, r11; pop rdi; ret
> 0x14003a7d2 : mov rdi, [r11 + 0x20]; mov rsp, r11; pop r14; ret
> 0x14006d47e : mov r14, [r11 + 0x28]; mov rsp, r11; pop rbp; ret
> 0x14004cad7 : mov ecx, [rax + 0x14]; test ecx, edx; setne al; ret
> 0x1400027eb : mov esi, [rbx + 0x18]; mov rsp, r11; pop rdi; ret
> 0x14003a7d3 : mov edi, [rbx + 0x20]; mov rsp, r11; pop r14; ret
> 0x140002af4 : mov rdx, [rcx]; call [rdx + 0x10]
> 0x140001ddb : mov r9, [rax]; call [r9 + 0x10]
> 0x140001ddc : mov ecx, [rax]; call [r9 + 0x10]
> 0x140002af5 : mov edx, [rcx]; call [rdx + 0x10]
> 0x140030b24 : movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x14005e433 : mov rcx, [rax]; mov rax, [rcx + 0x88];  inc [rax]; ret
> 0x140001d78 : mov rax, [rdx + 8]; cmp [rcx + 8], rax; sete al; ret
> 0x1400721d2 : mov rbx, [rbp + 0x20]; lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x1400412e6 : mov rcx, [r8 + 0x468]; add [rcx], 2; mov al, 1; ret
> 0x140066ba9 : mov rbp, [r11 + 0x30]; mov rsp, r11; pop r13; pop rdi; pop rsi; ret
> 0x1400369fd : mov r12, [r11 + 0x30]; mov rsp, r11; pop r15; pop r14; pop rbp; ret
> 0x140001d79 : mov eax, [rdx + 8]; cmp [rcx + 8], rax; sete al; ret
> 0x1400721d3 : mov ebx, [rbp + 0x20]; lea rsp, [rbp + 0x10]; pop rbp; ret
> 0x140066baa : mov ebp, [rbx + 0x30]; mov rsp, r11; pop r13; pop rdi; pop rsi; ret
> 0x14000421c : mov rax, [r14]; mov rcx, r14; call [rax + 0x18]
> 0x140003dea : mov rax, [r15]; mov rcx, r15; call [rax + 0x20]
> 0x140004aca : mov rdx, [rbx]; mov rcx, rbx; call [rdx + 8]
> 0x14000481a : mov r8, [rcx]; mov edx, r9d; call [r8 + 0x18]
> 0x14000421d : mov eax, [rsi]; mov rcx, r14; call [rax + 0x18]
> 0x140003deb : mov eax, [rdi]; mov rcx, r15; call [rax + 0x20]
> 0x14006b888 : movzx eax, [r8]; add [rcx + 0x10], -2; add [rcx], 2; ret
> 0x140004acb : mov edx, [rbx]; mov rcx, rbx; call [rdx + 8]
> 0x14000864a : movsxd rcx, [rax + 4]; mov [rcx + rdx + 0x50], r8; mov rax, r10; ret
> 0x14000878c : movsxd rdx, [rax + 4]; lea r8d, [rdx - 0x10]; mov [rdx + rcx - 0x14], r8d; ret
> 0x140008ce6 : mov rdx, [rcx + 0x38]; mov rax, [rdx]; dec rax; mov [rdx], rax; ret
> 0x140031810 : movsxd rdx, [r8 + 0x1c]; mov rax, [rcx]; mov [rdx + rax], r9d; ret
> 0x14006d5f3 : mov r12, [rbp + 0x68]; lea rsp, [rbp + 0x30]; pop r15; pop r14; pop rbp; ret
> 0x140010617 : mov r13, [rbp + 0x48]; lea rsp, [rbp + 0x10]; pop r15; pop r14; pop rbp; ret
> 0x14000c585 : mov eax, [rsi + 8]; mov rdx, rdi; xor ecx, ecx; call rbx
> 0x14000c4f4 : mov eax, [rdi + 8]; mov rdx, rsi; mov ecx, ebp; call rbx
> 0x140030713 : mov ecx, [rdx + 8]; mov [rax], r8; mov [rax + 8], ecx; ret
> 0x140008ce7 : mov edx, [rcx + 0x38]; mov rax, [rdx]; dec rax; mov [rdx], rax; ret
> 0x14000193e : mov r8, [rax]; mov edx, 1; mov rcx, rax; call [r8]
> 0x14006b876 : movzx edx, [r8]; dec [rcx + 0x10]; shl dx, 8; or ax, dx; inc [rcx]; ret
> 0x14003ea41 : mov rcx, [rdx + 0x480]; mov [rdx + 0x18], rcx; mov [rdx + 0x34], r8; ret
> 0x140030b20 : mov rcx, [r9 + rcx]; movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x140030710 : mov r8, [rdx]; mov ecx, [rdx + 8]; mov [rax], r8; mov [rax + 8], ecx; ret
> 0x140010613 : mov rdi, [rbp + 0x40]; mov r13, [rbp + 0x48]; lea rsp, [rbp + 0x10]; pop r15; pop r14; pop rbp; ret
> 0x140069de6 : mov edx, [rax + 0x10]; mov ecx, ebx; mov rax, rsi; mov r8, [rip + 0x11633]; call r8
> 0x140010614 : mov edi, [rbp + 0x40]; mov r13, [rbp + 0x48]; lea rsp, [rbp + 0x10]; pop r15; pop r14; pop rbp; ret
> 0x1400041ab : mov rax, [r12]; lea r8, [r15 + r14]; mov rdx, r14; mov rcx, r12; call [rax + 0x38]
> 0x1400033f3 : mov rax, [r9 + 0x40]; mov rcx, [rax + 8]; mov [rbp - 0x41], rcx; mov rax, [rcx]; call [rax + 8]
> 0x140003d85 : mov rax, [r13 + 0x40]; mov rcx, [rax + 8]; mov [rbp - 0x59], rcx; mov rax, [rcx]; call [rax + 8]
> 0x140001f0e : mov rcx, [rsi + 8]; mov rax, [rcx]; mov r8d, [rsi]; lea rdx, [rsp + 0x20]; call [rax + 0x10]
> 0x140003d86 : mov eax, [rbp + 0x40]; mov rcx, [rax + 8]; mov [rbp - 0x59], rcx; mov rax, [rcx]; call [rax + 8]
> 0x140001f0f : mov ecx, [rsi + 8]; mov rax, [rcx]; mov r8d, [rsi]; lea rdx, [rsp + 0x20]; call [rax + 0x10]
> 0x140004615 : mov rax, [rbx]; movsxd rcx, [rax + 4]; mov rcx, [rcx + rbx + 0x48]; mov rax, [rcx]; call [rax + 0x68]
> 0x140004616 : mov eax, [rbx]; movsxd rcx, [rax + 4]; mov rcx, [rcx + rbx + 0x48]; mov rax, [rcx]; call [rax + 0x68]
> 0x140030b18 : movsxd r9, [rdx + 4]; movsxd rdx, [rdx + 8]; mov rcx, [r9 + rcx]; movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x1400033d6 : movzx edx, [rbp + 0x7f]; mov [rsp + 0x28], edx; mov [rsp + 0x20], r13b; lea r8, [rbp - 0x49]; mov rdx, r12; call [r10 + 0x48]
> 0x14000358e : mov r10, [rcx]; mov [rsp + 0x28], eax; mov al, [rsp + 0x70]; mov [rsp + 0x20], al; movdqa xmm[rsp + 0x30], xmm0; call [r10 + 0x48]
> 0x140002b33 : mov r10, [r14]; mov [rsp + 0x28], esi; mov [rsp + 0x20], al; lea r8, [rsp + 0x50]; lea rdx, [rsp + 0x60]; mov rcx, r14; call [r10 + 0x48]
> 0x140002b34 : mov edx, [rsi]; mov [rsp + 0x28], esi; mov [rsp + 0x20], al; lea r8, [rsp + 0x50]; lea rdx, [rsp + 0x60]; mov rcx, r14; call [r10 + 0x48]