ropshell> use 8f481ed91c05d7efccae32b0d0359f22 (download)
name         : ss.dll (x86_64/PE)
base address : 0x13b401000
total gadgets: 2880
ropshell> suggest "load mem"
> 0x13b413612 : mov rax, [rcx]; add rsp, 0x38; ret
> 0x13b413613 : mov eax, [rcx]; add rsp, 0x38; ret
> 0x13b417eea : movzx ecx, [rdx]; sub eax, ecx; ret
> 0x13b40e088 : mov rcx, [rdx]; mov [rax], rcx; ret
> 0x13b4197a6 : mov eax, [rcx + 0x18]; add rsp, 0x28; ret
> 0x13b4059f0 : mov r10, [rcx]; jmp [r10 + 0x10]
> 0x13b4059f1 : mov edx, [rcx]; jmp [r10 + 0x10]
> 0x13b41d23d : mov rsi, [r11 + 0x18]; mov rsp, r11; pop rdi; ret
> 0x13b40b89a : mov rdi, [r11 + 0x20]; mov rsp, r11; pop rbp; ret
> 0x13b4189f6 : mov r14, [r11 + 0x28]; mov rsp, r11; pop rbp; ret
> 0x13b41d23e : mov esi, [rbx + 0x18]; mov rsp, r11; pop rdi; ret
> 0x13b40b89b : mov edi, [rbx + 0x20]; mov rsp, r11; pop rbp; ret
> 0x13b4081a3 : mov r8, [rcx]; call [r8 + 0x10]
> 0x13b40a35f : mov r9, [rcx]; call [r9 + 0x48]
> 0x13b419846 : mov rax, [r11 + 8]; xchg [rax + 0x14], edx; ret
> 0x13b40b780 : movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x13b419847 : mov eax, [rbx + 8]; xchg [rax + 0x14], edx; ret
> 0x13b406745 : mov rdx, [rdi + 8]; call [rax + 8]
> 0x13b409c7f : mov rbp, [r11 + 0x30]; mov rsp, r11; pop r14; pop rdi; pop rsi; ret
> 0x13b416ea1 : mov edx, [rbx + 0x10]; mov ecx, 8; call rdi
> 0x13b406746 : mov edx, [rdi + 8]; call [rax + 8]
> 0x13b406ad4 : mov esi, [rcx + 0xc]; call [rax + 0x10]
> 0x13b409c80 : mov ebp, [rbx + 0x30]; mov rsp, r11; pop r14; pop rdi; pop rsi; ret
> 0x13b40ad2c : mov rax, [rbx]; mov r9, [rip + 0x1a5b2]; call r9
> 0x13b41b0c2 : mov rax, [rdx]; mov [rax], cl; inc [rdx]; movzx eax, cl; ret
> 0x13b40a38b : mov rax, [rdi]; mov rcx, rdi; call [rax + 0x48]
> 0x13b409f29 : mov rdx, [rax]; mov rcx, rax; call [rdx + 0x10]
> 0x13b40ad2d : mov eax, [rbx]; mov r9, [rip + 0x1a5b2]; call r9
> 0x13b41b0c3 : mov eax, [rdx]; mov [rax], cl; inc [rdx]; movzx eax, cl; ret
> 0x13b40a38c : mov eax, [rdi]; mov rcx, rdi; call [rax + 0x48]
> 0x13b409f2a : mov edx, [rax]; mov rcx, rax; call [rdx + 0x10]
> 0x13b41996f : movzx ecx, [rax]; inc rax; mov [rdx], rax; mov eax, ecx; add rsp, 0x28; ret
> 0x13b41d239 : mov rbx, [r11 + 0x10]; mov rsi, [r11 + 0x18]; mov rsp, r11; pop rdi; ret
> 0x13b40c610 : movsxd rdx, [r8 + 0x1c]; mov rax, [rcx]; mov [rdx + rax], r9d; ret
> 0x13b40e093 : movzx eax, [rdx + 2]; mov [rax], cx; mov [rax + 2], r8b; ret
> 0x13b40e143 : mov ecx, [rdx + 8]; mov [rax], r8; mov [rax + 8], ecx; ret
> 0x13b423ab4 : mov rcx, [rdx + rcx]; bswap rax; bswap rcx; cmp rax, rcx; sbb eax, eax; sbb eax, -1; ret
> 0x13b40b77c : mov rcx, [r9 + rcx]; movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x13b409e81 : mov rax, [r9]; lea r8, [rip + 0x1c48d]; mov rcx, r9; call [rax + 0x48]
> 0x13b408416 : mov r8, [rax]; lea rdx, [rsp + 0x478]; mov rcx, rax; call [r8 + 0x10]
> 0x13b40e140 : mov r8, [rdx]; mov ecx, [rdx + 8]; mov [rax], r8; mov [rax + 8], ecx; ret
> 0x13b40a2e0 : mov r9, [rax]; movzx r8d, bx; mov edx, ebp; mov rcx, rax; call [r9 + 0x38]
> 0x13b406b18 : mov r9, [r14]; movzx r8d, [rsp + 0x60]; mov r10, [rcx]; call [r10]
> 0x13b406b19 : mov ecx, [rsi]; movzx r8d, [rsp + 0x60]; mov r10, [rcx]; call [r10]
> 0x13b406acd : mov rcx, [rbx + 0x28]; mov rax, [rcx]; mov esi, [rcx + 0xc]; call [rax + 0x10]
> 0x13b406ace : mov ecx, [rbx + 0x28]; mov rax, [rcx]; mov esi, [rcx + 0xc]; call [rax + 0x10]
> 0x13b40b774 : movsxd r9, [rdx + 4]; movsxd rdx, [rdx + 8]; mov rcx, [r9 + rcx]; movsxd r8, [rdx + rcx]; add r8, r9; add rax, r8; ret
> 0x13b406af1 : mov ecx, [rbp + 0x34]; lea rax, [rsp + 0x60]; mov [rsp + 0x28], rax; mov r9d, edi; mov r8, rbp; mov [rsp + 0x20], esi; call [r13 + 0x28]
> 0x13b406af0 : mov ecx, [r13 + 0x34]; lea rax, [rsp + 0x60]; mov [rsp + 0x28], rax; mov r9d, edi; mov r8, rbp; mov [rsp + 0x20], esi; call [r13 + 0x28]