assembly question - am I missing something?

Discussion in 'Assembly Language Programming (ALP) Forum' started by 3jg13, Sep 29, 2011.

  1. 3jg13

    3jg13 New Member

    Joined:
    Sep 29, 2011
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    Hi.
    I am very confused about this one item I am looking at doing some reversing for.

    Here is the line in IDA:
    cmp [ebp+8], offset unk4323
    jnz loc3434

    To me, this will compare the contents inside (ebp+8) and compare to the global unk4323. If not the same, then it will jump to loc3434. Is that right? Because if it is, that's not what I am seeing. I have attached a debugger and examined the contents of both and they are definitely not the same (I even zero-ed the global unk4323). But the cmp instruction always sets the Zero flag and never causes the jmp to occur.

    eg.
    ebp+8: b4 42 a9 8a
    unk4323: 00 00 00 00

    The cmp instruction with these values sets the zero flag

    Am I missing something here?

    Please advise. Thanks.
     

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice