VMProgram/Disasm-FourthSimplify.txt

0x000000: MOV SCRATCH, EBP
0x000030: ADD SCRATCH, 0x000008
0x000048: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000060: MOV EAX, SCRATCH
0x000078: X86 mov dword ptr [eax], 1D7h
0x000090: X86 mov eax, 41F000h
0x0000a8: X86 leave 
0x0000c0: X86 ret 4h
0x0000d8: X86 pushad 
0x0000f0: X86 xor ecx, ecx
0x000108: X86 sub ecx, 87858700h
0x000120: X86 push ecx
0x000150: X86 xor ecx, 1D021C2Eh
0x000168: X86 push ecx
0x000198: X86 add ecx, 0CED0D41h
0x0001b0: X86 push ecx
0x0001e0: X86 sub ecx, 5F4FA0Ah
0x0001f8: X86 push ecx
0x000228: X86 mov esi, esp
0x000258: MOV SCRATCH, EBP
0x000288: ADD SCRATCH, 0x000008
0x0002a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0002b8: MOV EDI, SCRATCH
0x0002d0: X86 cld 
0x0002e8: X86 xor eax, eax
0x000300: X86 mov al, byte ptr [esi]
0x000318: X86 mov word ptr [edi], ax
0x000330: X86 add esi, 1h
0x000348: X86 add edi, 2h
0x000360: X86 test al, al
0x000378: JNZ VM[0x000300] (fallthrough VM[0x000390])
0x000390: X86 lea esp, dword ptr [esp+10h]
0x0003a8: X86 popad 
0x0003c0: X86 leave 
0x0003d8: X86 ret 4h
0x0003f0: X86 pushad 
0x000408: X86 xor ecx, ecx
0x000420: X86 sub ecx, 87858700h
0x000438: X86 push ecx
0x000468: X86 xor ecx, 48021C74h
0x000480: X86 push ecx
0x0004b0: X86 add ecx, 44D50B01h
0x0004c8: X86 push ecx
0x0004f8: X86 sub ecx, 0DB0F01h
0x000510: X86 push ecx
0x000540: X86 xor ecx, 2706041Ah
0x000558: X86 push ecx
0x000588: X86 add ecx, 15FA03E9h
0x0005a0: X86 push ecx
0x0005d0: X86 mov esi, esp
0x000600: MOV SCRATCH, EBP
0x000630: ADD SCRATCH, 0x000008
0x000648: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000660: MOV EDI, SCRATCH
0x000678: X86 cld 
0x000690: X86 xor eax, eax
0x0006a8: X86 mov al, byte ptr [esi]
0x0006c0: X86 mov word ptr [edi], ax
0x0006d8: X86 add esi, 1h
0x0006f0: X86 add edi, 2h
0x000708: X86 test al, al
0x000720: JNZ VM[0x0006a8] (fallthrough VM[0x000738])
0x000738: X86 lea esp, dword ptr [esp+18h]
0x000750: X86 popad 
0x000768: X86 leave 
0x000780: X86 ret 4h
0x000798: X86 pushad 
0x0007b0: X86 xor ecx, ecx
0x0007c8: X86 sub ecx, 0FF93939Ch
0x0007e0: X86 push ecx
0x000810: X86 xor ecx, 2E02030Dh
0x000828: X86 push ecx
0x000858: X86 add ecx, 4503F60Dh
0x000870: X86 push ecx
0x0008a0: X86 mov esi, esp
0x0008d0: MOV SCRATCH, EBP
0x000900: ADD SCRATCH, 0x000008
0x000918: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000930: MOV EDI, SCRATCH
0x000948: X86 cld 
0x000960: X86 xor eax, eax
0x000978: X86 mov al, byte ptr [esi]
0x000990: X86 mov word ptr [edi], ax
0x0009a8: X86 add esi, 1h
0x0009c0: X86 add edi, 2h
0x0009d8: X86 test al, al
0x0009f0: JNZ VM[0x000978] (fallthrough VM[0x000a08])
0x000a08: X86 lea esp, dword ptr [esp+0Ch]
0x000a20: MOV SCRATCH, EBP
0x000a50: ADD SCRATCH, 0x000008
0x000a68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000a80: MOV EAX, SCRATCH
0x000a98: MOV SCRATCH, ESP
0x000ac8: ADD SCRATCH, 0x00001c
0x000ae0: MOV DWORD PTR [SCRATCH], EAX
0x000af8: X86 popad 
0x000b10: X86 leave 
0x000b28: X86 ret 4h
0x000b40: X86 pushad 
0x000b58: X86 xor ecx, ecx
0x000b70: X86 sub ecx, 8785FF94h
0x000b88: X86 push ecx
0x000bb8: X86 xor ecx, 141E2E00h
0x000bd0: X86 push ecx
0x000c00: X86 add ecx, 4602h
0x000c18: X86 push ecx
0x000c48: X86 mov esi, esp
0x000c78: MOV SCRATCH, EBP
0x000ca8: ADD SCRATCH, 0x000008
0x000cc0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000cd8: MOV EDI, SCRATCH
0x000cf0: X86 cld 
0x000d08: X86 xor eax, eax
0x000d20: X86 mov al, byte ptr [esi]
0x000d38: X86 mov word ptr [edi], ax
0x000d50: X86 add esi, 1h
0x000d68: X86 add edi, 2h
0x000d80: X86 test al, al
0x000d98: JNZ VM[0x000d20] (fallthrough VM[0x000db0])
0x000db0: X86 lea esp, dword ptr [esp+0Ch]
0x000dc8: MOV SCRATCH, EBP
0x000df8: ADD SCRATCH, 0x000008
0x000e10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x000e28: MOV EAX, SCRATCH
0x000e40: MOV SCRATCH, ESP
0x000e70: ADD SCRATCH, 0x00001c
0x000e88: MOV DWORD PTR [SCRATCH], EAX
0x000ea0: X86 popad 
0x000eb8: X86 leave 
0x000ed0: X86 ret 4h
0x000ee8: X86 pushad 
0x000f00: X86 xor ecx, ecx
0x000f18: X86 sub ecx, 87FF9394h
0x000f30: X86 push ecx
0x000f60: X86 xor ecx, 1C2E5E5Fh
0x000f78: X86 push ecx
0x000fa8: X86 add ecx, 0E374142h
0x000fc0: X86 push ecx
0x000ff0: X86 mov esi, esp
0x001020: MOV SCRATCH, EBP
0x001050: ADD SCRATCH, 0x000008
0x001068: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001080: MOV EDI, SCRATCH
0x001098: X86 cld 
0x0010b0: X86 xor eax, eax
0x0010c8: X86 mov al, byte ptr [esi]
0x0010e0: X86 mov word ptr [edi], ax
0x0010f8: X86 add esi, 1h
0x001110: X86 add edi, 2h
0x001128: X86 test al, al
0x001140: JNZ VM[0x0010c8] (fallthrough VM[0x001158])
0x001158: X86 lea esp, dword ptr [esp+0Ch]
0x001170: MOV SCRATCH, EBP
0x0011a0: ADD SCRATCH, 0x000008
0x0011b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0011d0: MOV EAX, SCRATCH
0x0011e8: MOV SCRATCH, ESP
0x001218: ADD SCRATCH, 0x00001c
0x001230: MOV DWORD PTR [SCRATCH], EAX
0x001248: X86 popad 
0x001260: X86 leave 
0x001278: X86 ret 4h
0x001290: X86 pushad 
0x0012a8: X86 xor ecx, ecx
0x0012c0: X86 sub ecx, 87858700h
0x0012d8: X86 push ecx
0x001308: X86 xor ecx, 14161D2Eh
0x001320: X86 push ecx
0x001350: X86 add ecx, 46h
0x001368: X86 push ecx
0x001398: X86 sub ecx, 0FBF2F211h
0x0013b0: X86 push ecx
0x0013e0: X86 mov esi, esp
0x001410: MOV SCRATCH, EBP
0x001440: ADD SCRATCH, 0x000008
0x001458: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001470: MOV EDI, SCRATCH
0x001488: X86 cld 
0x0014a0: X86 xor eax, eax
0x0014b8: X86 mov al, byte ptr [esi]
0x0014d0: X86 mov word ptr [edi], ax
0x0014e8: X86 add esi, 1h
0x001500: X86 add edi, 2h
0x001518: X86 test al, al
0x001530: JNZ VM[0x0014b8] (fallthrough VM[0x001548])
0x001548: X86 lea esp, dword ptr [esp+10h]
0x001560: MOV SCRATCH, EBP
0x001590: ADD SCRATCH, 0x000008
0x0015a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0015c0: MOV EAX, SCRATCH
0x0015d8: MOV SCRATCH, ESP
0x001608: ADD SCRATCH, 0x00001c
0x001620: MOV DWORD PTR [SCRATCH], EAX
0x001638: X86 popad 
0x001650: X86 leave 
0x001668: X86 ret 4h
0x001680: X86 pushad 
0x001698: X86 xor ecx, ecx
0x0016b0: X86 sub ecx, 8785FF94h
0x0016c8: X86 push ecx
0x0016f8: X86 xor ecx, 141E2E05h
0x001710: X86 push ecx
0x001740: X86 add ecx, 3FD4507h
0x001758: X86 push ecx
0x001788: X86 mov esi, esp
0x0017b8: MOV SCRATCH, EBP
0x0017e8: ADD SCRATCH, 0x000008
0x001800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001818: MOV EDI, SCRATCH
0x001830: X86 cld 
0x001848: X86 xor eax, eax
0x001860: X86 mov al, byte ptr [esi]
0x001878: X86 mov word ptr [edi], ax
0x001890: X86 add esi, 1h
0x0018a8: X86 add edi, 2h
0x0018c0: X86 test al, al
0x0018d8: JNZ VM[0x001860] (fallthrough VM[0x0018f0])
0x0018f0: X86 lea esp, dword ptr [esp+0Ch]
0x001908: MOV SCRATCH, EBP
0x001938: ADD SCRATCH, 0x000008
0x001950: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001968: MOV EAX, SCRATCH
0x001980: MOV SCRATCH, ESP
0x0019b0: ADD SCRATCH, 0x00001c
0x0019c8: MOV DWORD PTR [SCRATCH], EAX
0x0019e0: X86 popad 
0x0019f8: X86 leave 
0x001a10: X86 ret 4h
0x001a28: X86 pushad 
0x001a40: X86 xor ecx, ecx
0x001a58: X86 sub ecx, 87FF879Bh
0x001a70: X86 push ecx
0x001aa0: X86 xor ecx, 0C753511h
0x001ab8: X86 push ecx
0x001ae8: X86 add ecx, 0F9F028D1h
0x001b00: X86 push ecx
0x001b30: X86 sub ecx, 0F50114E0h
0x001b48: X86 push ecx
0x001b78: X86 xor ecx, 2B121336h
0x001b90: X86 push ecx
0x001bc0: X86 add ecx, 1AFBF301h
0x001bd8: X86 push ecx
0x001c08: X86 mov esi, esp
0x001c38: MOV SCRATCH, EBP
0x001c68: ADD SCRATCH, 0x000008
0x001c80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001c98: MOV EDI, SCRATCH
0x001cb0: X86 cld 
0x001cc8: X86 xor eax, eax
0x001ce0: X86 mov al, byte ptr [esi]
0x001cf8: X86 mov word ptr [edi], ax
0x001d10: X86 add esi, 1h
0x001d28: X86 add edi, 2h
0x001d40: X86 test al, al
0x001d58: JNZ VM[0x001ce0] (fallthrough VM[0x001d70])
0x001d70: X86 lea esp, dword ptr [esp+18h]
0x001d88: MOV SCRATCH, EBP
0x001db8: ADD SCRATCH, 0x000008
0x001dd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x001de8: MOV EAX, SCRATCH
0x001e00: MOV SCRATCH, ESP
0x001e30: ADD SCRATCH, 0x00001c
0x001e48: MOV DWORD PTR [SCRATCH], EAX
0x001e60: X86 popad 
0x001e78: X86 leave 
0x001e90: X86 ret 4h
0x001ea8: X86 pushad 
0x001ec0: X86 xor ecx, ecx
0x001ed8: X86 sub ecx, 87858700h
0x001ef0: X86 push ecx
0x001f20: X86 xor ecx, 14161D2Eh
0x001f38: X86 push ecx
0x001f68: X86 add ecx, 0C5C70837h
0x001f80: X86 push ecx
0x001fb0: X86 sub ecx, 0C3C106FAh
0x001fc8: X86 push ecx
0x001ff8: X86 mov esi, esp
0x002028: MOV SCRATCH, EBP
0x002058: ADD SCRATCH, 0x000008
0x002070: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002088: MOV EDI, SCRATCH
0x0020a0: X86 cld 
0x0020b8: X86 xor eax, eax
0x0020d0: X86 mov al, byte ptr [esi]
0x0020e8: X86 mov word ptr [edi], ax
0x002100: X86 add esi, 1h
0x002118: X86 add edi, 2h
0x002130: X86 test al, al
0x002148: JNZ VM[0x0020d0] (fallthrough VM[0x002160])
0x002160: X86 lea esp, dword ptr [esp+10h]
0x002178: MOV SCRATCH, EBP
0x0021a8: ADD SCRATCH, 0x000008
0x0021c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0021d8: MOV EAX, SCRATCH
0x0021f0: MOV SCRATCH, ESP
0x002220: ADD SCRATCH, 0x00001c
0x002238: MOV DWORD PTR [SCRATCH], EAX
0x002250: X86 popad 
0x002268: X86 leave 
0x002280: X86 ret 4h
0x002298: X86 pushad 
0x0022b0: X86 xor ecx, ecx
0x0022c8: X86 sub ecx, 87FF9394h
0x0022e0: X86 push ecx
0x002310: X86 xor ecx, 1C2E091Fh
0x002328: X86 push ecx
0x002358: X86 add ecx, 0FD3406F2h
0x002370: X86 push ecx
0x0023a0: X86 sub ecx, 0F2F006FAh
0x0023b8: X86 push ecx
0x0023e8: X86 mov esi, esp
0x002418: MOV SCRATCH, EBP
0x002448: ADD SCRATCH, 0x000008
0x002460: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002478: MOV EDI, SCRATCH
0x002490: X86 cld 
0x0024a8: X86 xor eax, eax
0x0024c0: X86 mov al, byte ptr [esi]
0x0024d8: X86 mov word ptr [edi], ax
0x0024f0: X86 add esi, 1h
0x002508: X86 add edi, 2h
0x002520: X86 test al, al
0x002538: JNZ VM[0x0024c0] (fallthrough VM[0x002550])
0x002550: X86 lea esp, dword ptr [esp+10h]
0x002568: MOV SCRATCH, EBP
0x002598: ADD SCRATCH, 0x000008
0x0025b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0025c8: MOV EAX, SCRATCH
0x0025e0: MOV SCRATCH, ESP
0x002610: ADD SCRATCH, 0x00001c
0x002628: MOV DWORD PTR [SCRATCH], EAX
0x002640: X86 popad 
0x002658: X86 leave 
0x002670: X86 ret 4h
0x002688: X86 pushad 
0x0026a0: X86 xor ecx, ecx
0x0026b8: X86 sub ecx, 87858700h
0x0026d0: X86 push ecx
0x002700: X86 xor ecx, 14161D2Eh
0x002718: X86 push ecx
0x002748: X86 add ecx, 0C5C70542h
0x002760: X86 push ecx
0x002790: X86 sub ecx, 0D0BD050Fh
0x0027a8: X86 push ecx
0x0027d8: X86 mov esi, esp
0x002808: MOV SCRATCH, EBP
0x002838: ADD SCRATCH, 0x000008
0x002850: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002868: MOV EDI, SCRATCH
0x002880: X86 cld 
0x002898: X86 xor eax, eax
0x0028b0: X86 mov al, byte ptr [esi]
0x0028c8: X86 mov word ptr [edi], ax
0x0028e0: X86 add esi, 1h
0x0028f8: X86 add edi, 2h
0x002910: X86 test al, al
0x002928: JNZ VM[0x0028b0] (fallthrough VM[0x002940])
0x002940: X86 lea esp, dword ptr [esp+10h]
0x002958: MOV SCRATCH, EBP
0x002988: ADD SCRATCH, 0x000008
0x0029a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0029b8: MOV EAX, SCRATCH
0x0029d0: MOV SCRATCH, ESP
0x002a00: ADD SCRATCH, 0x00001c
0x002a18: MOV DWORD PTR [SCRATCH], EAX
0x002a30: X86 popad 
0x002a48: X86 leave 
0x002a60: X86 ret 4h
0x002a78: X86 pushad 
0x002a90: X86 xor ecx, ecx
0x002aa8: X86 sub ecx, 87858700h
0x002ac0: X86 push ecx
0x002af0: X86 xor ecx, 2445465Ch
0x002b08: X86 push ecx
0x002b38: X86 mov esi, esp
0x002b68: MOV SCRATCH, EBP
0x002b98: ADD SCRATCH, 0x000008
0x002bb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002bc8: MOV EDI, SCRATCH
0x002be0: X86 cld 
0x002bf8: X86 xor eax, eax
0x002c10: X86 mov al, byte ptr [esi]
0x002c28: X86 mov word ptr [edi], ax
0x002c40: X86 add esi, 1h
0x002c58: X86 add edi, 2h
0x002c70: X86 test al, al
0x002c88: JNZ VM[0x002c10] (fallthrough VM[0x002ca0])
0x002ca0: X86 lea esp, dword ptr [esp+8h]
0x002cb8: MOV SCRATCH, EBP
0x002ce8: ADD SCRATCH, 0x000008
0x002d00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002d18: MOV EAX, SCRATCH
0x002d30: MOV SCRATCH, ESP
0x002d60: ADD SCRATCH, 0x00001c
0x002d78: MOV DWORD PTR [SCRATCH], EAX
0x002d90: X86 popad 
0x002da8: X86 leave 
0x002dc0: X86 ret 4h
0x002dd8: X86 pushad 
0x002df0: X86 xor ecx, ecx
0x002e08: X86 sub ecx, 0FF8F8AB3h
0x002e20: X86 push ecx
0x002e50: X86 xor ecx, 5C151624h
0x002e68: X86 push ecx
0x002e98: X86 add ecx, 19FFE0F3h
0x002eb0: X86 push ecx
0x002ee0: X86 mov esi, esp
0x002f10: MOV SCRATCH, EBP
0x002f40: ADD SCRATCH, 0x000008
0x002f58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x002f70: MOV EDI, SCRATCH
0x002f88: X86 cld 
0x002fa0: X86 xor eax, eax
0x002fb8: X86 mov al, byte ptr [esi]
0x002fd0: X86 mov word ptr [edi], ax
0x002fe8: X86 add esi, 1h
0x003000: X86 add edi, 2h
0x003018: X86 test al, al
0x003030: JNZ VM[0x002fb8] (fallthrough VM[0x003048])
0x003048: X86 lea esp, dword ptr [esp+0Ch]
0x003060: MOV SCRATCH, EBP
0x003090: ADD SCRATCH, 0x000008
0x0030a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0030c0: MOV EAX, SCRATCH
0x0030d8: MOV SCRATCH, ESP
0x003108: ADD SCRATCH, 0x00001c
0x003120: MOV DWORD PTR [SCRATCH], EAX
0x003138: X86 popad 
0x003150: X86 leave 
0x003168: X86 ret 4h
0x003180: X86 pushad 
0x003198: X86 xor ecx, ecx
0x0031b0: X86 sub ecx, 87858700h
0x0031c8: X86 push ecx
0x0031f8: X86 xor ecx, 0A150D63h
0x003210: X86 push ecx
0x003240: X86 add ecx, 0F302F501h
0x003258: X86 push ecx
0x003288: X86 sub ecx, 1FFB03h
0x0032a0: X86 push ecx
0x0032d0: X86 xor ecx, 83C0F2Dh
0x0032e8: X86 push ecx
0x003318: X86 add ecx, 0EEF7021Dh
0x003330: X86 push ecx
0x003360: X86 sub ecx, 0E6001F0Dh
0x003378: X86 push ecx
0x0033a8: X86 mov esi, esp
0x0033d8: MOV SCRATCH, EBP
0x003408: ADD SCRATCH, 0x000008
0x003420: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003438: MOV EDI, SCRATCH
0x003450: X86 cld 
0x003468: X86 xor eax, eax
0x003480: X86 mov al, byte ptr [esi]
0x003498: X86 mov word ptr [edi], ax
0x0034b0: X86 add esi, 1h
0x0034c8: X86 add edi, 2h
0x0034e0: X86 test al, al
0x0034f8: JNZ VM[0x003480] (fallthrough VM[0x003510])
0x003510: X86 lea esp, dword ptr [esp+1Ch]
0x003528: MOV SCRATCH, EBP
0x003558: ADD SCRATCH, 0x000008
0x003570: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003588: MOV EAX, SCRATCH
0x0035a0: MOV SCRATCH, ESP
0x0035d0: ADD SCRATCH, 0x00001c
0x0035e8: MOV DWORD PTR [SCRATCH], EAX
0x003600: X86 popad 
0x003618: X86 leave 
0x003630: X86 ret 4h
0x003648: X86 pushad 
0x003660: X86 mov esi, 41F1E0h
0x003678: MOV SCRATCH, EBP
0x0036a8: ADD SCRATCH, 0x000008
0x0036c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0036d8: MOV EDI, SCRATCH
0x0036f0: MOV SCRATCH, ESI
0x003720: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003738: MOV EAX, SCRATCH
0x003750: X86 sub esp, 4h
0x003768: MOV SCRATCH, ESP
0x003798: MOV DWORD PTR [SCRATCH], EAX
0x0037b0: MOV SCRATCH, 0x420344
0x0037e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0037f8: MOV EAX, SCRATCH
0x003810: X86 sub esp, 4h
0x003828: MOV SCRATCH, ESP
0x003858: MOV DWORD PTR [SCRATCH], EAX
0x003870: X86CALLOUT 0x408360
0x003888: MOV SCRATCH, EDI
0x0038b8: MOV DWORD PTR [SCRATCH], EAX
0x0038d0: X86 add esi, 4h
0x0038e8: X86 add edi, 4h
0x003900: X86 cmp dword ptr [esi], 0FFFFFFFFh
0x003918: JNZ VM[0x0036f0] (fallthrough VM[0x003930])
0x003930: X86 popad 
0x003948: X86 leave 
0x003960: X86 ret 4h
0x003978: X86 pushad 
0x003990: X86 mov esi, 41F26Ch
0x0039a8: MOV SCRATCH, EBP
0x0039d8: ADD SCRATCH, 0x000008
0x0039f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003a08: MOV EDI, SCRATCH
0x003a20: MOV SCRATCH, ESI
0x003a50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003a68: MOV EAX, SCRATCH
0x003a80: X86 sub esp, 4h
0x003a98: MOV SCRATCH, ESP
0x003ac8: MOV DWORD PTR [SCRATCH], EAX
0x003ae0: MOV SCRATCH, 0x420358
0x003b10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003b28: MOV EAX, SCRATCH
0x003b40: X86 sub esp, 4h
0x003b58: MOV SCRATCH, ESP
0x003b88: MOV DWORD PTR [SCRATCH], EAX
0x003ba0: X86CALLOUT 0x408360
0x003bb8: MOV SCRATCH, EDI
0x003be8: MOV DWORD PTR [SCRATCH], EAX
0x003c00: X86 add esi, 4h
0x003c18: X86 add edi, 4h
0x003c30: X86 cmp dword ptr [esi], 0FFFFFFFFh
0x003c48: JNZ VM[0x003a20] (fallthrough VM[0x003c60])
0x003c60: X86 popad 
0x003c78: X86 leave 
0x003c90: X86 ret 4h
0x003ca8: X86 pushad 
0x003cc0: X86 mov esi, 41F308h
0x003cd8: MOV SCRATCH, EBP
0x003d08: ADD SCRATCH, 0x000008
0x003d20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003d38: MOV EDI, SCRATCH
0x003d50: MOV SCRATCH, ESI
0x003d80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003d98: MOV EAX, SCRATCH
0x003db0: X86 sub esp, 4h
0x003dc8: MOV SCRATCH, ESP
0x003df8: MOV DWORD PTR [SCRATCH], EAX
0x003e10: X86 sub esp, 4h
0x003e28: MOV SCRATCH, 0x420350
0x003e58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x003e70: MOV EAX, SCRATCH
0x003e88: MOV SCRATCH, ESP
0x003eb8: MOV DWORD PTR [SCRATCH], EAX
0x003ed0: X86CALLOUT 0x408360
0x003ee8: MOV SCRATCH, EDI
0x003f18: MOV DWORD PTR [SCRATCH], EAX
0x003f30: X86 add esi, 4h
0x003f48: X86 add edi, 4h
0x003f60: X86 cmp dword ptr [esi], 0FFFFFFFFh
0x003f78: JNZ VM[0x003d50] (fallthrough VM[0x003f90])
0x003f90: X86 popad 
0x003fa8: X86 leave 
0x003fc0: X86 ret 4h
0x003fd8: X86 pushad 
0x003ff0: X86 mov esi, 41F33Ch
0x004008: MOV SCRATCH, EBP
0x004038: ADD SCRATCH, 0x000008
0x004050: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004068: MOV EDI, SCRATCH
0x004080: MOV SCRATCH, ESI
0x0040b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0040c8: MOV EAX, SCRATCH
0x0040e0: X86 sub esp, 4h
0x0040f8: MOV SCRATCH, ESP
0x004128: MOV DWORD PTR [SCRATCH], EAX
0x004140: X86 sub esp, 4h
0x004158: MOV SCRATCH, 0x420348
0x004188: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0041a0: MOV EAX, SCRATCH
0x0041b8: MOV SCRATCH, ESP
0x0041e8: MOV DWORD PTR [SCRATCH], EAX
0x004200: X86CALLOUT 0x408360
0x004218: MOV SCRATCH, EDI
0x004248: MOV DWORD PTR [SCRATCH], EAX
0x004260: X86 add esi, 4h
0x004278: X86 add edi, 4h
0x004290: X86 cmp dword ptr [esi], 0FFFFFFFFh
0x0042a8: JNZ VM[0x004080] (fallthrough VM[0x0042c0])
0x0042c0: X86 popad 
0x0042d8: X86 leave 
0x0042f0: X86 ret 4h
0x004308: MOV SCRATCH, EBP
0x004338: ADD SCRATCH, 0x000008
0x004350: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004368: MOV EAX, SCRATCH
0x004380: X86 mov dword ptr [eax], 1A5h
0x004398: X86 mov eax, 41F350h
0x0043b0: X86 leave 
0x0043c8: X86 ret 4h
0x0043e0: MOV SCRATCH, EBP
0x004410: ADD SCRATCH, 0x000008
0x004428: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004440: MOV EBX, SCRATCH
0x004458: MOV SCRATCH, EBX
0x004488: ADD SCRATCH, 0x00003c
0x0044a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0044b8: MOV EDI, SCRATCH
0x0044d0: X86 add edi, ebx
0x0044e8: MOV SCRATCH, EDI
0x004518: ADD SCRATCH, 0x0000a0
0x004530: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004548: MOV EAX, SCRATCH
0x004560: X86 test eax, eax
0x004578: JZ VM[0x004e00] (fallthrough VM[0x004590])
0x004590: X86 push esi
0x0045c0: X86 push eax
0x0045f0: X86 push ebx
0x004620: X86CALLOUT 0x4080b2
0x004638: X86 mov esi, eax
0x004668: MOV SCRATCH, EDI
0x004698: ADD SCRATCH, 0x000034
0x0046b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0046c8: MOV EAX, SCRATCH
0x0046e0: X86 add esi, ebx
0x0046f8: X86 cmp dword ptr [ebp+0Ch], eax
0x004710: JZ VM[0x004de8] (fallthrough VM[0x004728])
0x004728: MOV SCRATCH, EDI
0x004758: ADD SCRATCH, 0x0000a4
0x004770: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004788: MOV EDI, SCRATCH
0x0047a0: X86 sub eax, dword ptr [ebp+0Ch]
0x0047b8: X86 test edi, edi
0x0047d0: MOV SCRATCH, EBP
0x004800: ADD SCRATCH, 0x000008
0x004818: MOV DWORD PTR [SCRATCH], EDI
0x004830: MOV SCRATCH, EBP
0x004860: ADD SCRATCH, 0xfffffffc
0x004878: MOV DWORD PTR [SCRATCH], EAX
0x004890: JZ VM[0x004de8] (fallthrough VM[0x0048a8])
0x0048a8: MOV SCRATCH, ESI
0x0048d8: ADD SCRATCH, 0x000004
0x0048f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004908: MOV EDI, SCRATCH
0x004920: MOV SCRATCH, ESI
0x004950: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004968: PUSH SCRATCH
0x004980: MOV SCRATCH, ESI
0x0049b0: ADD SCRATCH, 0x000008
0x0049c8: MOV EAX, SCRATCH
0x0049e0: X86 sub edi, 8h
0x0049f8: X86 push ebx
0x004a28: X86 shr edi, 1h
0x004a40: MOV SCRATCH, EBP
0x004a70: ADD SCRATCH, 0x00000c
0x004a88: MOV DWORD PTR [SCRATCH], EAX
0x004aa0: X86CALLOUT 0x4080b2
0x004ab8: X86 add eax, ebx
0x004ad0: X86 test edi, edi
0x004ae8: JZ VM[0x004d10] (fallthrough VM[0x004b00])
0x004b00: MOV SCRATCH, EBP
0x004b30: ADD SCRATCH, 0x00000c
0x004b48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004b60: MOV ECX, SCRATCH
0x004b78: X86 movzx ecx, word ptr [ecx]
0x004b90: X86 mov edx, ecx
0x004bc0: X86 and dx, 0F000h
0x004bd8: X86 cmp dx, 3000h
0x004bf0: JNZ VM[0x004cc8] (fallthrough VM[0x004c08])
0x004c08: MOV SCRATCH, EBP
0x004c38: ADD SCRATCH, 0xfffffffc
0x004c50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004c68: MOV EDX, SCRATCH
0x004c80: X86 and ecx, 0FFFh
0x004c98: X86 add ecx, eax
0x004cb0: X86 sub dword ptr [ecx], edx
0x004cc8: X86 add dword ptr [ebp+0Ch], 2h
0x004ce0: X86 dec edi
0x004cf8: JNZ VM[0x004b00] (fallthrough VM[0x004d10])
0x004d10: MOV SCRATCH, ESI
0x004d40: ADD SCRATCH, 0x000004
0x004d58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004d70: MOV EAX, SCRATCH
0x004d88: X86 sub dword ptr [ebp+8h], eax
0x004da0: X86 add esi, eax
0x004db8: X86 cmp dword ptr [ebp+8h], 0h
0x004dd0: JNZ VM[0x0048a8] (fallthrough VM[0x004de8])
0x004de8: X86 pop esi
0x004e00: X86 pop edi
0x004e18: X86 mov eax, ebx
0x004e48: X86 pop ebx
0x004e60: X86 leave 
0x004e78: X86 ret 8h
0x004e90: MOV SCRATCH, 0x420370
0x004ec0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004ed8: MOV ESI, SCRATCH
0x004ef0: CRASH
0x004f08: MOV SCRATCH, EBP
0x004f38: ADD SCRATCH, 0x000008
0x004f50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004f68: PUSH SCRATCH
0x004f80: MOV SCRATCH, ESI
0x004fb0: ADD SCRATCH, 0x000008
0x004fc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x004fe0: PUSH SCRATCH
0x004ff8: X86JUMPOUT call dword ptr [40110Ch]
0x005010: X86 test eax, eax
0x005028: X86 pop ecx
0x005040: X86 pop ecx
0x005058: JZ VM[0x005bf8] (fallthrough VM[0x005070])
0x005070: MOV SCRATCH, ESI
0x0050a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0050b8: MOV ESI, SCRATCH
0x0050d0: X86 cmp esi, edi
0x0050e8: JNZ VM[0x004f08] (fallthrough VM[0x005100])
0x005100: X86 mov esi, 208h
0x005118: X86 push esi
0x005148: MOV SCRATCH, EBP
0x005178: ADD SCRATCH, 0xfffffbc0
0x005190: MOV EAX, SCRATCH
0x0051a8: X86 push edi
0x0051d8: X86 push eax
0x005208: X86CALLOUT 0x40ae80
0x005220: X86 push esi
0x005250: MOV SCRATCH, EBP
0x005280: ADD SCRATCH, 0xfffffdc8
0x005298: MOV EAX, SCRATCH
0x0052b0: X86 push edi
0x0052e0: X86 push eax
0x005310: X86CALLOUT 0x40ae80
0x005328: X86 push esi
0x005358: MOV SCRATCH, EBP
0x005388: ADD SCRATCH, 0xfffff5a8
0x0053a0: MOV EAX, SCRATCH
0x0053b8: X86 push edi
0x0053e8: X86 push eax
0x005418: X86CALLOUT 0x40ae80
0x005430: X86 add esp, 24h
0x005448: MOV SCRATCH, EBP
0x005478: ADD SCRATCH, 0xfffffdc8
0x005490: MOV EAX, SCRATCH
0x0054a8: X86 push eax
0x0054d8: MOV SCRATCH, EBP
0x005508: ADD SCRATCH, 0xffffffd0
0x005520: MOV EAX, SCRATCH
0x005538: X86 push eax
0x005568: MOV SCRATCH, 0x41ff34
0x005598: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0055b0: MOV EAX, SCRATCH
0x0055c8: X86 mov word ptr [ebp+0FFFFFDC8h], 53h
0x0055e0: X86 mov word ptr [ebp+0FFFFFDCAh], 59h
0x0055f8: X86 mov word ptr [ebp+0FFFFFDCCh], 53h
0x005610: X86 mov word ptr [ebp+0FFFFFDCEh], 54h
0x005628: X86 mov word ptr [ebp+0FFFFFDD0h], 45h
0x005640: X86 mov word ptr [ebp+0FFFFFDD2h], 4Dh
0x005658: X86 mov word ptr [ebp+0FFFFFDD4h], 52h
0x005670: X86 mov word ptr [ebp+0FFFFFDD6h], 4Fh
0x005688: X86 mov word ptr [ebp+0FFFFFDD8h], 4Fh
0x0056a0: X86 mov word ptr [ebp+0FFFFFDDAh], 54h
0x0056b8: X86 mov word ptr [ebp+0FFFFFBC0h], 73h
0x0056d0: X86 mov word ptr [ebp+0FFFFFBC2h], 79h
0x0056e8: X86 mov word ptr [ebp+0FFFFFBC4h], 73h
0x005700: X86 mov word ptr [ebp+0FFFFFBC6h], 74h
0x005718: X86 mov word ptr [ebp+0FFFFFBC8h], 65h
0x005730: X86 mov word ptr [ebp+0FFFFFBCAh], 6Dh
0x005748: X86 mov word ptr [ebp+0FFFFFBCCh], 33h
0x005760: X86 mov word ptr [ebp+0FFFFFBCEh], 32h
0x005778: X86JUMPOUT call dword ptr [eax+24h]
0x005790: MOV SCRATCH, EBP
0x0057c0: ADD SCRATCH, 0xfffff5a8
0x0057d8: MOV EAX, SCRATCH
0x0057f0: MOV SCRATCH, EBP
0x005820: ADD SCRATCH, 0xffffffe4
0x005838: MOV DWORD PTR [SCRATCH], EAX
0x005850: MOV SCRATCH, EBP
0x005880: ADD SCRATCH, 0xffffffe0
0x005898: MOV EAX, SCRATCH
0x0058b0: X86 push eax
0x0058e0: MOV SCRATCH, EBP
0x005910: ADD SCRATCH, 0xffffffd0
0x005928: MOV EAX, SCRATCH
0x005940: X86 push eax
0x005970: MOV SCRATCH, 0x41ff34
0x0059a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0059b8: MOV EAX, SCRATCH
0x0059d0: X86 push edi
0x005a00: X86 mov word ptr [ebp+0FFFFFFE0h], 206h
0x005a18: X86 mov word ptr [ebp+0FFFFFFE2h], si
0x005a30: X86JUMPOUT call dword ptr [eax+58h]
0x005a48: MOV SCRATCH, EBP
0x005a78: ADD SCRATCH, 0x000008
0x005a90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x005aa8: PUSH SCRATCH
0x005ac0: MOV SCRATCH, 0x41ff38
0x005af0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x005b08: MOV EAX, SCRATCH
0x005b20: X86JUMPOUT call dword ptr [eax+6Ch]
0x005b38: X86 cmp eax, edi
0x005b50: MOV SCRATCH, EBP
0x005b80: ADD SCRATCH, 0xfffffff0
0x005b98: MOV DWORD PTR [SCRATCH], EAX
0x005bb0: JNZ VM[0x005c88] (fallthrough VM[0x005bc8])
0x005bc8: X86 xor eax, eax
0x005be0: CRASH
0x005bf8: MOV SCRATCH, ESI
0x005c28: ADD SCRATCH, 0x000004
0x005c40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x005c58: MOV EAX, SCRATCH
0x005c70: CRASH
0x005c88: X86 push ebx
0x005cb8: X86 push esi
0x005ce8: MOV SCRATCH, EBP
0x005d18: ADD SCRATCH, 0xfffff9b8
0x005d30: MOV EAX, SCRATCH
0x005d48: X86 push edi
0x005d78: X86 push eax
0x005da8: X86CALLOUT 0x40ae80
0x005dc0: X86 push esi
0x005df0: MOV SCRATCH, EBP
0x005e20: ADD SCRATCH, 0xfffff7b0
0x005e38: MOV EAX, SCRATCH
0x005e50: X86 push edi
0x005e80: X86 push eax
0x005eb0: X86CALLOUT 0x40ae80
0x005ec8: X86 mov edi, 104h
0x005ee0: X86 push edi
0x005f10: MOV SCRATCH, EBP
0x005f40: ADD SCRATCH, 0xfffff5a8
0x005f58: MOV EAX, SCRATCH
0x005f70: X86 push eax
0x005fa0: MOV SCRATCH, EBP
0x005fd0: ADD SCRATCH, 0xfffff9b8
0x005fe8: MOV EAX, SCRATCH
0x006000: X86 push eax
0x006030: X86 mov word ptr [ebp+0FFFFF7B0h], 5Ch
0x006048: X86JUMPOUT call dword ptr [401110h]
0x006060: MOV SCRATCH, 0x401114
0x006090: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0060a8: MOV EBX, SCRATCH
0x0060c0: X86 push edi
0x0060f0: MOV SCRATCH, EBP
0x006120: ADD SCRATCH, 0xfffff7b0
0x006138: MOV EAX, SCRATCH
0x006150: X86 push eax
0x006180: MOV SCRATCH, EBP
0x0061b0: ADD SCRATCH, 0xfffff9b8
0x0061c8: MOV EAX, SCRATCH
0x0061e0: X86 push eax
0x006210: X86JUMPOUT call ebx
0x006228: X86 push edi
0x006258: MOV SCRATCH, EBP
0x006288: ADD SCRATCH, 0xfffffbc0
0x0062a0: MOV EAX, SCRATCH
0x0062b8: X86 push eax
0x0062e8: MOV SCRATCH, EBP
0x006318: ADD SCRATCH, 0xfffff9b8
0x006330: MOV EAX, SCRATCH
0x006348: X86 push eax
0x006378: X86JUMPOUT call ebx
0x006390: X86 push edi
0x0063c0: MOV SCRATCH, EBP
0x0063f0: ADD SCRATCH, 0xfffff7b0
0x006408: MOV EAX, SCRATCH
0x006420: X86 push eax
0x006450: MOV SCRATCH, EBP
0x006480: ADD SCRATCH, 0xfffff9b8
0x006498: MOV EAX, SCRATCH
0x0064b0: X86 push eax
0x0064e0: X86JUMPOUT call ebx
0x0064f8: X86 add esp, 48h
0x006510: X86 push edi
0x006540: MOV SCRATCH, EBP
0x006570: ADD SCRATCH, 0x000008
0x006588: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0065a0: PUSH SCRATCH
0x0065b8: MOV SCRATCH, EBP
0x0065e8: ADD SCRATCH, 0xfffff9b8
0x006600: MOV EAX, SCRATCH
0x006618: X86 push eax
0x006648: X86JUMPOUT call ebx
0x006660: X86 push esi
0x006690: X86 xor edi, edi
0x0066a8: MOV SCRATCH, EBP
0x0066d8: ADD SCRATCH, 0xfffffbc0
0x0066f0: MOV EAX, SCRATCH
0x006708: X86 push edi
0x006738: X86 push eax
0x006768: X86CALLOUT 0x40ae80
0x006780: X86 push esi
0x0067b0: MOV SCRATCH, EBP
0x0067e0: ADD SCRATCH, 0xfffffdc8
0x0067f8: MOV EAX, SCRATCH
0x006810: X86 push edi
0x006840: X86 push eax
0x006870: X86CALLOUT 0x40ae80
0x006888: X86 add esp, 24h
0x0068a0: X86 push edi
0x0068d0: X86 push edi
0x006900: MOV SCRATCH, 0x000003
0x006918: PUSH SCRATCH
0x006930: X86 push edi
0x006960: MOV SCRATCH, 0x000001
0x006978: PUSH SCRATCH
0x006990: MOV SCRATCH, 0x80000000
0x0069a8: PUSH SCRATCH
0x0069c0: MOV SCRATCH, EBP
0x0069f0: ADD SCRATCH, 0xfffff9b8
0x006a08: MOV EAX, SCRATCH
0x006a20: X86 push eax
0x006a50: X86CALLOUT 0x408933
0x006a68: X86 cmp eax, 0FFFFFFFFh
0x006a80: MOV SCRATCH, EBP
0x006ab0: ADD SCRATCH, 0xffffffdc
0x006ac8: MOV DWORD PTR [SCRATCH], EAX
0x006ae0: JNZ VM[0x006b28] (fallthrough VM[0x006af8])
0x006af8: X86 xor eax, eax
0x006b10: CRASH
0x006b28: X86 push edi
0x006b58: X86 push eax
0x006b88: X86CALLOUT 0x408cbe
0x006ba0: X86 mov ebx, eax
0x006bd0: X86 push ebx
0x006c00: MOV SCRATCH, EBP
0x006c30: ADD SCRATCH, 0xffffffd8
0x006c48: MOV DWORD PTR [SCRATCH], EBX
0x006c60: X86CALLOUT 0x408d2b
0x006c78: X86 push edi
0x006ca8: MOV SCRATCH, EBP
0x006cd8: ADD SCRATCH, 0xffffffe8
0x006cf0: MOV ECX, SCRATCH
0x006d08: X86 push ecx
0x006d38: X86 push ebx
0x006d68: X86 push eax
0x006d98: MOV SCRATCH, EBP
0x006dc8: ADD SCRATCH, 0xffffffdc
0x006de0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x006df8: PUSH SCRATCH
0x006e10: MOV SCRATCH, EBP
0x006e40: ADD SCRATCH, 0xfffffffc
0x006e58: MOV DWORD PTR [SCRATCH], EAX
0x006e70: X86CALLOUT 0x408c4e
0x006e88: MOV SCRATCH, 0x000040
0x006ea0: PUSH SCRATCH
0x006eb8: MOV SCRATCH, 0x001000
0x006ed0: PUSH SCRATCH
0x006ee8: X86 push ebx
0x006f18: X86 push edi
0x006f48: X86CALLOUT 0x408810
0x006f60: X86 cmp eax, edi
0x006f78: MOV SCRATCH, EBP
0x006fa8: ADD SCRATCH, 0xfffffff4
0x006fc0: MOV DWORD PTR [SCRATCH], EAX
0x006fd8: JZ VM[0x008e50] (fallthrough VM[0x006ff0])
0x006ff0: X86 push ebx
0x007020: MOV SCRATCH, EBP
0x007050: ADD SCRATCH, 0xfffffffc
0x007068: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007080: PUSH SCRATCH
0x007098: X86 push eax
0x0070c8: X86CALLOUT 0x40ae74
0x0070e0: MOV SCRATCH, EBP
0x007110: ADD SCRATCH, 0x000008
0x007128: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007140: MOV EAX, SCRATCH
0x007158: X86 add esp, 0Ch
0x007170: MOV SCRATCH, EAX
0x0071a0: ADD SCRATCH, 0x000002
0x0071b8: MOV ECX, SCRATCH
0x0071d0: X86 mov dx, word ptr [eax]
0x0071e8: X86 inc eax
0x007200: X86 inc eax
0x007218: X86 cmp dx, di
0x007230: JNZ VM[0x0071d0] (fallthrough VM[0x007248])
0x007248: X86 sub eax, ecx
0x007260: X86 sar eax, 1h
0x007278: MOV SCRATCH, EAX
0x0072a8: ADD SCRATCH, EAX
0x0072c0: ADD SCRATCH, 0x000002
0x0072d8: MOV EDI, SCRATCH
0x0072f0: X86 mov ebx, 420370h
0x007308: MOV SCRATCH, EBX
0x007338: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007350: MOV EAX, SCRATCH
0x007368: X86 test eax, eax
0x007380: JZ VM[0x007410] (fallthrough VM[0x007398])
0x007398: X86 mov ebx, eax
0x0073c8: X86 test ebx, ebx
0x0073e0: JNZ VM[0x007308] (fallthrough VM[0x0073f8])
0x0073f8: CRASH
0x007410: MOV SCRATCH, 0x00000c
0x007428: PUSH SCRATCH
0x007440: X86CALLOUT 0x408d2b
0x007458: MOV SCRATCH, EBP
0x007488: ADD SCRATCH, 0xfffffff4
0x0074a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0074b8: MOV ECX, SCRATCH
0x0074d0: MOV SCRATCH, EBX
0x007500: MOV DWORD PTR [SCRATCH], EAX
0x007518: X86 push edi
0x007548: MOV SCRATCH, EAX
0x007578: ADD SCRATCH, 0x000004
0x007590: MOV DWORD PTR [SCRATCH], ECX
0x0075a8: X86CALLOUT 0x408d2b
0x0075c0: MOV SCRATCH, EBX
0x0075f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007608: MOV ECX, SCRATCH
0x007620: MOV SCRATCH, ECX
0x007650: ADD SCRATCH, 0x000008
0x007668: MOV DWORD PTR [SCRATCH], EAX
0x007680: MOV SCRATCH, EBX
0x0076b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0076c8: MOV EAX, SCRATCH
0x0076e0: X86 push edi
0x007710: MOV SCRATCH, 0x000000
0x007728: PUSH SCRATCH
0x007740: MOV SCRATCH, EAX
0x007770: ADD SCRATCH, 0x000008
0x007788: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0077a0: PUSH SCRATCH
0x0077b8: X86CALLOUT 0x40ae80
0x0077d0: MOV SCRATCH, EBX
0x007800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007818: MOV EAX, SCRATCH
0x007830: X86 shr edi, 1h
0x007848: X86 push edi
0x007878: MOV SCRATCH, EBP
0x0078a8: ADD SCRATCH, 0x000008
0x0078c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0078d8: PUSH SCRATCH
0x0078f0: MOV SCRATCH, EAX
0x007920: ADD SCRATCH, 0x000008
0x007938: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007950: PUSH SCRATCH
0x007968: X86JUMPOUT call dword ptr [401110h]
0x007980: MOV SCRATCH, EBX
0x0079b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0079c8: MOV EAX, SCRATCH
0x0079e0: X86 add esp, 18h
0x0079f8: X86 and dword ptr [eax], 0h
0x007a10: MOV SCRATCH, EBP
0x007a40: ADD SCRATCH, 0xfffffff0
0x007a58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007a70: PUSH SCRATCH
0x007a88: MOV SCRATCH, EBP
0x007ab8: ADD SCRATCH, 0xfffffff4
0x007ad0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007ae8: PUSH SCRATCH
0x007b00: X86CALLOUT 0x404698
0x007b18: X86 push esi
0x007b48: X86 mov ebx, eax
0x007b78: MOV SCRATCH, EBP
0x007ba8: ADD SCRATCH, 0xfffff3a0
0x007bc0: MOV EAX, SCRATCH
0x007bd8: MOV SCRATCH, 0x000000
0x007bf0: PUSH SCRATCH
0x007c08: X86 push eax
0x007c38: X86CALLOUT 0x40ae80
0x007c50: X86 add esp, 0Ch
0x007c68: MOV SCRATCH, EBP
0x007c98: ADD SCRATCH, 0xfffff3a0
0x007cb0: MOV EAX, SCRATCH
0x007cc8: X86 push eax
0x007cf8: X86CALLOUT 0x40146e
0x007d10: X86 push eax
0x007d40: MOV SCRATCH, EBP
0x007d70: ADD SCRATCH, 0x000008
0x007d88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007da0: PUSH SCRATCH
0x007db8: X86CALLOUT 0x407e65
0x007dd0: X86 test eax, eax
0x007de8: JNZ VM[0x008a90] (fallthrough VM[0x007e00])
0x007e00: MOV SCRATCH, EBX
0x007e30: ADD SCRATCH, 0x00003c
0x007e48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x007e60: MOV EAX, SCRATCH
0x007e78: X86 add eax, ebx
0x007e90: X86 movzx edx, word ptr [eax+6h]
0x007ea8: X86 movzx ecx, word ptr [eax+14h]
0x007ec0: X86 xor esi, esi
0x007ed8: X86 test edx, edx
0x007ef0: MOV SCRATCH, EAX
0x007f20: ADD SCRATCH, ECX
0x007f38: ADD SCRATCH, 0x000018
0x007f50: MOV ECX, SCRATCH
0x007f68: MOV SCRATCH, EBP
0x007f98: ADD SCRATCH, 0xffffffec
0x007fb0: MOV DWORD PTR [SCRATCH], EDX
0x007fc8: JBE VM[0x008370] (fallthrough VM[0x007fe0])
0x007fe0: MOV SCRATCH, EAX
0x008010: ADD SCRATCH, 0x00002c
0x008028: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008040: MOV EAX, SCRATCH
0x008058: MOV SCRATCH, EBP
0x008088: ADD SCRATCH, 0x000008
0x0080a0: MOV DWORD PTR [SCRATCH], EAX
0x0080b8: MOV SCRATCH, ECX
0x0080e8: ADD SCRATCH, 0x00000c
0x008100: MOV EDX, SCRATCH
0x008118: MOV SCRATCH, EDX
0x008148: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008160: MOV EDI, SCRATCH
0x008178: X86 cmp edi, eax
0x008190: JA VM[0x008310] (fallthrough VM[0x0081a8])
0x0081a8: MOV SCRATCH, EDX
0x0081d8: ADD SCRATCH, 0xfffffffc
0x0081f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008208: MOV EAX, SCRATCH
0x008220: X86 add eax, edi
0x008238: X86 mov edi, eax
0x008268: MOV SCRATCH, EBP
0x008298: ADD SCRATCH, 0x000008
0x0082b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0082c8: MOV EAX, SCRATCH
0x0082e0: X86 cmp edi, eax
0x0082f8: JA VM[0x008370] (fallthrough VM[0x008310])
0x008310: X86 inc esi
0x008328: X86 add edx, 28h
0x008340: X86 cmp esi, dword ptr [ebp+0FFFFFFECh]
0x008358: JC VM[0x008118] (fallthrough VM[0x008370])
0x008370: X86 imul esi, esi, 28h
0x008388: MOV SCRATCH, EBP
0x0083b8: ADD SCRATCH, 0xfffffff8
0x0083d0: MOV EAX, SCRATCH
0x0083e8: X86 push eax
0x008418: X86 add esi, ecx
0x008430: MOV SCRATCH, ESI
0x008460: ADD SCRATCH, 0x00000c
0x008478: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008490: MOV EAX, SCRATCH
0x0084a8: X86 add eax, dword ptr [ebp+0FFFFFFF0h]
0x0084c0: MOV SCRATCH, 0x000040
0x0084d8: PUSH SCRATCH
0x0084f0: MOV SCRATCH, ESI
0x008520: ADD SCRATCH, 0x000008
0x008538: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008550: PUSH SCRATCH
0x008568: X86 push eax
0x008598: MOV SCRATCH, 0xffffffff
0x0085b0: PUSH SCRATCH
0x0085c8: X86CALLOUT 0x408c14
0x0085e0: MOV SCRATCH, ESI
0x008610: ADD SCRATCH, 0x000010
0x008628: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008640: PUSH SCRATCH
0x008658: MOV SCRATCH, ESI
0x008688: ADD SCRATCH, 0x000014
0x0086a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0086b8: MOV EAX, SCRATCH
0x0086d0: X86 add eax, ebx
0x0086e8: X86 push eax
0x008718: MOV SCRATCH, ESI
0x008748: ADD SCRATCH, 0x00000c
0x008760: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008778: MOV EAX, SCRATCH
0x008790: X86 add eax, dword ptr [ebp+0FFFFFFF0h]
0x0087a8: X86 push eax
0x0087d8: X86CALLOUT 0x40ae74
0x0087f0: X86 add esp, 0Ch
0x008808: MOV SCRATCH, EBP
0x008838: ADD SCRATCH, 0xfffffff8
0x008850: MOV EAX, SCRATCH
0x008868: X86 push eax
0x008898: MOV SCRATCH, EBP
0x0088c8: ADD SCRATCH, 0xfffffff8
0x0088e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0088f8: PUSH SCRATCH
0x008910: MOV SCRATCH, ESI
0x008940: ADD SCRATCH, 0x00000c
0x008958: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008970: MOV EAX, SCRATCH
0x008988: MOV SCRATCH, ESI
0x0089b8: ADD SCRATCH, 0x000008
0x0089d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0089e8: PUSH SCRATCH
0x008a00: X86 add eax, dword ptr [ebp+0FFFFFFF0h]
0x008a18: X86 push eax
0x008a48: MOV SCRATCH, 0xffffffff
0x008a60: PUSH SCRATCH
0x008a78: X86CALLOUT 0x408c14
0x008a90: X86 xor edi, edi
0x008aa8: X86 cmp dword ptr [ebp+0FFFFFFFCh], edi
0x008ac0: JZ VM[0x008cb8] (fallthrough VM[0x008ad8])
0x008ad8: MOV SCRATCH, EBP
0x008b08: ADD SCRATCH, 0xffffffd8
0x008b20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008b38: PUSH SCRATCH
0x008b50: X86 push edi
0x008b80: MOV SCRATCH, EBP
0x008bb0: ADD SCRATCH, 0xfffffffc
0x008bc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008be0: PUSH SCRATCH
0x008bf8: X86CALLOUT 0x40ae80
0x008c10: X86 add esp, 0Ch
0x008c28: MOV SCRATCH, EBP
0x008c58: ADD SCRATCH, 0xfffffffc
0x008c70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008c88: PUSH SCRATCH
0x008ca0: X86CALLOUT 0x408d5d
0x008cb8: MOV SCRATCH, EBP
0x008ce8: ADD SCRATCH, 0xffffffdc
0x008d00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008d18: PUSH SCRATCH
0x008d30: MOV SCRATCH, 0x41ff34
0x008d60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008d78: MOV EAX, SCRATCH
0x008d90: X86JUMPOUT call dword ptr [eax+3Ch]
0x008da8: X86 mov eax, ebx
0x008dd8: X86 pop ebx
0x008df0: X86 pop edi
0x008e08: X86 pop esi
0x008e20: X86 leave 
0x008e38: X86 ret 4h
0x008e50: X86 mov ebx, edi
0x008e80: CRASH
0x008e98: MOV SCRATCH, 0x2e50340b
0x008eb0: PUSH SCRATCH
0x008ec8: MOV SCRATCH, 0x420358
0x008ef8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x008f10: PUSH SCRATCH
0x008f28: X86CALLOUT 0x408360
0x008f40: X86 test eax, eax
0x008f58: JZ VM[0x009108] (fallthrough VM[0x008f70])
0x008f70: MOV SCRATCH, EBP
0x008fa0: ADD SCRATCH, 0xfffffffc
0x008fb8: MOV ECX, SCRATCH
0x008fd0: X86 push ecx
0x009000: MOV SCRATCH, 0xffffffff
0x009018: PUSH SCRATCH
0x009030: X86JUMPOUT call eax
0x009048: X86 test eax, eax
0x009060: JZ VM[0x009108] (fallthrough VM[0x009078])
0x009078: X86 cmp dword ptr [ebp+0FFFFFFFCh], 0h
0x009090: JZ VM[0x009108] (fallthrough VM[0x0090a8])
0x0090a8: X86 xor eax, eax
0x0090c0: X86 inc eax
0x0090d8: X86 leave 
0x0090f0: X86 ret 
0x009108: X86 xor eax, eax
0x009120: X86 leave 
0x009138: X86 ret 
0x009150: MOV SCRATCH, EBP
0x009180: ADD SCRATCH, 0xfffffffc
0x009198: MOV EAX, SCRATCH
0x0091b0: X86 push eax
0x0091e0: MOV SCRATCH, 0x41ff2c
0x009210: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009228: MOV EAX, SCRATCH
0x009240: MOV SCRATCH, 0x000008
0x009258: PUSH SCRATCH
0x009270: MOV SCRATCH, 0xffffffff
0x009288: PUSH SCRATCH
0x0092a0: X86JUMPOUT call dword ptr [eax]
0x0092b8: X86 test eax, eax
0x0092d0: JNZ VM[0x009318] (fallthrough VM[0x0092e8])
0x0092e8: X86 xor eax, eax
0x009300: CRASH
0x009318: MOV SCRATCH, EBP
0x009348: ADD SCRATCH, 0xfffffff8
0x009360: MOV EAX, SCRATCH
0x009378: X86 push eax
0x0093a8: MOV SCRATCH, 0x41ff2c
0x0093d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0093f0: MOV EAX, SCRATCH
0x009408: X86 push ebx
0x009438: X86 push ebx
0x009468: MOV SCRATCH, 0x000002
0x009480: PUSH SCRATCH
0x009498: MOV SCRATCH, EBP
0x0094c8: ADD SCRATCH, 0xfffffffc
0x0094e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0094f8: PUSH SCRATCH
0x009510: X86JUMPOUT call dword ptr [eax+4h]
0x009528: X86 test eax, eax
0x009540: JNZ VM[0x009600] (fallthrough VM[0x009558])
0x009558: MOV SCRATCH, 0x41ff38
0x009588: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0095a0: MOV EAX, SCRATCH
0x0095b8: X86JUMPOUT call dword ptr [eax+84h]
0x0095d0: X86 cmp eax, 7Ah
0x0095e8: JNZ VM[0x0092e8] (fallthrough VM[0x009600])
0x009600: MOV SCRATCH, 0x41ff38
0x009630: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009648: MOV EAX, SCRATCH
0x009660: X86 push esi
0x009690: MOV SCRATCH, EBP
0x0096c0: ADD SCRATCH, 0xfffffff8
0x0096d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0096f0: PUSH SCRATCH
0x009708: MOV SCRATCH, 0x000040
0x009720: PUSH SCRATCH
0x009738: X86JUMPOUT call dword ptr [eax+8Ch]
0x009750: X86 mov esi, eax
0x009780: X86 cmp esi, ebx
0x009798: JZ VM[0x00a0f8] (fallthrough VM[0x0097b0])
0x0097b0: MOV SCRATCH, EBP
0x0097e0: ADD SCRATCH, 0xfffffff8
0x0097f8: MOV EAX, SCRATCH
0x009810: X86 push eax
0x009840: MOV SCRATCH, EBP
0x009870: ADD SCRATCH, 0xfffffff8
0x009888: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0098a0: PUSH SCRATCH
0x0098b8: MOV SCRATCH, 0x41ff2c
0x0098e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009900: MOV EAX, SCRATCH
0x009918: X86 push esi
0x009948: MOV SCRATCH, 0x000002
0x009960: PUSH SCRATCH
0x009978: MOV SCRATCH, EBP
0x0099a8: ADD SCRATCH, 0xfffffffc
0x0099c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0099d8: PUSH SCRATCH
0x0099f0: X86JUMPOUT call dword ptr [eax+4h]
0x009a08: X86 test eax, eax
0x009a20: JNZ VM[0x009be8] (fallthrough VM[0x009a38])
0x009a38: MOV SCRATCH, 0x41ff38
0x009a68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009a80: MOV EAX, SCRATCH
0x009a98: X86 push esi
0x009ac8: X86JUMPOUT call dword ptr [eax+90h]
0x009ae0: MOV SCRATCH, EBP
0x009b10: ADD SCRATCH, 0xfffffffc
0x009b28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009b40: PUSH SCRATCH
0x009b58: MOV SCRATCH, 0x41ff34
0x009b88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009ba0: MOV EAX, SCRATCH
0x009bb8: X86JUMPOUT call dword ptr [eax+3Ch]
0x009bd0: CRASH
0x009be8: MOV SCRATCH, EBP
0x009c18: ADD SCRATCH, 0xfffffffc
0x009c30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009c48: PUSH SCRATCH
0x009c60: MOV SCRATCH, 0x41ff34
0x009c90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009ca8: MOV EAX, SCRATCH
0x009cc0: X86JUMPOUT call dword ptr [eax+3Ch]
0x009cd8: MOV SCRATCH, EBP
0x009d08: ADD SCRATCH, 0xfffffff4
0x009d20: MOV EAX, SCRATCH
0x009d38: X86 push eax
0x009d68: X86 push ebx
0x009d98: X86 push ebx
0x009dc8: X86 push ebx
0x009df8: X86 push ebx
0x009e28: X86 push ebx
0x009e58: X86 push ebx
0x009e88: MOV SCRATCH, 0x000220
0x009ea0: PUSH SCRATCH
0x009eb8: MOV SCRATCH, 0x000020
0x009ed0: PUSH SCRATCH
0x009ee8: MOV SCRATCH, 0x000002
0x009f00: PUSH SCRATCH
0x009f18: MOV SCRATCH, EBP
0x009f48: ADD SCRATCH, 0xffffffe8
0x009f60: MOV EAX, SCRATCH
0x009f78: X86 push eax
0x009fa8: MOV SCRATCH, 0x41ff2c
0x009fd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x009ff0: MOV EAX, SCRATCH
0x00a008: X86JUMPOUT call dword ptr [eax+8h]
0x00a020: X86 test eax, eax
0x00a038: JNZ VM[0x00a128] (fallthrough VM[0x00a050])
0x00a050: MOV SCRATCH, 0x41ff38
0x00a080: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a098: MOV EAX, SCRATCH
0x00a0b0: X86 push esi
0x00a0e0: X86JUMPOUT call dword ptr [eax+90h]
0x00a0f8: X86 xor eax, eax
0x00a110: CRASH
0x00a128: MOV SCRATCH, EBP
0x00a158: ADD SCRATCH, 0x000008
0x00a170: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a188: MOV EAX, SCRATCH
0x00a1a0: X86 push edi
0x00a1d0: MOV SCRATCH, EAX
0x00a200: MOV DWORD PTR [SCRATCH], EBX
0x00a218: X86 xor edi, edi
0x00a230: X86 cmp dword ptr [esi], ebx
0x00a248: JBE VM[0x00a620] (fallthrough VM[0x00a260])
0x00a260: MOV SCRATCH, ESI
0x00a290: ADD SCRATCH, 0x000004
0x00a2a8: MOV EAX, SCRATCH
0x00a2c0: MOV SCRATCH, EBP
0x00a2f0: ADD SCRATCH, 0xfffffff0
0x00a308: MOV DWORD PTR [SCRATCH], EAX
0x00a320: MOV SCRATCH, EBP
0x00a350: ADD SCRATCH, 0xfffffff0
0x00a368: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a380: MOV EAX, SCRATCH
0x00a398: MOV SCRATCH, EAX
0x00a3c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a3e0: PUSH SCRATCH
0x00a3f8: MOV SCRATCH, 0x41ff2c
0x00a428: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a440: MOV EAX, SCRATCH
0x00a458: MOV SCRATCH, EBP
0x00a488: ADD SCRATCH, 0xfffffff4
0x00a4a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a4b8: PUSH SCRATCH
0x00a4d0: X86JUMPOUT call dword ptr [eax+0Ch]
0x00a4e8: X86 test eax, eax
0x00a500: JNZ VM[0x00a590] (fallthrough VM[0x00a518])
0x00a518: X86 add dword ptr [ebp+0FFFFFFF0h], 8h
0x00a530: X86 inc edi
0x00a548: X86 cmp edi, dword ptr [esi]
0x00a560: JC VM[0x00a320] (fallthrough VM[0x00a578])
0x00a578: CRASH
0x00a590: MOV SCRATCH, EBP
0x00a5c0: ADD SCRATCH, 0x000008
0x00a5d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a5f0: MOV EAX, SCRATCH
0x00a608: X86 mov dword ptr [eax], 1h
0x00a620: MOV SCRATCH, EBP
0x00a650: ADD SCRATCH, 0xfffffff4
0x00a668: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a680: PUSH SCRATCH
0x00a698: MOV SCRATCH, 0x41ff2c
0x00a6c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a6e0: MOV EAX, SCRATCH
0x00a6f8: X86JUMPOUT call dword ptr [eax+14h]
0x00a710: MOV SCRATCH, 0x41ff38
0x00a740: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a758: MOV EAX, SCRATCH
0x00a770: X86 push esi
0x00a7a0: X86JUMPOUT call dword ptr [eax+90h]
0x00a7b8: MOV SCRATCH, 0x41ff38
0x00a7e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a800: MOV EAX, SCRATCH
0x00a818: X86JUMPOUT call dword ptr [eax+74h]
0x00a830: X86 and eax, 0FFh
0x00a848: X86 cmp eax, 6h
0x00a860: JC VM[0x00ba90] (fallthrough VM[0x00a878])
0x00a878: MOV SCRATCH, EBP
0x00a8a8: ADD SCRATCH, 0x000008
0x00a8c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a8d8: MOV EAX, SCRATCH
0x00a8f0: X86 cmp dword ptr [eax], ebx
0x00a908: JZ VM[0x00ba90] (fallthrough VM[0x00a920])
0x00a920: MOV SCRATCH, EBP
0x00a950: ADD SCRATCH, 0xfffffffc
0x00a968: MOV EAX, SCRATCH
0x00a980: X86 push eax
0x00a9b0: MOV SCRATCH, 0x41ff2c
0x00a9e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00a9f8: MOV EAX, SCRATCH
0x00aa10: MOV SCRATCH, 0x000008
0x00aa28: PUSH SCRATCH
0x00aa40: MOV SCRATCH, 0xffffffff
0x00aa58: PUSH SCRATCH
0x00aa70: X86JUMPOUT call dword ptr [eax]
0x00aa88: X86 test eax, eax
0x00aaa0: JZ VM[0x00ba90] (fallthrough VM[0x00aab8])
0x00aab8: MOV SCRATCH, EBP
0x00aae8: ADD SCRATCH, 0xfffffff8
0x00ab00: MOV EAX, SCRATCH
0x00ab18: X86 push eax
0x00ab48: MOV SCRATCH, 0x41ff2c
0x00ab78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ab90: MOV EAX, SCRATCH
0x00aba8: X86 push ebx
0x00abd8: X86 push ebx
0x00ac08: MOV SCRATCH, 0x000019
0x00ac20: PUSH SCRATCH
0x00ac38: MOV SCRATCH, EBP
0x00ac68: ADD SCRATCH, 0xfffffffc
0x00ac80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ac98: PUSH SCRATCH
0x00acb0: X86JUMPOUT call dword ptr [eax+4h]
0x00acc8: X86 test eax, eax
0x00ace0: JNZ VM[0x00aea8] (fallthrough VM[0x00acf8])
0x00acf8: MOV SCRATCH, 0x41ff38
0x00ad28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ad40: MOV EAX, SCRATCH
0x00ad58: X86JUMPOUT call dword ptr [eax+84h]
0x00ad70: X86 cmp eax, 7Ah
0x00ad88: JZ VM[0x00aea8] (fallthrough VM[0x00ada0])
0x00ada0: MOV SCRATCH, EBP
0x00add0: ADD SCRATCH, 0xfffffffc
0x00ade8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ae00: PUSH SCRATCH
0x00ae18: MOV SCRATCH, 0x41ff34
0x00ae48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ae60: MOV EAX, SCRATCH
0x00ae78: X86JUMPOUT call dword ptr [eax+3Ch]
0x00ae90: CRASH
0x00aea8: MOV SCRATCH, EBP
0x00aed8: ADD SCRATCH, 0xfffffff8
0x00aef0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00af08: PUSH SCRATCH
0x00af20: MOV SCRATCH, 0x41ff38
0x00af50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00af68: MOV EAX, SCRATCH
0x00af80: MOV SCRATCH, 0x000040
0x00af98: PUSH SCRATCH
0x00afb0: X86JUMPOUT call dword ptr [eax+8Ch]
0x00afc8: X86 mov esi, eax
0x00aff8: X86 cmp esi, ebx
0x00b010: JZ VM[0x00ada0] (fallthrough VM[0x00b028])
0x00b028: MOV SCRATCH, EBP
0x00b058: ADD SCRATCH, 0xfffffff8
0x00b070: MOV EAX, SCRATCH
0x00b088: X86 push eax
0x00b0b8: MOV SCRATCH, EBP
0x00b0e8: ADD SCRATCH, 0xfffffff8
0x00b100: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b118: PUSH SCRATCH
0x00b130: MOV SCRATCH, 0x41ff2c
0x00b160: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b178: MOV EAX, SCRATCH
0x00b190: X86 push esi
0x00b1c0: MOV SCRATCH, 0x000019
0x00b1d8: PUSH SCRATCH
0x00b1f0: MOV SCRATCH, EBP
0x00b220: ADD SCRATCH, 0xfffffffc
0x00b238: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b250: PUSH SCRATCH
0x00b268: X86JUMPOUT call dword ptr [eax+4h]
0x00b280: X86 test eax, eax
0x00b298: JNZ VM[0x00b460] (fallthrough VM[0x00b2b0])
0x00b2b0: MOV SCRATCH, EBP
0x00b2e0: ADD SCRATCH, 0xfffffffc
0x00b2f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b310: PUSH SCRATCH
0x00b328: MOV SCRATCH, 0x41ff34
0x00b358: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b370: MOV EAX, SCRATCH
0x00b388: X86JUMPOUT call dword ptr [eax+3Ch]
0x00b3a0: MOV SCRATCH, 0x41ff38
0x00b3d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b3e8: MOV EAX, SCRATCH
0x00b400: X86 push esi
0x00b430: X86JUMPOUT call dword ptr [eax+90h]
0x00b448: CRASH
0x00b460: MOV SCRATCH, 0x41ff2c
0x00b490: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b4a8: MOV EAX, SCRATCH
0x00b4c0: MOV SCRATCH, ESI
0x00b4f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b508: PUSH SCRATCH
0x00b520: MOV SCRATCH, EAX
0x00b550: ADD SCRATCH, 0x000010
0x00b568: MOV EDI, SCRATCH
0x00b580: X86JUMPOUT call dword ptr [eax+18h]
0x00b598: X86 mov al, byte ptr [eax]
0x00b5b0: X86 dec al
0x00b5c8: X86 movzx eax, al
0x00b5e0: X86 push eax
0x00b610: MOV SCRATCH, ESI
0x00b640: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b658: PUSH SCRATCH
0x00b670: X86JUMPOUT call dword ptr [edi]
0x00b688: MOV SCRATCH, EAX
0x00b6b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b6d0: MOV EDI, SCRATCH
0x00b6e8: MOV SCRATCH, EBP
0x00b718: ADD SCRATCH, 0xfffffffc
0x00b730: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b748: PUSH SCRATCH
0x00b760: MOV SCRATCH, 0x41ff34
0x00b790: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b7a8: MOV EAX, SCRATCH
0x00b7c0: X86JUMPOUT call dword ptr [eax+3Ch]
0x00b7d8: MOV SCRATCH, 0x41ff38
0x00b808: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b820: MOV EAX, SCRATCH
0x00b838: X86 push esi
0x00b868: X86JUMPOUT call dword ptr [eax+90h]
0x00b880: X86 cmp edi, 2000h
0x00b898: JNC VM[0x00b988] (fallthrough VM[0x00b8b0])
0x00b8b0: MOV SCRATCH, EBP
0x00b8e0: ADD SCRATCH, 0x000008
0x00b8f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b910: MOV EAX, SCRATCH
0x00b928: MOV SCRATCH, EAX
0x00b958: MOV DWORD PTR [SCRATCH], EBX
0x00b970: CRASH
0x00b988: MOV SCRATCH, EBP
0x00b9b8: ADD SCRATCH, 0x000008
0x00b9d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00b9e8: MOV ECX, SCRATCH
0x00ba00: X86 cmp edi, 3000h
0x00ba18: X86 sbb eax, eax
0x00ba30: X86 inc eax
0x00ba48: MOV SCRATCH, ECX
0x00ba78: MOV DWORD PTR [SCRATCH], EAX
0x00ba90: X86 xor eax, eax
0x00baa8: X86 inc eax
0x00bac0: X86 pop edi
0x00bad8: X86 pop esi
0x00baf0: X86 pop ebx
0x00bb08: X86 leave 
0x00bb20: X86 ret 4h
0x00bb38: MOV SCRATCH, EBP
0x00bb68: ADD SCRATCH, 0x00000c
0x00bb80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00bb98: MOV EBX, SCRATCH
0x00bbb0: X86 push ebx
0x00bbe0: MOV SCRATCH, 0x000002
0x00bbf8: PUSH SCRATCH
0x00bc10: MOV SCRATCH, EBP
0x00bc40: ADD SCRATCH, 0x000008
0x00bc58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00bc70: PUSH SCRATCH
0x00bc88: X86CALLOUT 0x40867a
0x00bca0: X86 mov edi, eax
0x00bcd0: MOV SCRATCH, EBX
0x00bd00: ADD SCRATCH, 0x000001
0x00bd18: MOV EAX, SCRATCH
0x00bd30: X86 push eax
0x00bd60: MOV SCRATCH, 0x000002
0x00bd78: PUSH SCRATCH
0x00bd90: MOV SCRATCH, EBP
0x00bdc0: ADD SCRATCH, 0x000008
0x00bdd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00bdf0: PUSH SCRATCH
0x00be08: X86 mov esi, 428h
0x00be20: X86 sub edi, esi
0x00be38: MOV SCRATCH, EBP
0x00be68: ADD SCRATCH, 0xfffffff4
0x00be80: MOV DWORD PTR [SCRATCH], EAX
0x00be98: X86CALLOUT 0x40867a
0x00beb0: X86 sub eax, esi
0x00bec8: MOV SCRATCH, EBP
0x00bef8: ADD SCRATCH, 0xfffffff8
0x00bf10: MOV DWORD PTR [SCRATCH], EAX
0x00bf28: MOV SCRATCH, EBX
0x00bf58: ADD SCRATCH, 0x000002
0x00bf70: MOV EAX, SCRATCH
0x00bf88: X86 push eax
0x00bfb8: MOV SCRATCH, 0x000002
0x00bfd0: PUSH SCRATCH
0x00bfe8: MOV SCRATCH, EBP
0x00c018: ADD SCRATCH, 0x000008
0x00c030: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c048: PUSH SCRATCH
0x00c060: MOV SCRATCH, EBP
0x00c090: ADD SCRATCH, 0xfffffff0
0x00c0a8: MOV DWORD PTR [SCRATCH], EAX
0x00c0c0: X86CALLOUT 0x40867a
0x00c0d8: X86 mov ebx, eax
0x00c108: MOV SCRATCH, EBP
0x00c138: ADD SCRATCH, 0x00000c
0x00c150: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c168: MOV EAX, SCRATCH
0x00c180: X86 add eax, 3h
0x00c198: X86 push eax
0x00c1c8: MOV SCRATCH, 0x000002
0x00c1e0: PUSH SCRATCH
0x00c1f8: MOV SCRATCH, EBP
0x00c228: ADD SCRATCH, 0x000008
0x00c240: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c258: PUSH SCRATCH
0x00c270: X86 sub ebx, esi
0x00c288: MOV SCRATCH, EBP
0x00c2b8: ADD SCRATCH, 0xffffffe8
0x00c2d0: MOV DWORD PTR [SCRATCH], EAX
0x00c2e8: X86CALLOUT 0x40867a
0x00c300: X86 sub eax, esi
0x00c318: MOV SCRATCH, EBP
0x00c348: ADD SCRATCH, 0xffffffec
0x00c360: MOV DWORD PTR [SCRATCH], EAX
0x00c378: X86 add eax, ebx
0x00c390: X86 add eax, dword ptr [ebp+0FFFFFFF8h]
0x00c3a8: X86 add eax, edi
0x00c3c0: X86 push eax
0x00c3f0: MOV SCRATCH, EBP
0x00c420: ADD SCRATCH, 0xffffffe4
0x00c438: MOV DWORD PTR [SCRATCH], EAX
0x00c450: MOV SCRATCH, 0x41ff38
0x00c480: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c498: MOV EAX, SCRATCH
0x00c4b0: MOV SCRATCH, 0x000040
0x00c4c8: PUSH SCRATCH
0x00c4e0: X86JUMPOUT call dword ptr [eax+8Ch]
0x00c4f8: X86 push edi
0x00c528: MOV SCRATCH, EBP
0x00c558: ADD SCRATCH, 0x00000c
0x00c570: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c588: PUSH SCRATCH
0x00c5a0: MOV SCRATCH, EBP
0x00c5d0: ADD SCRATCH, 0xfffffffc
0x00c5e8: MOV DWORD PTR [SCRATCH], EAX
0x00c600: MOV SCRATCH, 0x000002
0x00c618: PUSH SCRATCH
0x00c630: MOV SCRATCH, EBP
0x00c660: ADD SCRATCH, 0x000008
0x00c678: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c690: PUSH SCRATCH
0x00c6a8: X86CALLOUT 0x4085e7
0x00c6c0: X86 add eax, esi
0x00c6d8: X86 push eax
0x00c708: MOV SCRATCH, EBP
0x00c738: ADD SCRATCH, 0xfffffffc
0x00c750: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c768: PUSH SCRATCH
0x00c780: X86CALLOUT 0x40ae74
0x00c798: X86 add esp, 0Ch
0x00c7b0: MOV SCRATCH, EBP
0x00c7e0: ADD SCRATCH, 0xfffffff8
0x00c7f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c810: PUSH SCRATCH
0x00c828: MOV SCRATCH, EBP
0x00c858: ADD SCRATCH, 0xfffffff4
0x00c870: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c888: PUSH SCRATCH
0x00c8a0: MOV SCRATCH, 0x000002
0x00c8b8: PUSH SCRATCH
0x00c8d0: MOV SCRATCH, EBP
0x00c900: ADD SCRATCH, 0x000008
0x00c918: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00c930: PUSH SCRATCH
0x00c948: X86CALLOUT 0x4085e7
0x00c960: X86 add eax, esi
0x00c978: X86 push eax
0x00c9a8: MOV SCRATCH, EBP
0x00c9d8: ADD SCRATCH, 0xfffffffc
0x00c9f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ca08: MOV EAX, SCRATCH
0x00ca20: X86 add eax, edi
0x00ca38: X86 push eax
0x00ca68: X86CALLOUT 0x40ae74
0x00ca80: X86 add esp, 0Ch
0x00ca98: X86 push ebx
0x00cac8: MOV SCRATCH, EBP
0x00caf8: ADD SCRATCH, 0xfffffff0
0x00cb10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cb28: PUSH SCRATCH
0x00cb40: MOV SCRATCH, 0x000002
0x00cb58: PUSH SCRATCH
0x00cb70: MOV SCRATCH, EBP
0x00cba0: ADD SCRATCH, 0x000008
0x00cbb8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cbd0: PUSH SCRATCH
0x00cbe8: X86CALLOUT 0x4085e7
0x00cc00: MOV SCRATCH, EBP
0x00cc30: ADD SCRATCH, 0xfffffff8
0x00cc48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cc60: MOV ECX, SCRATCH
0x00cc78: X86 add eax, esi
0x00cc90: X86 push eax
0x00ccc0: MOV SCRATCH, EBP
0x00ccf0: ADD SCRATCH, 0xfffffffc
0x00cd08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cd20: MOV EAX, SCRATCH
0x00cd38: X86 add eax, ecx
0x00cd50: X86 add eax, edi
0x00cd68: X86 push eax
0x00cd98: X86CALLOUT 0x40ae74
0x00cdb0: X86 add esp, 0Ch
0x00cdc8: MOV SCRATCH, EBP
0x00cdf8: ADD SCRATCH, 0xffffffec
0x00ce10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ce28: PUSH SCRATCH
0x00ce40: MOV SCRATCH, EBP
0x00ce70: ADD SCRATCH, 0xffffffe8
0x00ce88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cea0: PUSH SCRATCH
0x00ceb8: MOV SCRATCH, 0x000002
0x00ced0: PUSH SCRATCH
0x00cee8: MOV SCRATCH, EBP
0x00cf18: ADD SCRATCH, 0x000008
0x00cf30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cf48: PUSH SCRATCH
0x00cf60: X86CALLOUT 0x4085e7
0x00cf78: X86 add eax, esi
0x00cf90: MOV SCRATCH, EBP
0x00cfc0: ADD SCRATCH, 0xfffffffc
0x00cfd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00cff0: MOV ESI, SCRATCH
0x00d008: X86 push eax
0x00d038: MOV SCRATCH, EBX
0x00d068: ADD SCRATCH, ESI
0x00d080: MOV EAX, SCRATCH
0x00d098: X86 add eax, dword ptr [ebp+0FFFFFFF8h]
0x00d0b0: X86 add eax, edi
0x00d0c8: X86 push eax
0x00d0f8: X86CALLOUT 0x40ae74
0x00d110: MOV SCRATCH, EBP
0x00d140: ADD SCRATCH, 0x000010
0x00d158: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00d170: MOV EAX, SCRATCH
0x00d188: MOV SCRATCH, EBP
0x00d1b8: ADD SCRATCH, 0xffffffe4
0x00d1d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00d1e8: MOV ECX, SCRATCH
0x00d200: X86 add esp, 0Ch
0x00d218: X86 pop edi
0x00d230: MOV SCRATCH, EAX
0x00d260: MOV DWORD PTR [SCRATCH], ECX
0x00d278: X86 mov eax, esi
0x00d2a8: X86 pop esi
0x00d2c0: X86 pop ebx
0x00d2d8: X86 leave 
0x00d2f0: X86 ret 0Ch
0x00d308: MOV SCRATCH, 0xc9cef3e4
0x00d320: PUSH SCRATCH
0x00d338: X86CALLOUT 0x409edc
0x00d350: X86 test eax, eax
0x00d368: JZ VM[0x00d3c8] (fallthrough VM[0x00d380])
0x00d380: MOV SCRATCH, 0x000000
0x00d398: PUSH SCRATCH
0x00d3b0: X86CALLOUT 0x408bde
0x00d3c8: X86 ret 
0x00d3e0: X86 xor eax, eax
0x00d3f8: MOV SCRATCH, EBP
0x00d428: ADD SCRATCH, 0xffffffcc
0x00d440: MOV EDI, SCRATCH
0x00d458: X86 stosd dword ptr es:[edi]
0x00d470: X86 stosd dword ptr es:[edi]
0x00d488: X86 stosd dword ptr es:[edi]
0x00d4a0: MOV SCRATCH, 0x42035c
0x00d4d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00d4e8: PUSH SCRATCH
0x00d500: MOV SCRATCH, 0x41ff34
0x00d530: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00d548: MOV EAX, SCRATCH
0x00d560: X86JUMPOUT call dword ptr [eax+3Ch]
0x00d578: MOV SCRATCH, EBP
0x00d5a8: ADD SCRATCH, 0xfffffffc
0x00d5c0: MOV DWORD PTR [SCRATCH], ESI
0x00d5d8: X86 mov dword ptr [ebp+0FFFFF484h], 0C0000008h
0x00d5f0: MOV SCRATCH, 0x0002cc
0x00d608: PUSH SCRATCH
0x00d620: X86 push esi
0x00d650: MOV SCRATCH, EBP
0x00d680: ADD SCRATCH, 0xfffff4d4
0x00d698: MOV EAX, SCRATCH
0x00d6b0: X86 push eax
0x00d6e0: X86CALLOUT 0x40ae80
0x00d6f8: X86 add esp, 0Ch
0x00d710: X86 mov dword ptr [ebp+0FFFFF4ECh], 9Bh
0x00d728: X86 mov dword ptr [ebp+0FFFFF4D4h], 10017h
0x00d740: MOV SCRATCH, EBP
0x00d770: ADD SCRATCH, 0xfffff598
0x00d788: MOV DWORD PTR [SCRATCH], ESP
0x00d7a0: X86 xor eax, eax
0x00d7b8: X86 mov ax, cs
0x00d7d0: MOV SCRATCH, EBP
0x00d800: ADD SCRATCH, 0xfffff590
0x00d818: MOV DWORD PTR [SCRATCH], EAX
0x00d830: X86 mov ax, ss
0x00d848: MOV SCRATCH, EBP
0x00d878: ADD SCRATCH, 0xfffff59c
0x00d890: MOV DWORD PTR [SCRATCH], EAX
0x00d8a8: X86 mov ax, fs
0x00d8c0: MOV SCRATCH, EBP
0x00d8f0: ADD SCRATCH, 0xfffff564
0x00d908: MOV DWORD PTR [SCRATCH], EAX
0x00d920: X86 mov ax, ds
0x00d938: MOV SCRATCH, EBP
0x00d968: ADD SCRATCH, 0xfffff56c
0x00d980: MOV DWORD PTR [SCRATCH], EAX
0x00d998: X86 mov dword ptr [ebp+0FFFFFFC0h], 1h
0x00d9b0: X86 or dword ptr [ebp+0FFFFFFFCh], 0FFFFFFFFh
0x00d9c8: CRASH
0x00d9e0: MOV SCRATCH, EBP
0x00da10: ADD SCRATCH, 0xffffffdc
0x00da28: MOV EAX, SCRATCH
0x00da40: X86 push eax
0x00da70: MOV SCRATCH, 0x000004
0x00da88: PUSH SCRATCH
0x00daa0: MOV SCRATCH, EBP
0x00dad0: ADD SCRATCH, 0xffffffe0
0x00dae8: MOV EAX, SCRATCH
0x00db00: X86 push eax
0x00db30: MOV SCRATCH, 0x000007
0x00db48: PUSH SCRATCH
0x00db60: MOV SCRATCH, 0xffffffff
0x00db78: PUSH SCRATCH
0x00db90: MOV SCRATCH, 0x41ff34
0x00dbc0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00dbd8: MOV EAX, SCRATCH
0x00dbf0: X86JUMPOUT call dword ptr [eax+4h]
0x00dc08: X86 test eax, eax
0x00dc20: JNZ VM[0x00dcb0] (fallthrough VM[0x00dc38])
0x00dc38: X86 cmp dword ptr [ebp+0FFFFFFE0h], esi
0x00dc50: JZ VM[0x00dcb0] (fallthrough VM[0x00dc68])
0x00dc68: X86 rdtsc 
0x00dc80: X86 cpuid 
0x00dc98: X86JUMPOUT call eax
0x00dcb0: MOV SCRATCH, EBP
0x00dce0: ADD SCRATCH, 0xffffffdc
0x00dcf8: MOV EAX, SCRATCH
0x00dd10: X86 push eax
0x00dd40: MOV SCRATCH, 0x000004
0x00dd58: PUSH SCRATCH
0x00dd70: MOV SCRATCH, EBP
0x00dda0: ADD SCRATCH, 0xffffffe0
0x00ddb8: MOV EAX, SCRATCH
0x00ddd0: X86 push eax
0x00de00: MOV SCRATCH, 0x00001e
0x00de18: PUSH SCRATCH
0x00de30: MOV SCRATCH, 0xffffffff
0x00de48: PUSH SCRATCH
0x00de60: MOV SCRATCH, 0x41ff34
0x00de90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00dea8: MOV EAX, SCRATCH
0x00dec0: X86JUMPOUT call dword ptr [eax+4h]
0x00ded8: X86 test eax, eax
0x00def0: JNZ VM[0x00df80] (fallthrough VM[0x00df08])
0x00df08: X86 cmp dword ptr [ebp+0FFFFFFE0h], esi
0x00df20: JZ VM[0x00df80] (fallthrough VM[0x00df38])
0x00df38: X86 rdtsc 
0x00df50: X86 cpuid 
0x00df68: X86JUMPOUT call eax
0x00df80: X86CALLOUT 0x404f4c
0x00df98: MOV SCRATCH, EBP
0x00dfc8: ADD SCRATCH, 0xffffffcc
0x00dfe0: MOV EAX, SCRATCH
0x00dff8: X86 push eax
0x00e028: X86CALLOUT 0x4076c2
0x00e040: X86 mov edi, 208h
0x00e058: X86 push edi
0x00e088: X86 push esi
0x00e0b8: MOV SCRATCH, EBP
0x00e0e8: ADD SCRATCH, 0xfffff7a0
0x00e100: MOV EAX, SCRATCH
0x00e118: X86 push eax
0x00e148: X86CALLOUT 0x40ae80
0x00e160: X86 push edi
0x00e190: X86 push esi
0x00e1c0: MOV SCRATCH, EBP
0x00e1f0: ADD SCRATCH, 0xfffffbb0
0x00e208: MOV EAX, SCRATCH
0x00e220: X86 push eax
0x00e250: X86CALLOUT 0x40ae80
0x00e268: X86 add esp, 18h
0x00e280: MOV SCRATCH, EBP
0x00e2b0: ADD SCRATCH, 0xfffff7a0
0x00e2c8: MOV EAX, SCRATCH
0x00e2e0: X86 push eax
0x00e310: X86 mov ebx, 104h
0x00e328: X86 push ebx
0x00e358: MOV SCRATCH, 0x41ff38
0x00e388: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00e3a0: MOV EAX, SCRATCH
0x00e3b8: X86JUMPOUT call dword ptr [eax+50h]
0x00e3d0: X86 push edi
0x00e400: X86 push esi
0x00e430: MOV SCRATCH, EBP
0x00e460: ADD SCRATCH, 0xfffffdb8
0x00e478: MOV EAX, SCRATCH
0x00e490: X86 push eax
0x00e4c0: X86CALLOUT 0x40ae80
0x00e4d8: X86 add esp, 0Ch
0x00e4f0: X86 mov word ptr [ebp+0FFFFFDB8h], 74h
0x00e508: X86 mov word ptr [ebp+0FFFFFDBAh], 6Dh
0x00e520: X86 mov word ptr [ebp+0FFFFFDBCh], 70h
0x00e538: MOV SCRATCH, EBP
0x00e568: ADD SCRATCH, 0xfffffbb0
0x00e580: MOV EAX, SCRATCH
0x00e598: X86 push eax
0x00e5c8: X86 push esi
0x00e5f8: MOV SCRATCH, EBP
0x00e628: ADD SCRATCH, 0xfffffdb8
0x00e640: MOV EAX, SCRATCH
0x00e658: X86 push eax
0x00e688: MOV SCRATCH, EBP
0x00e6b8: ADD SCRATCH, 0xfffff7a0
0x00e6d0: MOV EAX, SCRATCH
0x00e6e8: X86 push eax
0x00e718: MOV SCRATCH, 0x41ff38
0x00e748: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00e760: MOV EAX, SCRATCH
0x00e778: X86JUMPOUT call dword ptr [eax+4Ch]
0x00e790: X86 push edi
0x00e7c0: X86 push esi
0x00e7f0: MOV SCRATCH, EBP
0x00e820: ADD SCRATCH, 0xfffff9a8
0x00e838: MOV EAX, SCRATCH
0x00e850: X86 push eax
0x00e880: X86CALLOUT 0x40ae80
0x00e898: X86 add esp, 0Ch
0x00e8b0: MOV SCRATCH, 0x41ff38
0x00e8e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00e8f8: MOV EAX, SCRATCH
0x00e910: MOV SCRATCH, EAX
0x00e940: ADD SCRATCH, 0x000048
0x00e958: MOV EDI, SCRATCH
0x00e970: X86 push ebx
0x00e9a0: MOV SCRATCH, EBP
0x00e9d0: ADD SCRATCH, 0xfffff9a8
0x00e9e8: MOV ECX, SCRATCH
0x00ea00: X86 push ecx
0x00ea30: X86 push esi
0x00ea60: X86JUMPOUT call dword ptr [eax+78h]
0x00ea78: X86 push eax
0x00eaa8: X86JUMPOUT call dword ptr [edi]
0x00eac0: X86 mov ax, word ptr [ebp+0FFFFF9A8h]
0x00ead8: X86 cmp ax, word ptr [ebp+0FFFFFBB0h]
0x00eaf0: JNZ VM[0x00ee50] (fallthrough VM[0x00eb08])
0x00eb08: X86 cmp dword ptr [ebp+0FFFFFFD4h], 9h
0x00eb20: JZ VM[0x00ee50] (fallthrough VM[0x00eb38])
0x00eb38: X86 cmp dword ptr [ebp+0FFFFFFD4h], 0Ah
0x00eb50: JZ VM[0x00ee50] (fallthrough VM[0x00eb68])
0x00eb68: MOV SCRATCH, 0x000001
0x00eb80: PUSH SCRATCH
0x00eb98: MOV SCRATCH, EBP
0x00ebc8: ADD SCRATCH, 0xfffffbb0
0x00ebe0: MOV EAX, SCRATCH
0x00ebf8: X86 push eax
0x00ec28: MOV SCRATCH, EBP
0x00ec58: ADD SCRATCH, 0xfffff9a8
0x00ec70: MOV EAX, SCRATCH
0x00ec88: X86 push eax
0x00ecb8: MOV SCRATCH, 0x41ff38
0x00ece8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ed00: MOV EAX, SCRATCH
0x00ed18: X86JUMPOUT call dword ptr [eax+44h]
0x00ed30: X86 test eax, eax
0x00ed48: JNZ VM[0x00ee50] (fallthrough VM[0x00ed60])
0x00ed60: MOV SCRATCH, 0x41ff38
0x00ed90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00eda8: MOV EAX, SCRATCH
0x00edc0: X86JUMPOUT call dword ptr [eax+84h]
0x00edd8: X86 cmp eax, 5h
0x00edf0: JNZ VM[0x00ee50] (fallthrough VM[0x00ee08])
0x00ee08: X86 push esi
0x00ee38: X86CALLOUT 0x408bde
0x00ee50: X86 mov eax, dword ptr fs:[30h]
0x00ee68: MOV SCRATCH, EAX
0x00ee98: ADD SCRATCH, 0x000008
0x00eeb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00eec8: MOV EAX, SCRATCH
0x00eee0: MOV SCRATCH, EAX
0x00ef10: ADD SCRATCH, 0x00003c
0x00ef28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00ef40: MOV EDI, SCRATCH
0x00ef58: X86 add edi, eax
0x00ef70: X86CALLOUT 0x404b76
0x00ef88: X86 test eax, eax
0x00efa0: JZ VM[0x00fac8] (fallthrough VM[0x00efb8])
0x00efb8: MOV SCRATCH, EBP
0x00efe8: ADD SCRATCH, 0xffffffd8
0x00f000: MOV EAX, SCRATCH
0x00f018: X86 push eax
0x00f048: MOV SCRATCH, 0x000005
0x00f060: PUSH SCRATCH
0x00f078: X86 push esi
0x00f0a8: MOV SCRATCH, 0x41ff38
0x00f0d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f0f0: MOV EAX, SCRATCH
0x00f108: X86JUMPOUT call dword ptr [eax+78h]
0x00f120: X86 push eax
0x00f150: X86CALLOUT 0x404e1f
0x00f168: X86 mov ebx, eax
0x00f198: MOV SCRATCH, EDI
0x00f1c8: ADD SCRATCH, 0x000008
0x00f1e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f1f8: MOV EAX, SCRATCH
0x00f210: MOV SCRATCH, EBP
0x00f240: ADD SCRATCH, 0xffffffe4
0x00f258: MOV DWORD PTR [SCRATCH], EAX
0x00f270: MOV SCRATCH, 0x000005
0x00f288: PUSH SCRATCH
0x00f2a0: X86 pop ecx
0x00f2b8: X86 add eax, dword ptr [edi+8h]
0x00f2d0: MOV SCRATCH, EBP
0x00f300: ADD SCRATCH, 0xffffffe4
0x00f318: MOV DWORD PTR [SCRATCH], EAX
0x00f330: X86 dec ecx
0x00f348: JNZ VM[0x00f2b8] (fallthrough VM[0x00f360])
0x00f360: MOV SCRATCH, 0x000004
0x00f378: PUSH SCRATCH
0x00f390: MOV SCRATCH, EBP
0x00f3c0: ADD SCRATCH, 0xffffffe4
0x00f3d8: MOV EAX, SCRATCH
0x00f3f0: X86 push eax
0x00f420: MOV SCRATCH, EBP
0x00f450: ADD SCRATCH, 0xffffffd8
0x00f468: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f480: PUSH SCRATCH
0x00f498: X86 push ebx
0x00f4c8: X86CALLOUT 0x409bc8
0x00f4e0: MOV SCRATCH, EBP
0x00f510: ADD SCRATCH, 0xffffffd8
0x00f528: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f540: MOV EAX, SCRATCH
0x00f558: X86 add eax, 0FFFFFE00h
0x00f570: MOV SCRATCH, 0x000040
0x00f588: PUSH SCRATCH
0x00f5a0: MOV SCRATCH, 0x001000
0x00f5b8: PUSH SCRATCH
0x00f5d0: X86 push eax
0x00f600: X86 push esi
0x00f630: X86CALLOUT 0x408810
0x00f648: MOV SCRATCH, EBP
0x00f678: ADD SCRATCH, 0xffffffc8
0x00f690: MOV DWORD PTR [SCRATCH], EAX
0x00f6a8: MOV SCRATCH, EBP
0x00f6d8: ADD SCRATCH, 0xffffffd8
0x00f6f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f708: MOV EAX, SCRATCH
0x00f720: X86 add eax, 0FFFFFE00h
0x00f738: X86 push eax
0x00f768: MOV SCRATCH, EBX
0x00f798: ADD SCRATCH, 0x000200
0x00f7b0: MOV EAX, SCRATCH
0x00f7c8: X86 push eax
0x00f7f8: MOV SCRATCH, EBP
0x00f828: ADD SCRATCH, 0xffffffc8
0x00f840: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f858: PUSH SCRATCH
0x00f870: X86CALLOUT 0x40ae74
0x00f888: MOV SCRATCH, EBP
0x00f8b8: ADD SCRATCH, 0xffffffd8
0x00f8d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00f8e8: PUSH SCRATCH
0x00f900: X86 push esi
0x00f930: X86 push ebx
0x00f960: X86CALLOUT 0x409a67
0x00f978: X86 add esp, 18h
0x00f990: X86 push ebx
0x00f9c0: MOV SCRATCH, 0x41ff38
0x00f9f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00fa08: MOV EAX, SCRATCH
0x00fa20: X86JUMPOUT call dword ptr [eax+90h]
0x00fa38: MOV SCRATCH, EBP
0x00fa68: ADD SCRATCH, 0xffffffc8
0x00fa80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00fa98: PUSH SCRATCH
0x00fab0: X86CALLOUT 0x401935
0x00fac8: MOV SCRATCH, EBP
0x00faf8: ADD SCRATCH, 0xffffffc4
0x00fb10: MOV EAX, SCRATCH
0x00fb28: X86 push eax
0x00fb58: X86CALLOUT 0x404bc2
0x00fb70: X86 test eax, eax
0x00fb88: JNZ VM[0x00fbe8] (fallthrough VM[0x00fba0])
0x00fba0: X86 push esi
0x00fbd0: X86CALLOUT 0x408bde
0x00fbe8: MOV SCRATCH, EBP
0x00fc18: ADD SCRATCH, 0xffffffd8
0x00fc30: MOV EAX, SCRATCH
0x00fc48: X86 push eax
0x00fc78: MOV SCRATCH, 0x000001
0x00fc90: PUSH SCRATCH
0x00fca8: X86 push esi
0x00fcd8: MOV SCRATCH, 0x41ff38
0x00fd08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00fd20: MOV EAX, SCRATCH
0x00fd38: X86JUMPOUT call dword ptr [eax+78h]
0x00fd50: X86 push eax
0x00fd80: X86CALLOUT 0x404e1f
0x00fd98: X86 mov ebx, eax
0x00fdc8: MOV SCRATCH, EDI
0x00fdf8: ADD SCRATCH, 0x000008
0x00fe10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x00fe28: MOV EAX, SCRATCH
0x00fe40: MOV SCRATCH, EBP
0x00fe70: ADD SCRATCH, 0xffffffe4
0x00fe88: MOV DWORD PTR [SCRATCH], EAX
0x00fea0: X86 add eax, dword ptr [edi+8h]
0x00feb8: MOV SCRATCH, EBP
0x00fee8: ADD SCRATCH, 0xffffffe4
0x00ff00: MOV DWORD PTR [SCRATCH], EAX
0x00ff18: MOV SCRATCH, 0x000004
0x00ff30: PUSH SCRATCH
0x00ff48: MOV SCRATCH, EBP
0x00ff78: ADD SCRATCH, 0xffffffe4
0x00ff90: MOV EAX, SCRATCH
0x00ffa8: X86 push eax
0x00ffd8: MOV SCRATCH, EBP
0x010008: ADD SCRATCH, 0xffffffd8
0x010020: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010038: MOV EDI, SCRATCH
0x010050: X86 push edi
0x010080: X86 push ebx
0x0100b0: X86CALLOUT 0x409bc8
0x0100c8: MOV SCRATCH, EDI
0x0100f8: ADD SCRATCH, 0xfffffe00
0x010110: MOV EAX, SCRATCH
0x010128: X86 push eax
0x010158: MOV SCRATCH, EBX
0x010188: ADD SCRATCH, 0x000200
0x0101a0: MOV EAX, SCRATCH
0x0101b8: X86 push eax
0x0101e8: X86 cmp dword ptr [ebp+0FFFFFFC4h], esi
0x010200: JZ VM[0x010248] (fallthrough VM[0x010218])
0x010218: X86JUMPOUT call dword ptr [ebp+0FFFFFFCCh]
0x010230: CRASH
0x010248: X86JUMPOUT call dword ptr [ebp+0FFFFFFD0h]
0x010260: X86 push edi
0x010290: X86 push esi
0x0102c0: X86 push ebx
0x0102f0: X86CALLOUT 0x409a67
0x010308: X86 add esp, 0Ch
0x010320: X86 push esi
0x010350: X86CALLOUT 0x408bde
0x010368: X86 xor eax, eax
0x010380: X86CALLOUT 0x40aec7
0x010398: X86 ret 8h
0x0103b0: MOV SCRATCH, EBP
0x0103e0: ADD SCRATCH, 0xfffffff0
0x0103f8: MOV EAX, SCRATCH
0x010410: X86 push eax
0x010440: MOV SCRATCH, 0x41ff2c
0x010470: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010488: MOV EAX, SCRATCH
0x0104a0: MOV SCRATCH, 0x000008
0x0104b8: PUSH SCRATCH
0x0104d0: MOV SCRATCH, 0xffffffff
0x0104e8: PUSH SCRATCH
0x010500: X86JUMPOUT call dword ptr [eax]
0x010518: MOV SCRATCH, EBP
0x010548: ADD SCRATCH, 0xfffffffc
0x010560: MOV EAX, SCRATCH
0x010578: X86 push eax
0x0105a8: MOV SCRATCH, 0x41ff2c
0x0105d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0105f0: MOV EAX, SCRATCH
0x010608: X86 xor ebx, ebx
0x010620: X86 push ebx
0x010650: X86 push ebx
0x010680: MOV SCRATCH, 0x000001
0x010698: PUSH SCRATCH
0x0106b0: MOV SCRATCH, EBP
0x0106e0: ADD SCRATCH, 0xfffffff0
0x0106f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010710: PUSH SCRATCH
0x010728: X86JUMPOUT call dword ptr [eax+4h]
0x010740: MOV SCRATCH, EBP
0x010770: ADD SCRATCH, 0xfffffffc
0x010788: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0107a0: PUSH SCRATCH
0x0107b8: MOV SCRATCH, 0x41ff38
0x0107e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010800: MOV EAX, SCRATCH
0x010818: MOV SCRATCH, 0x000040
0x010830: PUSH SCRATCH
0x010848: X86JUMPOUT call dword ptr [eax+8Ch]
0x010860: MOV SCRATCH, EBP
0x010890: ADD SCRATCH, 0xfffffffc
0x0108a8: MOV ECX, SCRATCH
0x0108c0: X86 push ecx
0x0108f0: MOV SCRATCH, EBP
0x010920: ADD SCRATCH, 0xfffffffc
0x010938: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010950: PUSH SCRATCH
0x010968: MOV SCRATCH, EBP
0x010998: ADD SCRATCH, 0xffffffec
0x0109b0: MOV DWORD PTR [SCRATCH], EAX
0x0109c8: X86 push eax
0x0109f8: MOV SCRATCH, 0x41ff2c
0x010a28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010a40: MOV EAX, SCRATCH
0x010a58: MOV SCRATCH, 0x000001
0x010a70: PUSH SCRATCH
0x010a88: MOV SCRATCH, EBP
0x010ab8: ADD SCRATCH, 0xfffffff0
0x010ad0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010ae8: PUSH SCRATCH
0x010b00: X86JUMPOUT call dword ptr [eax+4h]
0x010b18: MOV SCRATCH, EBP
0x010b48: ADD SCRATCH, 0xfffffff0
0x010b60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010b78: PUSH SCRATCH
0x010b90: MOV SCRATCH, 0x41ff34
0x010bc0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010bd8: MOV EAX, SCRATCH
0x010bf0: X86JUMPOUT call dword ptr [eax+3Ch]
0x010c08: MOV SCRATCH, 0x000004
0x010c20: PUSH SCRATCH
0x010c38: X86 mov edi, 1000h
0x010c50: X86 push edi
0x010c80: X86 mov esi, 10000h
0x010c98: X86 push esi
0x010cc8: X86 push ebx
0x010cf8: MOV SCRATCH, EBP
0x010d28: ADD SCRATCH, 0xfffffff8
0x010d40: MOV DWORD PTR [SCRATCH], ESI
0x010d58: X86CALLOUT 0x408810
0x010d70: X86 mov ebx, eax
0x010da0: MOV SCRATCH, EBP
0x010dd0: ADD SCRATCH, 0xfffffffc
0x010de8: MOV EAX, SCRATCH
0x010e00: X86 push eax
0x010e30: X86 push esi
0x010e60: CRASH
0x010e78: X86 push ebx
0x010ea8: X86CALLOUT 0x408e07
0x010ec0: X86 add dword ptr [ebp+0FFFFFFF8h], esi
0x010ed8: MOV SCRATCH, 0x000004
0x010ef0: PUSH SCRATCH
0x010f08: X86 push edi
0x010f38: MOV SCRATCH, EBP
0x010f68: ADD SCRATCH, 0xfffffff8
0x010f80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x010f98: PUSH SCRATCH
0x010fb0: MOV SCRATCH, 0x000000
0x010fc8: PUSH SCRATCH
0x010fe0: X86CALLOUT 0x408810
0x010ff8: X86 mov ebx, eax
0x011028: MOV SCRATCH, 0x41ff38
0x011058: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011070: MOV EAX, SCRATCH
0x011088: MOV SCRATCH, 0x000032
0x0110a0: PUSH SCRATCH
0x0110b8: X86JUMPOUT call dword ptr [eax+38h]
0x0110d0: MOV SCRATCH, EBP
0x011100: ADD SCRATCH, 0xfffffffc
0x011118: MOV EAX, SCRATCH
0x011130: X86 push eax
0x011160: MOV SCRATCH, EBP
0x011190: ADD SCRATCH, 0xfffffff8
0x0111a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0111c0: PUSH SCRATCH
0x0111d8: MOV SCRATCH, 0x41ff34
0x011208: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011220: MOV EAX, SCRATCH
0x011238: X86 push ebx
0x011268: MOV SCRATCH, 0x000005
0x011280: PUSH SCRATCH
0x011298: X86JUMPOUT call dword ptr [eax]
0x0112b0: X86 test eax, eax
0x0112c8: JNZ VM[0x010e78] (fallthrough VM[0x0112e0])
0x0112e0: X86 and dword ptr [ebp+0FFFFFFF8h], eax
0x0112f8: MOV SCRATCH, 0x000208
0x011310: PUSH SCRATCH
0x011328: X86 push eax
0x011358: MOV SCRATCH, EBP
0x011388: ADD SCRATCH, 0xfffffddc
0x0113a0: MOV EAX, SCRATCH
0x0113b8: X86 push eax
0x0113e8: X86CALLOUT 0x40ae80
0x011400: X86 add esp, 0Ch
0x011418: MOV SCRATCH, EBP
0x011448: ADD SCRATCH, 0xfffffddc
0x011460: MOV EAX, SCRATCH
0x011478: X86 push eax
0x0114a8: X86CALLOUT 0x401370
0x0114c0: MOV SCRATCH, EBP
0x0114f0: ADD SCRATCH, 0xffffffe8
0x011508: MOV DWORD PTR [SCRATCH], EBX
0x011520: X86 cmp word ptr [ebx+38h], 0h
0x011538: JZ VM[0x012738] (fallthrough VM[0x011550])
0x011550: MOV SCRATCH, EBX
0x011580: ADD SCRATCH, 0x00003c
0x011598: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0115b0: MOV EDX, SCRATCH
0x0115c8: X86 test edx, edx
0x0115e0: JZ VM[0x012738] (fallthrough VM[0x0115f8])
0x0115f8: MOV SCRATCH, EBP
0x011628: ADD SCRATCH, 0xfffffddc
0x011640: MOV EAX, SCRATCH
0x011658: MOV SCRATCH, EAX
0x011688: ADD SCRATCH, 0x000002
0x0116a0: MOV ESI, SCRATCH
0x0116b8: X86 mov cx, word ptr [eax]
0x0116d0: X86 inc eax
0x0116e8: X86 inc eax
0x011700: X86 test cx, cx
0x011718: JNZ VM[0x0116b8] (fallthrough VM[0x011730])
0x011730: X86 sub eax, esi
0x011748: X86 sar eax, 1h
0x011760: X86 push eax
0x011790: MOV SCRATCH, EBP
0x0117c0: ADD SCRATCH, 0xfffffddc
0x0117d8: MOV EAX, SCRATCH
0x0117f0: X86 push eax
0x011820: X86 push edx
0x011850: X86JUMPOUT call dword ptr [4010FCh]
0x011868: X86 add esp, 0Ch
0x011880: X86 test eax, eax
0x011898: JNZ VM[0x012738] (fallthrough VM[0x0118b0])
0x0118b0: MOV SCRATCH, EBX
0x0118e0: ADD SCRATCH, 0x000044
0x0118f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011910: PUSH SCRATCH
0x011928: X86 push eax
0x011958: MOV SCRATCH, 0x41ff38
0x011988: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0119a0: MOV EAX, SCRATCH
0x0119b8: MOV SCRATCH, 0x000400
0x0119d0: PUSH SCRATCH
0x0119e8: X86JUMPOUT call dword ptr [eax]
0x011a00: X86 mov edi, eax
0x011a30: X86 test edi, edi
0x011a48: JZ VM[0x012738] (fallthrough VM[0x011a60])
0x011a60: MOV SCRATCH, EBP
0x011a90: ADD SCRATCH, 0xfffffff4
0x011aa8: MOV EAX, SCRATCH
0x011ac0: X86 push eax
0x011af0: MOV SCRATCH, 0x41ff2c
0x011b20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011b38: MOV EAX, SCRATCH
0x011b50: MOV SCRATCH, 0x000008
0x011b68: PUSH SCRATCH
0x011b80: X86 push edi
0x011bb0: X86JUMPOUT call dword ptr [eax]
0x011bc8: X86 test eax, eax
0x011be0: JNZ VM[0x011cb8] (fallthrough VM[0x011bf8])
0x011bf8: MOV SCRATCH, 0x41ff34
0x011c28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011c40: MOV EAX, SCRATCH
0x011c58: X86 push edi
0x011c88: X86JUMPOUT call dword ptr [eax+3Ch]
0x011ca0: CRASH
0x011cb8: MOV SCRATCH, EBP
0x011ce8: ADD SCRATCH, 0xfffffffc
0x011d00: MOV EAX, SCRATCH
0x011d18: X86 push eax
0x011d48: MOV SCRATCH, 0x41ff2c
0x011d78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011d90: MOV EAX, SCRATCH
0x011da8: MOV SCRATCH, 0x000000
0x011dc0: PUSH SCRATCH
0x011dd8: MOV SCRATCH, 0x000000
0x011df0: PUSH SCRATCH
0x011e08: MOV SCRATCH, 0x000001
0x011e20: PUSH SCRATCH
0x011e38: MOV SCRATCH, EBP
0x011e68: ADD SCRATCH, 0xfffffff4
0x011e80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011e98: PUSH SCRATCH
0x011eb0: X86JUMPOUT call dword ptr [eax+4h]
0x011ec8: MOV SCRATCH, EBP
0x011ef8: ADD SCRATCH, 0xfffffffc
0x011f10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011f28: PUSH SCRATCH
0x011f40: MOV SCRATCH, 0x41ff38
0x011f70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x011f88: MOV EAX, SCRATCH
0x011fa0: MOV SCRATCH, 0x000040
0x011fb8: PUSH SCRATCH
0x011fd0: X86JUMPOUT call dword ptr [eax+8Ch]
0x011fe8: X86 mov esi, eax
0x012018: MOV SCRATCH, EBP
0x012048: ADD SCRATCH, 0xfffffffc
0x012060: MOV EAX, SCRATCH
0x012078: X86 push eax
0x0120a8: MOV SCRATCH, EBP
0x0120d8: ADD SCRATCH, 0xfffffffc
0x0120f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012108: PUSH SCRATCH
0x012120: MOV SCRATCH, 0x41ff2c
0x012150: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012168: MOV EAX, SCRATCH
0x012180: X86 push esi
0x0121b0: MOV SCRATCH, 0x000001
0x0121c8: PUSH SCRATCH
0x0121e0: MOV SCRATCH, EBP
0x012210: ADD SCRATCH, 0xfffffff4
0x012228: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012240: PUSH SCRATCH
0x012258: X86JUMPOUT call dword ptr [eax+4h]
0x012270: MOV SCRATCH, EBP
0x0122a0: ADD SCRATCH, 0xfffffff4
0x0122b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0122d0: PUSH SCRATCH
0x0122e8: MOV SCRATCH, EBP
0x012318: ADD SCRATCH, 0xffffffe4
0x012330: MOV DWORD PTR [SCRATCH], EAX
0x012348: MOV SCRATCH, 0x41ff34
0x012378: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012390: MOV EAX, SCRATCH
0x0123a8: X86JUMPOUT call dword ptr [eax+3Ch]
0x0123c0: MOV SCRATCH, 0x41ff34
0x0123f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012408: MOV EAX, SCRATCH
0x012420: X86 push edi
0x012450: X86JUMPOUT call dword ptr [eax+3Ch]
0x012468: X86 cmp dword ptr [ebp+0FFFFFFE4h], 0h
0x012480: JNZ VM[0x012558] (fallthrough VM[0x012498])
0x012498: MOV SCRATCH, 0x41ff38
0x0124c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0124e0: MOV EAX, SCRATCH
0x0124f8: X86 push esi
0x012528: X86JUMPOUT call dword ptr [eax+90h]
0x012540: CRASH
0x012558: MOV SCRATCH, EBP
0x012588: ADD SCRATCH, 0xffffffec
0x0125a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0125b8: MOV EAX, SCRATCH
0x0125d0: MOV SCRATCH, EAX
0x012600: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012618: PUSH SCRATCH
0x012630: MOV SCRATCH, 0x41ff2c
0x012660: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012678: MOV EAX, SCRATCH
0x012690: MOV SCRATCH, ESI
0x0126c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0126d8: PUSH SCRATCH
0x0126f0: X86JUMPOUT call dword ptr [eax+0Ch]
0x012708: X86 test eax, eax
0x012720: JNZ VM[0x0127f8] (fallthrough VM[0x012738])
0x012738: MOV SCRATCH, EBX
0x012768: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012780: MOV EAX, SCRATCH
0x012798: X86 test eax, eax
0x0127b0: JZ VM[0x0128d0] (fallthrough VM[0x0127c8])
0x0127c8: X86 add ebx, eax
0x0127e0: CRASH
0x0127f8: MOV SCRATCH, EBX
0x012828: ADD SCRATCH, 0x000044
0x012840: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012858: MOV EAX, SCRATCH
0x012870: MOV SCRATCH, EBP
0x0128a0: ADD SCRATCH, 0xfffffff8
0x0128b8: MOV DWORD PTR [SCRATCH], EAX
0x0128d0: MOV SCRATCH, EBP
0x012900: ADD SCRATCH, 0xffffffec
0x012918: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012930: PUSH SCRATCH
0x012948: MOV SCRATCH, 0x41ff38
0x012978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012990: MOV EAX, SCRATCH
0x0129a8: X86JUMPOUT call dword ptr [eax+90h]
0x0129c0: MOV SCRATCH, EBP
0x0129f0: ADD SCRATCH, 0xffffffe8
0x012a08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012a20: PUSH SCRATCH
0x012a38: X86CALLOUT 0x408e07
0x012a50: MOV SCRATCH, EBP
0x012a80: ADD SCRATCH, 0xfffffff8
0x012a98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x012ab0: MOV EAX, SCRATCH
0x012ac8: X86 pop edi
0x012ae0: X86 pop esi
0x012af8: X86 pop ebx
0x012b10: X86 leave 
0x012b28: X86 ret 
0x012b40: X86 xor eax, eax
0x012b58: MOV SCRATCH, EBP
0x012b88: ADD SCRATCH, 0xfffffff0
0x012ba0: MOV EDI, SCRATCH
0x012bb8: X86 stosd dword ptr es:[edi]
0x012bd0: X86 stosd dword ptr es:[edi]
0x012be8: X86 stosd dword ptr es:[edi]
0x012c00: X86 stosd dword ptr es:[edi]
0x012c18: MOV SCRATCH, 0x000044
0x012c30: PUSH SCRATCH
0x012c48: X86 xor edi, edi
0x012c60: MOV SCRATCH, EBP
0x012c90: ADD SCRATCH, 0xffffffac
0x012ca8: MOV EAX, SCRATCH
0x012cc0: X86 push edi
0x012cf0: X86 push eax
0x012d20: X86CALLOUT 0x40ae80
0x012d38: X86 mov esi, 208h
0x012d50: X86 push esi
0x012d80: MOV SCRATCH, EBP
0x012db0: ADD SCRATCH, 0xfffffb9c
0x012dc8: MOV EAX, SCRATCH
0x012de0: X86 push edi
0x012e10: X86 push eax
0x012e40: X86CALLOUT 0x40ae80
0x012e58: X86 push esi
0x012e88: MOV SCRATCH, EBP
0x012eb8: ADD SCRATCH, 0xfffffda4
0x012ed0: MOV EAX, SCRATCH
0x012ee8: X86 push edi
0x012f18: X86 push eax
0x012f48: X86CALLOUT 0x40ae80
0x012f60: X86 add esp, 24h
0x012f78: MOV SCRATCH, EBP
0x012fa8: ADD SCRATCH, 0xfffffb9c
0x012fc0: MOV EAX, SCRATCH
0x012fd8: X86 push eax
0x013008: X86CALLOUT 0x401370
0x013020: X86 mov esi, 104h
0x013038: X86 push esi
0x013068: MOV SCRATCH, EBP
0x013098: ADD SCRATCH, 0xfffffda4
0x0130b0: MOV EAX, SCRATCH
0x0130c8: X86 push eax
0x0130f8: MOV SCRATCH, 0x41ff38
0x013128: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013140: MOV EAX, SCRATCH
0x013158: X86JUMPOUT call dword ptr [eax+54h]
0x013170: MOV SCRATCH, 0x401114
0x0131a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0131b8: MOV EBX, SCRATCH
0x0131d0: X86 push esi
0x013200: MOV SCRATCH, EBP
0x013230: ADD SCRATCH, 0xfffffda4
0x013248: MOV EAX, SCRATCH
0x013260: MOV SCRATCH, 0x40116c
0x013278: PUSH SCRATCH
0x013290: X86 push eax
0x0132c0: X86JUMPOUT call ebx
0x0132d8: X86 push esi
0x013308: MOV SCRATCH, EBP
0x013338: ADD SCRATCH, 0xfffffb9c
0x013350: MOV EAX, SCRATCH
0x013368: X86 push eax
0x013398: MOV SCRATCH, EBP
0x0133c8: ADD SCRATCH, 0xfffffda4
0x0133e0: MOV EAX, SCRATCH
0x0133f8: X86 push eax
0x013428: X86JUMPOUT call ebx
0x013440: X86 add esp, 18h
0x013458: MOV SCRATCH, EBP
0x013488: ADD SCRATCH, 0xfffffff0
0x0134a0: MOV EAX, SCRATCH
0x0134b8: X86 push eax
0x0134e8: MOV SCRATCH, EBP
0x013518: ADD SCRATCH, 0xffffffac
0x013530: MOV EAX, SCRATCH
0x013548: X86 push eax
0x013578: X86 push edi
0x0135a8: X86 push edi
0x0135d8: MOV SCRATCH, 0x1000004
0x0135f0: PUSH SCRATCH
0x013608: X86 push edi
0x013638: X86 push edi
0x013668: X86 push edi
0x013698: MOV SCRATCH, EBP
0x0136c8: ADD SCRATCH, 0xfffffda4
0x0136e0: MOV EAX, SCRATCH
0x0136f8: X86 push eax
0x013728: MOV SCRATCH, 0x41ff38
0x013758: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013770: MOV EAX, SCRATCH
0x013788: X86 push edi
0x0137b8: X86JUMPOUT call dword ptr [eax+20h]
0x0137d0: MOV SCRATCH, 0x41ff38
0x013800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013818: MOV EAX, SCRATCH
0x013830: MOV SCRATCH, 0x00012c
0x013848: PUSH SCRATCH
0x013860: X86JUMPOUT call dword ptr [eax+38h]
0x013878: MOV SCRATCH, 0x000fa0
0x013890: PUSH SCRATCH
0x0138a8: MOV SCRATCH, 0x000002
0x0138c0: PUSH SCRATCH
0x0138d8: MOV SCRATCH, EBP
0x013908: ADD SCRATCH, 0x00000c
0x013920: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013938: PUSH SCRATCH
0x013950: MOV SCRATCH, EBP
0x013980: ADD SCRATCH, 0x000008
0x013998: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0139b0: PUSH SCRATCH
0x0139c8: MOV SCRATCH, EBP
0x0139f8: ADD SCRATCH, 0xfffffff4
0x013a10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013a28: PUSH SCRATCH
0x013a40: MOV SCRATCH, EBP
0x013a70: ADD SCRATCH, 0xfffffff0
0x013a88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013aa0: PUSH SCRATCH
0x013ab8: X86CALLOUT 0x4097f5
0x013ad0: MOV SCRATCH, EBP
0x013b00: ADD SCRATCH, 0xfffffff4
0x013b18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013b30: PUSH SCRATCH
0x013b48: MOV SCRATCH, 0x41ff34
0x013b78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013b90: MOV EAX, SCRATCH
0x013ba8: X86JUMPOUT call dword ptr [eax+3Ch]
0x013bc0: MOV SCRATCH, EBP
0x013bf0: ADD SCRATCH, 0xfffffff0
0x013c08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013c20: PUSH SCRATCH
0x013c38: MOV SCRATCH, 0x41ff34
0x013c68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013c80: MOV EAX, SCRATCH
0x013c98: X86JUMPOUT call dword ptr [eax+3Ch]
0x013cb0: X86 pop edi
0x013cc8: X86 xor eax, eax
0x013ce0: X86 pop esi
0x013cf8: X86 inc eax
0x013d10: X86 pop ebx
0x013d28: X86 leave 
0x013d40: X86 ret 0Ch
0x013d58: MOV SCRATCH, 0x000000
0x013d70: PUSH SCRATCH
0x013d88: MOV SCRATCH, EBP
0x013db8: ADD SCRATCH, 0x00000c
0x013dd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013de8: PUSH SCRATCH
0x013e00: MOV SCRATCH, EBP
0x013e30: ADD SCRATCH, 0x000008
0x013e48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x013e60: PUSH SCRATCH
0x013e78: X86CALLOUT 0x4054c8
0x013e90: X86 pop ebp
0x013ea8: X86 ret 8h
0x013ec0: X86 xor eax, eax
0x013ed8: MOV SCRATCH, EBP
0x013f08: ADD SCRATCH, 0xffffffe8
0x013f20: MOV EDI, SCRATCH
0x013f38: X86 stosd dword ptr es:[edi]
0x013f50: X86 stosd dword ptr es:[edi]
0x013f68: X86 stosd dword ptr es:[edi]
0x013f80: MOV SCRATCH, 0x000044
0x013f98: PUSH SCRATCH
0x013fb0: X86 stosd dword ptr es:[edi]
0x013fc8: MOV SCRATCH, EBP
0x013ff8: ADD SCRATCH, 0xffffff40
0x014010: MOV EAX, SCRATCH
0x014028: X86 push ebx
0x014058: X86 push eax
0x014088: X86CALLOUT 0x40ae80
0x0140a0: X86 mov edi, 208h
0x0140b8: X86 push edi
0x0140e8: MOV SCRATCH, EBP
0x014118: ADD SCRATCH, 0xfffffb30
0x014130: MOV EAX, SCRATCH
0x014148: X86 push ebx
0x014178: X86 push eax
0x0141a8: X86CALLOUT 0x40ae80
0x0141c0: X86 push edi
0x0141f0: MOV SCRATCH, EBP
0x014220: ADD SCRATCH, 0xfffffd38
0x014238: MOV EAX, SCRATCH
0x014250: X86 push ebx
0x014280: X86 push eax
0x0142b0: X86CALLOUT 0x40ae80
0x0142c8: X86 add esp, 24h
0x0142e0: MOV SCRATCH, EBP
0x014310: ADD SCRATCH, 0xfffffb30
0x014328: MOV EAX, SCRATCH
0x014340: X86 push eax
0x014370: X86CALLOUT 0x401370
0x014388: X86 mov esi, 104h
0x0143a0: X86 push esi
0x0143d0: MOV SCRATCH, EBP
0x014400: ADD SCRATCH, 0xfffffd38
0x014418: MOV EAX, SCRATCH
0x014430: X86 push eax
0x014460: MOV SCRATCH, 0x41ff38
0x014490: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0144a8: MOV EAX, SCRATCH
0x0144c0: X86JUMPOUT call dword ptr [eax+54h]
0x0144d8: X86 push esi
0x014508: MOV SCRATCH, EBP
0x014538: ADD SCRATCH, 0xfffffd38
0x014550: MOV EAX, SCRATCH
0x014568: MOV SCRATCH, 0x40116c
0x014580: PUSH SCRATCH
0x014598: X86 push eax
0x0145c8: X86JUMPOUT call dword ptr [401114h]
0x0145e0: X86 push esi
0x014610: MOV SCRATCH, EBP
0x014640: ADD SCRATCH, 0xfffffb30
0x014658: MOV EAX, SCRATCH
0x014670: X86 push eax
0x0146a0: MOV SCRATCH, EBP
0x0146d0: ADD SCRATCH, 0xfffffd38
0x0146e8: MOV EAX, SCRATCH
0x014700: X86 push eax
0x014730: X86JUMPOUT call dword ptr [401114h]
0x014748: X86 add esp, 18h
0x014760: MOV SCRATCH, EBP
0x014790: ADD SCRATCH, 0xffffffe8
0x0147a8: MOV EAX, SCRATCH
0x0147c0: X86 push eax
0x0147f0: MOV SCRATCH, EBP
0x014820: ADD SCRATCH, 0xffffff40
0x014838: MOV EAX, SCRATCH
0x014850: X86 push eax
0x014880: X86 push ebx
0x0148b0: X86 push ebx
0x0148e0: MOV SCRATCH, 0x000003
0x0148f8: PUSH SCRATCH
0x014910: X86 push ebx
0x014940: X86 push ebx
0x014970: X86 push ebx
0x0149a0: MOV SCRATCH, EBP
0x0149d0: ADD SCRATCH, 0xfffffd38
0x0149e8: MOV EAX, SCRATCH
0x014a00: X86 push eax
0x014a30: MOV SCRATCH, 0x41ff38
0x014a60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x014a78: MOV EAX, SCRATCH
0x014a90: X86 push ebx
0x014ac0: X86JUMPOUT call dword ptr [eax+20h]
0x014ad8: MOV SCRATCH, 0x41ff38
0x014b08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x014b20: MOV EAX, SCRATCH
0x014b38: MOV SCRATCH, 0x00012c
0x014b50: PUSH SCRATCH
0x014b68: X86JUMPOUT call dword ptr [eax+38h]
0x014b80: X86 push edi
0x014bb0: MOV SCRATCH, EBP
0x014be0: ADD SCRATCH, 0xfffff928
0x014bf8: MOV EAX, SCRATCH
0x014c10: X86 push ebx
0x014c40: X86 push eax
0x014c70: X86CALLOUT 0x40ae80
0x014c88: MOV SCRATCH, 0x41ff38
0x014cb8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x014cd0: MOV ESI, SCRATCH
0x014ce8: X86 add esp, 0Ch
0x014d00: MOV SCRATCH, EBP
0x014d30: ADD SCRATCH, 0xfffff928
0x014d48: MOV EAX, SCRATCH
0x014d60: X86 push eax
0x014d90: X86 add esi, 64h
0x014da8: X86CALLOUT 0x4015b2
0x014dc0: X86 push eax
0x014df0: X86 push ebx
0x014e20: X86 push ebx
0x014e50: X86 push ebx
0x014e80: X86JUMPOUT call dword ptr [esi]
0x014e98: X86 mov edi, eax
0x014ec8: CRASH
0x014ee0: X86 cmp dword ptr [ebp+0FFFFFF84h], 3h
0x014ef8: X86 mov esi, 10002h
0x014f10: JNZ VM[0x0151b0] (fallthrough VM[0x014f28])
0x014f28: MOV SCRATCH, EBP
0x014f58: ADD SCRATCH, 0xffffffac
0x014f70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x014f88: MOV EAX, SCRATCH
0x014fa0: X86 push ebx
0x014fd0: MOV SCRATCH, 0x000001
0x014fe8: PUSH SCRATCH
0x015000: MOV SCRATCH, 0x401170
0x015018: PUSH SCRATCH
0x015030: X86 push eax
0x015060: MOV SCRATCH, EBP
0x015090: ADD SCRATCH, 0xffffffe8
0x0150a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0150c0: PUSH SCRATCH
0x0150d8: MOV SCRATCH, EBP
0x015108: ADD SCRATCH, 0xffffffe4
0x015120: MOV DWORD PTR [SCRATCH], EAX
0x015138: MOV SCRATCH, 0x41ff38
0x015168: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015180: MOV EAX, SCRATCH
0x015198: X86JUMPOUT call dword ptr [eax+8h]
0x0151b0: X86 cmp dword ptr [ebp+0FFFFFF84h], 1h
0x0151c8: JNZ VM[0x015540] (fallthrough VM[0x0151e0])
0x0151e0: X86 cmp dword ptr [ebp+0FFFFFF90h], 80000003h
0x0151f8: JNZ VM[0x015528] (fallthrough VM[0x015210])
0x015210: MOV SCRATCH, EBP
0x015240: ADD SCRATCH, 0xffffff9c
0x015258: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015270: MOV EAX, SCRATCH
0x015288: X86 cmp eax, dword ptr [ebp+0FFFFFFE4h]
0x0152a0: JNZ VM[0x015588] (fallthrough VM[0x0152b8])
0x0152b8: X86 push eax
0x0152e8: MOV SCRATCH, 0x000007
0x015300: PUSH SCRATCH
0x015318: MOV SCRATCH, EBP
0x015348: ADD SCRATCH, 0x00000c
0x015360: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015378: PUSH SCRATCH
0x015390: MOV SCRATCH, EBP
0x0153c0: ADD SCRATCH, 0x000008
0x0153d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0153f0: PUSH SCRATCH
0x015408: MOV SCRATCH, EBP
0x015438: ADD SCRATCH, 0xffffffec
0x015450: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015468: PUSH SCRATCH
0x015480: MOV SCRATCH, EBP
0x0154b0: ADD SCRATCH, 0xffffffe8
0x0154c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0154e0: PUSH SCRATCH
0x0154f8: X86CALLOUT 0x4096b1
0x015510: CRASH
0x015528: X86 mov esi, 80010001h
0x015540: X86 cmp dword ptr [ebp+0FFFFFF84h], 5h
0x015558: JNZ VM[0x015588] (fallthrough VM[0x015570])
0x015570: X86 mov dword ptr [ebp+0FFFFFFF8h], 1h
0x015588: MOV SCRATCH, 0x41ff38
0x0155b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0155d0: MOV EAX, SCRATCH
0x0155e8: X86 push esi
0x015618: MOV SCRATCH, EBP
0x015648: ADD SCRATCH, 0xffffff8c
0x015660: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015678: PUSH SCRATCH
0x015690: MOV SCRATCH, EBP
0x0156c0: ADD SCRATCH, 0xffffff88
0x0156d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0156f0: PUSH SCRATCH
0x015708: X86JUMPOUT call dword ptr [eax+80h]
0x015720: X86 cmp dword ptr [ebp+0FFFFFFF8h], ebx
0x015738: JNZ VM[0x0158b8] (fallthrough VM[0x015750])
0x015750: MOV SCRATCH, 0xffffffff
0x015768: PUSH SCRATCH
0x015780: MOV SCRATCH, EBP
0x0157b0: ADD SCRATCH, 0xffffff84
0x0157c8: MOV EAX, SCRATCH
0x0157e0: X86 push eax
0x015810: MOV SCRATCH, 0x41ff38
0x015840: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015858: MOV EAX, SCRATCH
0x015870: X86JUMPOUT call dword ptr [eax+7Ch]
0x015888: X86 test eax, eax
0x0158a0: JNZ VM[0x014ee0] (fallthrough VM[0x0158b8])
0x0158b8: MOV SCRATCH, EBP
0x0158e8: ADD SCRATCH, 0xffffffec
0x015900: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015918: PUSH SCRATCH
0x015930: MOV SCRATCH, 0x41ff34
0x015960: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015978: MOV EAX, SCRATCH
0x015990: X86JUMPOUT call dword ptr [eax+3Ch]
0x0159a8: MOV SCRATCH, 0x41ff38
0x0159d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0159f0: MOV EAX, SCRATCH
0x015a08: MOV SCRATCH, 0xffffffff
0x015a20: PUSH SCRATCH
0x015a38: MOV SCRATCH, EBP
0x015a68: ADD SCRATCH, 0xffffffe8
0x015a80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015a98: PUSH SCRATCH
0x015ab0: X86JUMPOUT call dword ptr [eax+68h]
0x015ac8: MOV SCRATCH, EBP
0x015af8: ADD SCRATCH, 0xfffffffc
0x015b10: MOV EAX, SCRATCH
0x015b28: X86 push eax
0x015b58: MOV SCRATCH, EBP
0x015b88: ADD SCRATCH, 0xffffffe8
0x015ba0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015bb8: PUSH SCRATCH
0x015bd0: MOV SCRATCH, 0x41ff38
0x015c00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015c18: MOV EAX, SCRATCH
0x015c30: MOV SCRATCH, EBP
0x015c60: ADD SCRATCH, 0xfffffffc
0x015c78: MOV DWORD PTR [SCRATCH], EBX
0x015c90: X86JUMPOUT call dword ptr [eax+58h]
0x015ca8: X86 test eax, eax
0x015cc0: X86 mov esi, 11335577h
0x015cd8: JNZ VM[0x015f00] (fallthrough VM[0x015cf0])
0x015cf0: MOV SCRATCH, 0x41ff38
0x015d20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015d38: MOV EAX, SCRATCH
0x015d50: MOV SCRATCH, 0x001388
0x015d68: PUSH SCRATCH
0x015d80: X86 push edi
0x015db0: X86JUMPOUT call dword ptr [eax+68h]
0x015dc8: X86 test eax, eax
0x015de0: JNZ VM[0x015e58] (fallthrough VM[0x015df8])
0x015df8: MOV SCRATCH, EBP
0x015e28: ADD SCRATCH, 0xfffffffc
0x015e40: MOV DWORD PTR [SCRATCH], ESI
0x015e58: MOV SCRATCH, 0x41ff34
0x015e88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015ea0: MOV EAX, SCRATCH
0x015eb8: X86 push edi
0x015ee8: X86JUMPOUT call dword ptr [eax+3Ch]
0x015f00: MOV SCRATCH, EBP
0x015f30: ADD SCRATCH, 0xffffffe8
0x015f48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015f60: PUSH SCRATCH
0x015f78: MOV SCRATCH, 0x41ff34
0x015fa8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x015fc0: MOV EAX, SCRATCH
0x015fd8: X86JUMPOUT call dword ptr [eax+3Ch]
0x015ff0: X86 cmp dword ptr [ebp+0FFFFFFFCh], esi
0x016008: JNZ VM[0x0161d0] (fallthrough VM[0x016020])
0x016020: X86CALLOUT 0x4052a9
0x016038: X86 cmp eax, ebx
0x016050: JZ VM[0x0161d0] (fallthrough VM[0x016068])
0x016068: MOV SCRATCH, 0x000006
0x016080: PUSH SCRATCH
0x016098: MOV SCRATCH, EBP
0x0160c8: ADD SCRATCH, 0x00000c
0x0160e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0160f8: PUSH SCRATCH
0x016110: MOV SCRATCH, EBP
0x016140: ADD SCRATCH, 0x000008
0x016158: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016170: PUSH SCRATCH
0x016188: X86 push eax
0x0161b8: X86CALLOUT 0x4092e7
0x0161d0: X86 pop edi
0x0161e8: X86 xor eax, eax
0x016200: X86 pop esi
0x016218: X86 inc eax
0x016230: X86 pop ebx
0x016248: X86 leave 
0x016260: X86 ret 8h
0x016278: MOV SCRATCH, 0x000001
0x016290: PUSH SCRATCH
0x0162a8: MOV SCRATCH, EBP
0x0162d8: ADD SCRATCH, 0x00000c
0x0162f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016308: PUSH SCRATCH
0x016320: MOV SCRATCH, EBP
0x016350: ADD SCRATCH, 0x000008
0x016368: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016380: PUSH SCRATCH
0x016398: X86CALLOUT 0x4054c8
0x0163b0: X86 pop ebp
0x0163c8: X86 ret 8h
0x0163e0: MOV SCRATCH, 0x000009
0x0163f8: PUSH SCRATCH
0x016410: MOV SCRATCH, EBP
0x016440: ADD SCRATCH, 0x00000c
0x016458: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016470: PUSH SCRATCH
0x016488: MOV SCRATCH, EBP
0x0164b8: ADD SCRATCH, 0x000008
0x0164d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0164e8: PUSH SCRATCH
0x016500: X86JUMPOUT call dword ptr [401058h]
0x016518: X86 push eax
0x016548: X86CALLOUT 0x409567
0x016560: X86 test eax, eax
0x016578: JNZ VM[0x016710] (fallthrough VM[0x016590])
0x016590: X86CALLOUT 0x4052a9
0x0165a8: MOV SCRATCH, 0x000009
0x0165c0: PUSH SCRATCH
0x0165d8: MOV SCRATCH, EBP
0x016608: ADD SCRATCH, 0x00000c
0x016620: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016638: PUSH SCRATCH
0x016650: MOV SCRATCH, EBP
0x016680: ADD SCRATCH, 0x000008
0x016698: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0166b0: PUSH SCRATCH
0x0166c8: X86 push eax
0x0166f8: X86CALLOUT 0x4090a7
0x016710: X86 xor eax, eax
0x016728: X86 inc eax
0x016740: X86 pop ebp
0x016758: X86 ret 8h
0x016770: X86CALLOUT 0x4052a9
0x016788: MOV SCRATCH, 0x000009
0x0167a0: PUSH SCRATCH
0x0167b8: MOV SCRATCH, EBP
0x0167e8: ADD SCRATCH, 0x00000c
0x016800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016818: PUSH SCRATCH
0x016830: MOV SCRATCH, EBP
0x016860: ADD SCRATCH, 0x000008
0x016878: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016890: PUSH SCRATCH
0x0168a8: X86 push eax
0x0168d8: X86CALLOUT 0x4090a7
0x0168f0: X86 xor eax, eax
0x016908: X86 inc eax
0x016920: X86 pop ebp
0x016938: X86 ret 8h
0x016950: MOV SCRATCH, 0x000005
0x016968: PUSH SCRATCH
0x016980: MOV SCRATCH, EBP
0x0169b0: ADD SCRATCH, 0x00000c
0x0169c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0169e0: PUSH SCRATCH
0x0169f8: MOV SCRATCH, EBP
0x016a28: ADD SCRATCH, 0x000008
0x016a40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016a58: PUSH SCRATCH
0x016a70: X86JUMPOUT call dword ptr [401058h]
0x016a88: X86 push eax
0x016ab8: X86CALLOUT 0x409567
0x016ad0: X86 test eax, eax
0x016ae8: JNZ VM[0x016c80] (fallthrough VM[0x016b00])
0x016b00: X86CALLOUT 0x4052a9
0x016b18: MOV SCRATCH, 0x000000
0x016b30: PUSH SCRATCH
0x016b48: MOV SCRATCH, EBP
0x016b78: ADD SCRATCH, 0x00000c
0x016b90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016ba8: PUSH SCRATCH
0x016bc0: MOV SCRATCH, EBP
0x016bf0: ADD SCRATCH, 0x000008
0x016c08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016c20: PUSH SCRATCH
0x016c38: X86 push eax
0x016c68: X86CALLOUT 0x4090a7
0x016c80: X86 xor eax, eax
0x016c98: X86 inc eax
0x016cb0: X86 pop ebp
0x016cc8: X86 ret 8h
0x016ce0: X86CALLOUT 0x4052a9
0x016cf8: MOV SCRATCH, 0x000008
0x016d10: PUSH SCRATCH
0x016d28: MOV SCRATCH, EBP
0x016d58: ADD SCRATCH, 0x00000c
0x016d70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016d88: PUSH SCRATCH
0x016da0: MOV SCRATCH, EBP
0x016dd0: ADD SCRATCH, 0x000008
0x016de8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016e00: PUSH SCRATCH
0x016e18: X86 push eax
0x016e48: X86CALLOUT 0x4090a7
0x016e60: X86 pop ebp
0x016e78: X86 ret 8h
0x016e90: X86CALLOUT 0x4052a9
0x016ea8: X86 test eax, eax
0x016ec0: JZ VM[0x017040] (fallthrough VM[0x016ed8])
0x016ed8: MOV SCRATCH, 0x000001
0x016ef0: PUSH SCRATCH
0x016f08: MOV SCRATCH, EBP
0x016f38: ADD SCRATCH, 0x00000c
0x016f50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016f68: PUSH SCRATCH
0x016f80: MOV SCRATCH, EBP
0x016fb0: ADD SCRATCH, 0x000008
0x016fc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x016fe0: PUSH SCRATCH
0x016ff8: X86 push eax
0x017028: X86CALLOUT 0x4092e7
0x017040: X86 xor eax, eax
0x017058: X86 inc eax
0x017070: X86 pop ebp
0x017088: X86 ret 8h
0x0170a0: MOV SCRATCH, 0x000006
0x0170b8: PUSH SCRATCH
0x0170d0: MOV SCRATCH, EBP
0x017100: ADD SCRATCH, 0x00000c
0x017118: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017130: PUSH SCRATCH
0x017148: MOV SCRATCH, EBP
0x017178: ADD SCRATCH, 0x000008
0x017190: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0171a8: PUSH SCRATCH
0x0171c0: X86JUMPOUT call dword ptr [401058h]
0x0171d8: X86 push eax
0x017208: X86CALLOUT 0x409567
0x017220: X86 xor eax, eax
0x017238: X86 inc eax
0x017250: X86 pop ebp
0x017268: X86 ret 8h
0x017280: X86CALLOUT 0x4052a9
0x017298: X86 test eax, eax
0x0172b0: JZ VM[0x017430] (fallthrough VM[0x0172c8])
0x0172c8: MOV SCRATCH, 0x000004
0x0172e0: PUSH SCRATCH
0x0172f8: MOV SCRATCH, EBP
0x017328: ADD SCRATCH, 0x00000c
0x017340: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017358: PUSH SCRATCH
0x017370: MOV SCRATCH, EBP
0x0173a0: ADD SCRATCH, 0x000008
0x0173b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0173d0: PUSH SCRATCH
0x0173e8: X86 push eax
0x017418: X86CALLOUT 0x4090a7
0x017430: X86 xor eax, eax
0x017448: X86 inc eax
0x017460: X86 pop ebp
0x017478: X86 ret 8h
0x017490: MOV SCRATCH, 0x000004
0x0174a8: PUSH SCRATCH
0x0174c0: MOV SCRATCH, EBP
0x0174f0: ADD SCRATCH, 0x00000c
0x017508: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017520: PUSH SCRATCH
0x017538: MOV SCRATCH, EBP
0x017568: ADD SCRATCH, 0x000008
0x017580: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017598: PUSH SCRATCH
0x0175b0: X86JUMPOUT call dword ptr [401058h]
0x0175c8: X86 push eax
0x0175f8: X86CALLOUT 0x409567
0x017610: X86 xor eax, eax
0x017628: X86 inc eax
0x017640: X86 pop ebp
0x017658: X86 ret 8h
0x017670: X86CALLOUT 0x4052a9
0x017688: X86 test eax, eax
0x0176a0: JZ VM[0x017820] (fallthrough VM[0x0176b8])
0x0176b8: MOV SCRATCH, 0x00000a
0x0176d0: PUSH SCRATCH
0x0176e8: MOV SCRATCH, EBP
0x017718: ADD SCRATCH, 0x00000c
0x017730: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017748: PUSH SCRATCH
0x017760: MOV SCRATCH, EBP
0x017790: ADD SCRATCH, 0x000008
0x0177a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0177c0: PUSH SCRATCH
0x0177d8: X86 push eax
0x017808: X86CALLOUT 0x4090a7
0x017820: X86 xor eax, eax
0x017838: X86 inc eax
0x017850: X86 pop ebp
0x017868: X86 ret 8h
0x017880: MOV SCRATCH, 0x00000a
0x017898: PUSH SCRATCH
0x0178b0: MOV SCRATCH, EBP
0x0178e0: ADD SCRATCH, 0x00000c
0x0178f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017910: PUSH SCRATCH
0x017928: MOV SCRATCH, EBP
0x017958: ADD SCRATCH, 0x000008
0x017970: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017988: PUSH SCRATCH
0x0179a0: X86JUMPOUT call dword ptr [401058h]
0x0179b8: X86 push eax
0x0179e8: X86CALLOUT 0x409567
0x017a00: X86 test eax, eax
0x017a18: JNZ VM[0x017bb0] (fallthrough VM[0x017a30])
0x017a30: X86CALLOUT 0x4052a9
0x017a48: MOV SCRATCH, 0x00000a
0x017a60: PUSH SCRATCH
0x017a78: MOV SCRATCH, EBP
0x017aa8: ADD SCRATCH, 0x00000c
0x017ac0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017ad8: PUSH SCRATCH
0x017af0: MOV SCRATCH, EBP
0x017b20: ADD SCRATCH, 0x000008
0x017b38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017b50: PUSH SCRATCH
0x017b68: X86 push eax
0x017b98: X86CALLOUT 0x4090a7
0x017bb0: X86 xor eax, eax
0x017bc8: X86 inc eax
0x017be0: X86 pop ebp
0x017bf8: X86 ret 8h
0x017c10: X86CALLOUT 0x4052a9
0x017c28: X86 test eax, eax
0x017c40: JZ VM[0x017dc0] (fallthrough VM[0x017c58])
0x017c58: MOV SCRATCH, 0x00000b
0x017c70: PUSH SCRATCH
0x017c88: MOV SCRATCH, EBP
0x017cb8: ADD SCRATCH, 0x00000c
0x017cd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017ce8: PUSH SCRATCH
0x017d00: MOV SCRATCH, EBP
0x017d30: ADD SCRATCH, 0x000008
0x017d48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017d60: PUSH SCRATCH
0x017d78: X86 push eax
0x017da8: X86CALLOUT 0x4090a7
0x017dc0: X86 xor eax, eax
0x017dd8: X86 inc eax
0x017df0: X86 pop ebp
0x017e08: X86 ret 8h
0x017e20: MOV SCRATCH, 0x00000b
0x017e38: PUSH SCRATCH
0x017e50: MOV SCRATCH, EBP
0x017e80: ADD SCRATCH, 0x00000c
0x017e98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017eb0: PUSH SCRATCH
0x017ec8: MOV SCRATCH, EBP
0x017ef8: ADD SCRATCH, 0x000008
0x017f10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x017f28: PUSH SCRATCH
0x017f40: X86JUMPOUT call dword ptr [401058h]
0x017f58: X86 push eax
0x017f88: X86CALLOUT 0x409567
0x017fa0: X86 test eax, eax
0x017fb8: JNZ VM[0x018150] (fallthrough VM[0x017fd0])
0x017fd0: X86CALLOUT 0x4052a9
0x017fe8: MOV SCRATCH, 0x00000b
0x018000: PUSH SCRATCH
0x018018: MOV SCRATCH, EBP
0x018048: ADD SCRATCH, 0x00000c
0x018060: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018078: PUSH SCRATCH
0x018090: MOV SCRATCH, EBP
0x0180c0: ADD SCRATCH, 0x000008
0x0180d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0180f0: PUSH SCRATCH
0x018108: X86 push eax
0x018138: X86CALLOUT 0x4090a7
0x018150: X86 xor eax, eax
0x018168: X86 inc eax
0x018180: X86 pop ebp
0x018198: X86 ret 8h
0x0181b0: X86CALLOUT 0x4052a9
0x0181c8: X86 test eax, eax
0x0181e0: JZ VM[0x018360] (fallthrough VM[0x0181f8])
0x0181f8: MOV SCRATCH, 0x00000c
0x018210: PUSH SCRATCH
0x018228: MOV SCRATCH, EBP
0x018258: ADD SCRATCH, 0x00000c
0x018270: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018288: PUSH SCRATCH
0x0182a0: MOV SCRATCH, EBP
0x0182d0: ADD SCRATCH, 0x000008
0x0182e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018300: PUSH SCRATCH
0x018318: X86 push eax
0x018348: X86CALLOUT 0x4090a7
0x018360: X86 xor eax, eax
0x018378: X86 inc eax
0x018390: X86 pop ebp
0x0183a8: X86 ret 8h
0x0183c0: X86CALLOUT 0x4052a9
0x0183d8: X86 test eax, eax
0x0183f0: JZ VM[0x018570] (fallthrough VM[0x018408])
0x018408: MOV SCRATCH, 0x000000
0x018420: PUSH SCRATCH
0x018438: MOV SCRATCH, EBP
0x018468: ADD SCRATCH, 0x00000c
0x018480: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018498: PUSH SCRATCH
0x0184b0: MOV SCRATCH, EBP
0x0184e0: ADD SCRATCH, 0x000008
0x0184f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018510: PUSH SCRATCH
0x018528: X86 push eax
0x018558: X86CALLOUT 0x4090a7
0x018570: X86 xor eax, eax
0x018588: X86 inc eax
0x0185a0: X86 pop ebp
0x0185b8: X86 ret 8h
0x0185d0: MOV SCRATCH, 0x000003
0x0185e8: PUSH SCRATCH
0x018600: MOV SCRATCH, EBP
0x018630: ADD SCRATCH, 0x00000c
0x018648: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018660: PUSH SCRATCH
0x018678: MOV SCRATCH, EBP
0x0186a8: ADD SCRATCH, 0x000008
0x0186c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0186d8: PUSH SCRATCH
0x0186f0: X86JUMPOUT call dword ptr [401058h]
0x018708: X86 push eax
0x018738: X86CALLOUT 0x409567
0x018750: X86 test eax, eax
0x018768: JNZ VM[0x018900] (fallthrough VM[0x018780])
0x018780: X86CALLOUT 0x4052a9
0x018798: MOV SCRATCH, 0x000000
0x0187b0: PUSH SCRATCH
0x0187c8: MOV SCRATCH, EBP
0x0187f8: ADD SCRATCH, 0x00000c
0x018810: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018828: PUSH SCRATCH
0x018840: MOV SCRATCH, EBP
0x018870: ADD SCRATCH, 0x000008
0x018888: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0188a0: PUSH SCRATCH
0x0188b8: X86 push eax
0x0188e8: X86CALLOUT 0x4090a7
0x018900: X86 xor eax, eax
0x018918: X86 inc eax
0x018930: X86 pop ebp
0x018948: X86 ret 8h
0x018960: MOV SCRATCH, 0x41ff38
0x018990: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0189a8: MOV EAX, SCRATCH
0x0189c0: MOV SCRATCH, 0x000088
0x0189d8: PUSH SCRATCH
0x0189f0: MOV SCRATCH, 0x000040
0x018a08: PUSH SCRATCH
0x018a20: X86JUMPOUT call dword ptr [eax+8Ch]
0x018a38: MOV SCRATCH, 0x000030
0x018a50: PUSH SCRATCH
0x018a68: MOV SCRATCH, 0x41ff34
0x018a98: MOV DWORD PTR [SCRATCH], EAX
0x018ab0: MOV SCRATCH, 0x41ff38
0x018ae0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018af8: MOV EAX, SCRATCH
0x018b10: MOV SCRATCH, 0x000040
0x018b28: PUSH SCRATCH
0x018b40: X86JUMPOUT call dword ptr [eax+8Ch]
0x018b58: MOV SCRATCH, 0x00000c
0x018b70: PUSH SCRATCH
0x018b88: MOV SCRATCH, 0x41ff2c
0x018bb8: MOV DWORD PTR [SCRATCH], EAX
0x018bd0: MOV SCRATCH, 0x41ff38
0x018c00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018c18: MOV EAX, SCRATCH
0x018c30: MOV SCRATCH, 0x000040
0x018c48: PUSH SCRATCH
0x018c60: X86JUMPOUT call dword ptr [eax+8Ch]
0x018c78: MOV SCRATCH, 0x41ff30
0x018ca8: MOV DWORD PTR [SCRATCH], EAX
0x018cc0: X86 mov eax, dword ptr fs:[30h]
0x018cd8: MOV SCRATCH, EAX
0x018d08: ADD SCRATCH, 0x00000c
0x018d20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018d38: MOV EAX, SCRATCH
0x018d50: MOV SCRATCH, EAX
0x018d80: ADD SCRATCH, 0x00001c
0x018d98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018db0: MOV EAX, SCRATCH
0x018dc8: MOV SCRATCH, EAX
0x018df8: ADD SCRATCH, 0x000008
0x018e10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018e28: MOV ESI, SCRATCH
0x018e40: X86 mov ebx, 94FCB0C0h
0x018e58: X86 push ebx
0x018e88: X86 push esi
0x018eb8: MOV SCRATCH, 0x420360
0x018ee8: MOV DWORD PTR [SCRATCH], ESI
0x018f00: X86CALLOUT 0x407ff5
0x018f18: MOV SCRATCH, 0x41ff34
0x018f48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x018f60: MOV ECX, SCRATCH
0x018f78: MOV SCRATCH, 0xa1d45974
0x018f90: PUSH SCRATCH
0x018fa8: X86 push esi
0x018fd8: MOV SCRATCH, ECX
0x019008: ADD SCRATCH, 0x000044
0x019020: MOV DWORD PTR [SCRATCH], EAX
0x019038: X86CALLOUT 0x407ff5
0x019050: MOV SCRATCH, 0x41ff34
0x019080: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019098: MOV ECX, SCRATCH
0x0190b0: MOV SCRATCH, 0xaf11bc24
0x0190c8: PUSH SCRATCH
0x0190e0: X86 push esi
0x019110: MOV SCRATCH, ECX
0x019140: ADD SCRATCH, 0x000060
0x019158: MOV DWORD PTR [SCRATCH], EAX
0x019170: X86CALLOUT 0x407ff5
0x019188: MOV SCRATCH, 0x41ff34
0x0191b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0191d0: MOV ECX, SCRATCH
0x0191e8: MOV SCRATCH, 0x000004
0x019200: PUSH SCRATCH
0x019218: MOV SCRATCH, ECX
0x019248: ADD SCRATCH, 0x000064
0x019260: MOV DWORD PTR [SCRATCH], EAX
0x019278: X86 mov eax, 1000h
0x019290: X86 push eax
0x0192c0: X86 push eax
0x0192f0: X86 push edi
0x019320: X86JUMPOUT call dword ptr [401050h]
0x019338: X86 xor eax, eax
0x019350: X86 mov ax, cs
0x019368: MOV SCRATCH, EBP
0x019398: ADD SCRATCH, 0xfffffff4
0x0193b0: MOV DWORD PTR [SCRATCH], EAX
0x0193c8: X86 cmp dword ptr [ebp+0FFFFFFF4h], 1Bh
0x0193e0: JZ VM[0x019440] (fallthrough VM[0x0193f8])
0x0193f8: X86 cmp dword ptr [ebp+0FFFFFFF4h], 23h
0x019410: JZ VM[0x019440] (fallthrough VM[0x019428])
0x019428: X86 mov dword ptr [ebp+0FFFFFFE8h], 1h
0x019440: MOV SCRATCH, 0x3ee6cc56
0x019458: PUSH SCRATCH
0x019470: X86 push esi
0x0194a0: X86CALLOUT 0x407ff5
0x0194b8: MOV SCRATCH, 0x41ff34
0x0194e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019500: MOV ECX, SCRATCH
0x019518: MOV SCRATCH, 0x7aa7b69b
0x019530: PUSH SCRATCH
0x019548: X86 push esi
0x019578: MOV SCRATCH, ECX
0x0195a8: ADD SCRATCH, 0x000020
0x0195c0: MOV DWORD PTR [SCRATCH], EAX
0x0195d8: X86CALLOUT 0x407ff5
0x0195f0: MOV SCRATCH, 0x41ff34
0x019620: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019638: MOV ECX, SCRATCH
0x019650: MOV SCRATCH, 0xe0762feb
0x019668: PUSH SCRATCH
0x019680: X86 push esi
0x0196b0: MOV SCRATCH, ECX
0x0196e0: ADD SCRATCH, 0x000024
0x0196f8: MOV DWORD PTR [SCRATCH], EAX
0x019710: X86CALLOUT 0x407ff5
0x019728: MOV SCRATCH, 0x41ff34
0x019758: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019770: MOV ECX, SCRATCH
0x019788: MOV SCRATCH, 0x97fd2398
0x0197a0: PUSH SCRATCH
0x0197b8: X86 push esi
0x0197e8: MOV SCRATCH, ECX
0x019818: ADD SCRATCH, 0x000010
0x019830: MOV DWORD PTR [SCRATCH], EAX
0x019848: X86CALLOUT 0x407ff5
0x019860: MOV SCRATCH, 0x41ff34
0x019890: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0198a8: MOV ECX, SCRATCH
0x0198c0: MOV SCRATCH, 0xb7a26d79
0x0198d8: PUSH SCRATCH
0x0198f0: X86 push esi
0x019920: MOV SCRATCH, ECX
0x019950: MOV DWORD PTR [SCRATCH], EAX
0x019968: X86CALLOUT 0x407ff5
0x019980: MOV SCRATCH, 0x41ff34
0x0199b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0199c8: MOV ECX, SCRATCH
0x0199e0: MOV SCRATCH, 0x67614ada
0x0199f8: PUSH SCRATCH
0x019a10: X86 push esi
0x019a40: MOV SCRATCH, ECX
0x019a70: ADD SCRATCH, 0x000034
0x019a88: MOV DWORD PTR [SCRATCH], EAX
0x019aa0: X86CALLOUT 0x407ff5
0x019ab8: MOV SCRATCH, 0x41ff34
0x019ae8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019b00: MOV ECX, SCRATCH
0x019b18: MOV SCRATCH, 0xd09c750
0x019b30: PUSH SCRATCH
0x019b48: X86 push esi
0x019b78: MOV SCRATCH, ECX
0x019ba8: ADD SCRATCH, 0x000038
0x019bc0: MOV DWORD PTR [SCRATCH], EAX
0x019bd8: X86CALLOUT 0x407ff5
0x019bf0: MOV SCRATCH, 0x41ff34
0x019c20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019c38: MOV ECX, SCRATCH
0x019c50: MOV SCRATCH, 0xe9d6ce5e
0x019c68: PUSH SCRATCH
0x019c80: X86 push esi
0x019cb0: MOV SCRATCH, ECX
0x019ce0: ADD SCRATCH, 0x00003c
0x019cf8: MOV DWORD PTR [SCRATCH], EAX
0x019d10: X86CALLOUT 0x407ff5
0x019d28: MOV SCRATCH, 0x41ff34
0x019d58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019d70: MOV ECX, SCRATCH
0x019d88: X86 push ebx
0x019db8: X86 push esi
0x019de8: MOV SCRATCH, ECX
0x019e18: ADD SCRATCH, 0x000014
0x019e30: MOV DWORD PTR [SCRATCH], EAX
0x019e48: X86CALLOUT 0x407ff5
0x019e60: MOV SCRATCH, 0x41ff34
0x019e90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019ea8: MOV ECX, SCRATCH
0x019ec0: MOV SCRATCH, 0x5c2d1a97
0x019ed8: PUSH SCRATCH
0x019ef0: X86 push esi
0x019f20: MOV SCRATCH, ECX
0x019f50: ADD SCRATCH, 0x000044
0x019f68: MOV DWORD PTR [SCRATCH], EAX
0x019f80: X86CALLOUT 0x407ff5
0x019f98: MOV SCRATCH, 0x41ff34
0x019fc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x019fe0: MOV ECX, SCRATCH
0x019ff8: MOV SCRATCH, 0x31133574
0x01a010: PUSH SCRATCH
0x01a028: X86 push esi
0x01a058: MOV SCRATCH, ECX
0x01a088: ADD SCRATCH, 0x000048
0x01a0a0: MOV DWORD PTR [SCRATCH], EAX
0x01a0b8: X86CALLOUT 0x407ff5
0x01a0d0: MOV SCRATCH, 0x41ff34
0x01a100: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a118: MOV ECX, SCRATCH
0x01a130: MOV SCRATCH, 0xdbf381b5
0x01a148: PUSH SCRATCH
0x01a160: X86 push esi
0x01a190: MOV SCRATCH, ECX
0x01a1c0: ADD SCRATCH, 0x00004c
0x01a1d8: MOV DWORD PTR [SCRATCH], EAX
0x01a1f0: X86CALLOUT 0x407ff5
0x01a208: MOV SCRATCH, 0x41ff34
0x01a238: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a250: MOV ECX, SCRATCH
0x01a268: MOV SCRATCH, 0xa5c44c50
0x01a280: PUSH SCRATCH
0x01a298: X86 push esi
0x01a2c8: MOV SCRATCH, ECX
0x01a2f8: ADD SCRATCH, 0x000050
0x01a310: MOV DWORD PTR [SCRATCH], EAX
0x01a328: X86CALLOUT 0x407ff5
0x01a340: MOV SCRATCH, 0x41ff34
0x01a370: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a388: MOV ECX, SCRATCH
0x01a3a0: MOV SCRATCH, 0xa2c81105
0x01a3b8: PUSH SCRATCH
0x01a3d0: X86 push esi
0x01a400: MOV SCRATCH, ECX
0x01a430: ADD SCRATCH, 0x000004
0x01a448: MOV DWORD PTR [SCRATCH], EAX
0x01a460: X86CALLOUT 0x407ff5
0x01a478: MOV SCRATCH, 0x41ff34
0x01a4a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a4c0: MOV ECX, SCRATCH
0x01a4d8: MOV SCRATCH, 0x50cfba45
0x01a4f0: PUSH SCRATCH
0x01a508: X86 push esi
0x01a538: MOV SCRATCH, ECX
0x01a568: ADD SCRATCH, 0x000054
0x01a580: MOV DWORD PTR [SCRATCH], EAX
0x01a598: X86CALLOUT 0x407ff5
0x01a5b0: MOV SCRATCH, 0x41ff34
0x01a5e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a5f8: MOV ECX, SCRATCH
0x01a610: MOV SCRATCH, 0xf675d37d
0x01a628: PUSH SCRATCH
0x01a640: X86 push esi
0x01a670: MOV SCRATCH, ECX
0x01a6a0: ADD SCRATCH, 0x000058
0x01a6b8: MOV DWORD PTR [SCRATCH], EAX
0x01a6d0: X86CALLOUT 0x407ff5
0x01a6e8: MOV SCRATCH, 0x41ff34
0x01a718: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01a730: MOV ECX, SCRATCH
0x01a748: MOV SCRATCH, ECX
0x01a778: ADD SCRATCH, 0x00005c
0x01a790: MOV DWORD PTR [SCRATCH], EAX
0x01a7a8: X86CALLOUT 0x40765a
0x01a7c0: X86 test eax, eax
0x01a7d8: JNZ VM[0x01a808] (fallthrough VM[0x01a7f0])
0x01a7f0: X86CALLOUT 0x407a58
0x01a808: X86CALLOUT 0x40870b
0x01a820: MOV SCRATCH, EBP
0x01a850: ADD SCRATCH, 0xfffffde0
0x01a868: MOV EAX, SCRATCH
0x01a880: X86 push eax
0x01a8b0: X86CALLOUT 0x40146e
0x01a8c8: X86 push eax
0x01a8f8: X86CALLOUT 0x404747
0x01a910: X86 cmp eax, edi
0x01a928: MOV SCRATCH, 0x420344
0x01a958: MOV DWORD PTR [SCRATCH], EAX
0x01a970: JNZ VM[0x01a9d0] (fallthrough VM[0x01a988])
0x01a988: X86 push edi
0x01a9b8: X86CALLOUT 0x408bde
0x01a9d0: MOV SCRATCH, 0x41ff34
0x01aa00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01aa18: PUSH SCRATCH
0x01aa30: X86CALLOUT 0x401821
0x01aa48: MOV SCRATCH, EBP
0x01aa78: ADD SCRATCH, 0xfffffde0
0x01aa90: MOV EAX, SCRATCH
0x01aaa8: X86 push eax
0x01aad8: X86CALLOUT 0x401617
0x01aaf0: X86 push eax
0x01ab20: X86CALLOUT 0x404747
0x01ab38: MOV SCRATCH, 0x420358
0x01ab68: MOV DWORD PTR [SCRATCH], EAX
0x01ab80: MOV SCRATCH, EBP
0x01abb0: ADD SCRATCH, 0xfffffde0
0x01abc8: MOV EAX, SCRATCH
0x01abe0: X86 push eax
0x01ac10: X86CALLOUT 0x4016c5
0x01ac28: X86 push eax
0x01ac58: X86CALLOUT 0x404747
0x01ac70: MOV SCRATCH, 0x420350
0x01aca0: MOV DWORD PTR [SCRATCH], EAX
0x01acb8: MOV SCRATCH, EBP
0x01ace8: ADD SCRATCH, 0xfffffde0
0x01ad00: MOV EAX, SCRATCH
0x01ad18: X86 push eax
0x01ad48: X86CALLOUT 0x40141e
0x01ad60: X86 push eax
0x01ad90: X86CALLOUT 0x404747
0x01ada8: MOV SCRATCH, 0x41ff38
0x01add8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01adf0: PUSH SCRATCH
0x01ae08: MOV SCRATCH, 0x420348
0x01ae38: MOV DWORD PTR [SCRATCH], EAX
0x01ae50: X86CALLOUT 0x401866
0x01ae68: MOV SCRATCH, 0x41ff2c
0x01ae98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01aeb0: PUSH SCRATCH
0x01aec8: X86CALLOUT 0x4018ab
0x01aee0: MOV SCRATCH, 0x41ff30
0x01af10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01af28: PUSH SCRATCH
0x01af40: X86CALLOUT 0x4018f0
0x01af58: MOV SCRATCH, 0x41ff38
0x01af88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01afa0: MOV EBX, SCRATCH
0x01afb8: MOV SCRATCH, EBP
0x01afe8: ADD SCRATCH, 0xfffffde0
0x01b000: MOV EAX, SCRATCH
0x01b018: X86 push eax
0x01b048: X86 add ebx, 78h
0x01b060: X86CALLOUT 0x401617
0x01b078: X86 push eax
0x01b0a8: X86JUMPOUT call dword ptr [ebx]
0x01b0c0: X86 push eax
0x01b0f0: X86CALLOUT 0x409c62
0x01b108: MOV SCRATCH, 0x41ff38
0x01b138: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01b150: MOV EBX, SCRATCH
0x01b168: MOV SCRATCH, EBP
0x01b198: ADD SCRATCH, 0xfffffde0
0x01b1b0: MOV EAX, SCRATCH
0x01b1c8: X86 push eax
0x01b1f8: X86 add ebx, 78h
0x01b210: X86CALLOUT 0x4016c5
0x01b228: X86 push eax
0x01b258: X86JUMPOUT call dword ptr [ebx]
0x01b270: X86 push eax
0x01b2a0: X86CALLOUT 0x409c62
0x01b2b8: MOV SCRATCH, 0x41ff38
0x01b2e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01b300: MOV EBX, SCRATCH
0x01b318: MOV SCRATCH, EBP
0x01b348: ADD SCRATCH, 0xfffffde0
0x01b360: MOV EAX, SCRATCH
0x01b378: X86 push eax
0x01b3a8: X86 add ebx, 78h
0x01b3c0: X86CALLOUT 0x40166e
0x01b3d8: X86 push eax
0x01b408: X86JUMPOUT call dword ptr [ebx]
0x01b420: X86 push eax
0x01b450: X86CALLOUT 0x409c62
0x01b468: X86CALLOUT 0x407c9f
0x01b480: X86CALLOUT 0x4073a2
0x01b498: X86CALLOUT 0x406c16
0x01b4b0: X86CALLOUT 0x40765a
0x01b4c8: X86 test eax, eax
0x01b4e0: JZ VM[0x01b600] (fallthrough VM[0x01b4f8])
0x01b4f8: X86CALLOUT 0x404b76
0x01b510: X86 test eax, eax
0x01b528: JNZ VM[0x01b600] (fallthrough VM[0x01b540])
0x01b540: X86 push edi
0x01b570: X86CALLOUT 0x40a63e
0x01b588: X86 test eax, eax
0x01b5a0: JNZ VM[0x01b600] (fallthrough VM[0x01b5b8])
0x01b5b8: X86 push edi
0x01b5e8: X86CALLOUT 0x408bde
0x01b600: X86 mov eax, dword ptr fs:[30h]
0x01b618: MOV SCRATCH, EAX
0x01b648: ADD SCRATCH, 0x000008
0x01b660: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01b678: MOV EAX, SCRATCH
0x01b690: MOV SCRATCH, EAX
0x01b6c0: ADD SCRATCH, 0x00003c
0x01b6d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01b6f0: MOV ECX, SCRATCH
0x01b708: X86 test byte ptr [ecx+eax+8h], 1h
0x01b720: JNZ VM[0x01b7c8] (fallthrough VM[0x01b738])
0x01b738: X86CALLOUT 0x406653
0x01b750: X86 test eax, eax
0x01b768: JZ VM[0x01b7c8] (fallthrough VM[0x01b780])
0x01b780: X86 push edi
0x01b7b0: X86CALLOUT 0x408bde
0x01b7c8: X86 mov ebx, 208h
0x01b7e0: X86 push ebx
0x01b810: MOV SCRATCH, EBP
0x01b840: ADD SCRATCH, 0xfffffbd8
0x01b858: MOV EAX, SCRATCH
0x01b870: X86 push edi
0x01b8a0: X86 push eax
0x01b8d0: X86CALLOUT 0x40ae80
0x01b8e8: X86 add esp, 0Ch
0x01b900: MOV SCRATCH, EBP
0x01b930: ADD SCRATCH, 0xfffffbd8
0x01b948: MOV EAX, SCRATCH
0x01b960: X86 push eax
0x01b990: X86CALLOUT 0x4013c0
0x01b9a8: MOV SCRATCH, EBP
0x01b9d8: ADD SCRATCH, 0xfffffbd8
0x01b9f0: MOV EAX, SCRATCH
0x01ba08: X86 push eax
0x01ba38: MOV SCRATCH, 0x41ff38
0x01ba68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01ba80: MOV EAX, SCRATCH
0x01ba98: MOV SCRATCH, 0x000001
0x01bab0: PUSH SCRATCH
0x01bac8: X86 push edi
0x01baf8: X86JUMPOUT call dword ptr [eax+34h]
0x01bb10: X86 push ebx
0x01bb40: MOV SCRATCH, EBP
0x01bb70: ADD SCRATCH, 0xffffffec
0x01bb88: MOV DWORD PTR [SCRATCH], EAX
0x01bba0: MOV SCRATCH, EBP
0x01bbd0: ADD SCRATCH, 0xfffffbd8
0x01bbe8: MOV EAX, SCRATCH
0x01bc00: X86 push edi
0x01bc30: X86 push eax
0x01bc60: X86CALLOUT 0x40ae80
0x01bc78: X86 add esp, 0Ch
0x01bc90: X86 cmp dword ptr [ebp+0FFFFFFECh], edi
0x01bca8: JZ VM[0x01be58] (fallthrough VM[0x01bcc0])
0x01bcc0: MOV SCRATCH, 0x41ff38
0x01bcf0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01bd08: MOV EAX, SCRATCH
0x01bd20: X86JUMPOUT call dword ptr [eax+84h]
0x01bd38: X86 cmp eax, 0B7h
0x01bd50: JNZ VM[0x01bea0] (fallthrough VM[0x01bd68])
0x01bd68: MOV SCRATCH, EBP
0x01bd98: ADD SCRATCH, 0xffffffec
0x01bdb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01bdc8: PUSH SCRATCH
0x01bde0: MOV SCRATCH, 0x41ff34
0x01be10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01be28: MOV EAX, SCRATCH
0x01be40: X86JUMPOUT call dword ptr [eax+3Ch]
0x01be58: X86 push edi
0x01be88: X86CALLOUT 0x408bde
0x01bea0: MOV SCRATCH, 0xec63cd77
0x01beb8: PUSH SCRATCH
0x01bed0: X86 push esi
0x01bf00: MOV SCRATCH, EBP
0x01bf30: ADD SCRATCH, 0xfffffff8
0x01bf48: MOV DWORD PTR [SCRATCH], EDI
0x01bf60: X86CALLOUT 0x407ff5
0x01bf78: X86 mov esi, eax
0x01bfa8: MOV SCRATCH, EBP
0x01bfd8: ADD SCRATCH, 0xfffffff8
0x01bff0: MOV EAX, SCRATCH
0x01c008: X86 push eax
0x01c038: MOV SCRATCH, 0x41ff38
0x01c068: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c080: MOV EAX, SCRATCH
0x01c098: MOV SCRATCH, 0x000040
0x01c0b0: PUSH SCRATCH
0x01c0c8: MOV SCRATCH, 0x000001
0x01c0e0: PUSH SCRATCH
0x01c0f8: X86 push esi
0x01c128: MOV SCRATCH, 0xffffffff
0x01c140: PUSH SCRATCH
0x01c158: X86JUMPOUT call dword ptr [eax+10h]
0x01c170: MOV SCRATCH, EBP
0x01c1a0: ADD SCRATCH, 0xfffffff8
0x01c1b8: MOV EAX, SCRATCH
0x01c1d0: X86 push eax
0x01c200: X86 mov byte ptr [esi], 90h
0x01c218: MOV SCRATCH, EBP
0x01c248: ADD SCRATCH, 0xfffffff8
0x01c260: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c278: PUSH SCRATCH
0x01c290: MOV SCRATCH, 0x41ff38
0x01c2c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c2d8: MOV EAX, SCRATCH
0x01c2f0: MOV SCRATCH, 0x000001
0x01c308: PUSH SCRATCH
0x01c320: X86 push esi
0x01c350: MOV SCRATCH, 0xffffffff
0x01c368: PUSH SCRATCH
0x01c380: X86JUMPOUT call dword ptr [eax+10h]
0x01c398: X86 cmp dword ptr [ebp+0FFFFFFE8h], 1h
0x01c3b0: JNZ VM[0x01c410] (fallthrough VM[0x01c3c8])
0x01c3c8: X86 push edi
0x01c3f8: X86CALLOUT 0x408bde
0x01c410: MOV SCRATCH, 0x41ff34
0x01c440: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c458: MOV EAX, SCRATCH
0x01c470: X86 push edi
0x01c4a0: X86 push edi
0x01c4d0: MOV SCRATCH, 0x000011
0x01c4e8: PUSH SCRATCH
0x01c500: MOV SCRATCH, 0xfffffffe
0x01c518: PUSH SCRATCH
0x01c530: X86JUMPOUT call dword ptr [eax+8h]
0x01c548: MOV SCRATCH, EBP
0x01c578: ADD SCRATCH, 0xfffffff0
0x01c590: MOV EAX, SCRATCH
0x01c5a8: X86 push eax
0x01c5d8: MOV SCRATCH, 0x000004
0x01c5f0: PUSH SCRATCH
0x01c608: MOV SCRATCH, EBP
0x01c638: ADD SCRATCH, 0xfffffffc
0x01c650: MOV EAX, SCRATCH
0x01c668: X86 push eax
0x01c698: MOV SCRATCH, 0x41ff34
0x01c6c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c6e0: MOV EAX, SCRATCH
0x01c6f8: MOV SCRATCH, 0x000022
0x01c710: PUSH SCRATCH
0x01c728: MOV SCRATCH, 0xffffffff
0x01c740: PUSH SCRATCH
0x01c758: X86JUMPOUT call dword ptr [eax+4h]
0x01c770: X86 test eax, eax
0x01c788: JNZ VM[0x01c950] (fallthrough VM[0x01c7a0])
0x01c7a0: X86 or dword ptr [ebp+0FFFFFFFCh], 30h
0x01c7b8: MOV SCRATCH, 0x000004
0x01c7d0: PUSH SCRATCH
0x01c7e8: MOV SCRATCH, EBP
0x01c818: ADD SCRATCH, 0xfffffffc
0x01c830: MOV EAX, SCRATCH
0x01c848: X86 push eax
0x01c878: MOV SCRATCH, 0x41ff34
0x01c8a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01c8c0: MOV EAX, SCRATCH
0x01c8d8: MOV SCRATCH, 0x000022
0x01c8f0: PUSH SCRATCH
0x01c908: MOV SCRATCH, 0xffffffff
0x01c920: PUSH SCRATCH
0x01c938: X86JUMPOUT call dword ptr [eax+40h]
0x01c950: X86 push ebx
0x01c980: MOV SCRATCH, EBP
0x01c9b0: ADD SCRATCH, 0xfffff9d0
0x01c9c8: MOV EAX, SCRATCH
0x01c9e0: X86 push edi
0x01ca10: X86 push eax
0x01ca40: X86CALLOUT 0x40ae80
0x01ca58: MOV SCRATCH, 0x41ff38
0x01ca88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01caa0: MOV EAX, SCRATCH
0x01cab8: X86 add esp, 0Ch
0x01cad0: MOV SCRATCH, 0x000104
0x01cae8: PUSH SCRATCH
0x01cb00: MOV SCRATCH, EBP
0x01cb30: ADD SCRATCH, 0xfffff9d0
0x01cb48: MOV ECX, SCRATCH
0x01cb60: X86 push ecx
0x01cb90: X86 push edi
0x01cbc0: MOV SCRATCH, EAX
0x01cbf0: ADD SCRATCH, 0x000048
0x01cc08: MOV ESI, SCRATCH
0x01cc20: X86JUMPOUT call dword ptr [eax+78h]
0x01cc38: X86 push eax
0x01cc68: X86JUMPOUT call dword ptr [esi]
0x01cc80: X86 push edi
0x01ccb0: X86 push edi
0x01cce0: MOV SCRATCH, 0x000003
0x01ccf8: PUSH SCRATCH
0x01cd10: X86 push edi
0x01cd40: MOV SCRATCH, 0x000001
0x01cd58: PUSH SCRATCH
0x01cd70: MOV SCRATCH, 0x80000000
0x01cd88: PUSH SCRATCH
0x01cda0: MOV SCRATCH, EBP
0x01cdd0: ADD SCRATCH, 0xfffff9d0
0x01cde8: MOV EAX, SCRATCH
0x01ce00: X86 push eax
0x01ce30: X86CALLOUT 0x408933
0x01ce48: X86 cmp eax, 0FFFFFFFFh
0x01ce60: MOV SCRATCH, 0x42035c
0x01ce90: MOV DWORD PTR [SCRATCH], EAX
0x01cea8: JNZ VM[0x01cf08] (fallthrough VM[0x01cec0])
0x01cec0: X86 push edi
0x01cef0: X86CALLOUT 0x408bde
0x01cf08: X86 push edi
0x01cf38: X86 push edi
0x01cf68: X86CALLOUT 0x404f77
0x01cf80: X86 rdtsc 
0x01cf98: X86 xor eax, edx
0x01cfb0: X86 and eax, 0FFFFh
0x01cfc8: X86 push ss
0x01cfe0: X86 pop ss
0x01cff8: X86JUMPOUT call eax
0x01d010: X86 push edi
0x01d040: MOV SCRATCH, 0xffffffff
0x01d058: PUSH SCRATCH
0x01d070: X86 push edi
0x01d0a0: X86 push edi
0x01d0d0: X86 push edi
0x01d100: X86JUMPOUT call dword ptr [401054h]
0x01d118: X86 push edi
0x01d148: X86 push edi
0x01d178: X86 push edi
0x01d1a8: X86 push edi
0x01d1d8: X86 push edi
0x01d208: X86JUMPOUT call dword ptr [4010ACh]
0x01d220: X86 push edi
0x01d250: X86CALLOUT 0x408bde
0x01d268: X86 pop edi
0x01d280: X86 pop esi
0x01d298: X86 pop ebx
0x01d2b0: X86 leave 
0x01d2c8: X86 ret 4h
0x01d2e0: MOV SCRATCH, EBP
0x01d310: ADD SCRATCH, 0x00000c
0x01d328: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01d340: MOV EAX, SCRATCH
0x01d358: X86 dec eax
0x01d370: JZ VM[0x01daa8] (fallthrough VM[0x01d388])
0x01d388: X86 sub eax, 0Eh
0x01d3a0: JZ VM[0x01d490] (fallthrough VM[0x01d3b8])
0x01d3b8: X86 dec eax
0x01d3d0: JNZ VM[0x01db50] (fallthrough VM[0x01d3e8])
0x01d3e8: X86 push eax
0x01d418: X86JUMPOUT call dword ptr [401084h]
0x01d430: X86 xor eax, eax
0x01d448: X86 pop edi
0x01d460: X86 leave 
0x01d478: X86 ret 10h
0x01d490: X86 push ebx
0x01d4c0: X86 push esi
0x01d4f0: MOV SCRATCH, EBP
0x01d520: ADD SCRATCH, 0xffffffc0
0x01d538: MOV EAX, SCRATCH
0x01d550: X86 push eax
0x01d580: MOV SCRATCH, EBP
0x01d5b0: ADD SCRATCH, 0x000008
0x01d5c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01d5e0: PUSH SCRATCH
0x01d5f8: X86JUMPOUT call dword ptr [401080h]
0x01d610: MOV SCRATCH, 0x40107c
0x01d640: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01d658: MOV ESI, SCRATCH
0x01d670: MOV SCRATCH, 0xcc0020
0x01d688: PUSH SCRATCH
0x01d6a0: X86 xor edi, edi
0x01d6b8: X86 push edi
0x01d6e8: X86 push edi
0x01d718: MOV SCRATCH, 0x420354
0x01d748: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01d760: PUSH SCRATCH
0x01d778: X86 mov ebx, eax
0x01d7a8: MOV SCRATCH, 0x000001
0x01d7c0: PUSH SCRATCH
0x01d7d8: X86JUMPOUT call esi
0x01d7f0: X86 push eax
0x01d820: X86 push edi
0x01d850: X86JUMPOUT call esi
0x01d868: X86 push eax
0x01d898: X86 push edi
0x01d8c8: X86 push edi
0x01d8f8: X86 push ebx
0x01d928: X86JUMPOUT call dword ptr [401024h]
0x01d940: MOV SCRATCH, EBP
0x01d970: ADD SCRATCH, 0xffffffc0
0x01d988: MOV EAX, SCRATCH
0x01d9a0: X86 push eax
0x01d9d0: MOV SCRATCH, EBP
0x01da00: ADD SCRATCH, 0x000008
0x01da18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01da30: PUSH SCRATCH
0x01da48: X86JUMPOUT call dword ptr [401078h]
0x01da60: X86 pop esi
0x01da78: X86 pop ebx
0x01da90: CRASH
0x01daa8: X86 xor edi, edi
0x01dac0: X86 push edi
0x01daf0: X86 push edi
0x01db20: X86JUMPOUT call dword ptr [4010B0h]
0x01db38: CRASH
0x01db50: MOV SCRATCH, EBP
0x01db80: ADD SCRATCH, 0x000014
0x01db98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01dbb0: PUSH SCRATCH
0x01dbc8: MOV SCRATCH, EBP
0x01dbf8: ADD SCRATCH, 0x000010
0x01dc10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01dc28: PUSH SCRATCH
0x01dc40: MOV SCRATCH, EBP
0x01dc70: ADD SCRATCH, 0x00000c
0x01dc88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01dca0: PUSH SCRATCH
0x01dcb8: MOV SCRATCH, EBP
0x01dce8: ADD SCRATCH, 0x000008
0x01dd00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01dd18: PUSH SCRATCH
0x01dd30: X86JUMPOUT call dword ptr [4010A8h]
0x01dd48: CRASH
0x01dd60: X86CALLOUT 0x407fb4
0x01dd78: X86 mov eax, dword ptr fs:[30h]
0x01dd90: MOV SCRATCH, EAX
0x01ddc0: ADD SCRATCH, 0x00000c
0x01ddd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01ddf0: MOV EAX, SCRATCH
0x01de08: MOV SCRATCH, EAX
0x01de38: ADD SCRATCH, 0x00001c
0x01de50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01de68: MOV EAX, SCRATCH
0x01de80: MOV SCRATCH, EAX
0x01deb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01dec8: MOV ESI, SCRATCH
0x01dee0: X86 xor ebx, ebx
0x01def8: MOV SCRATCH, 0x7fbc7431
0x01df10: PUSH SCRATCH
0x01df28: MOV SCRATCH, ESI
0x01df58: ADD SCRATCH, 0x000008
0x01df70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01df88: PUSH SCRATCH
0x01dfa0: X86CALLOUT 0x407ff5
0x01dfb8: X86 mov edi, eax
0x01dfe8: X86 cmp edi, ebx
0x01e000: JNZ VM[0x01e090] (fallthrough VM[0x01e018])
0x01e018: MOV SCRATCH, ESI
0x01e048: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e060: MOV ESI, SCRATCH
0x01e078: CRASH
0x01e090: MOV SCRATCH, ESI
0x01e0c0: ADD SCRATCH, 0x000008
0x01e0d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e0f0: MOV ESI, SCRATCH
0x01e108: MOV SCRATCH, 0x000098
0x01e120: PUSH SCRATCH
0x01e138: MOV SCRATCH, 0x000040
0x01e150: PUSH SCRATCH
0x01e168: X86JUMPOUT call edi
0x01e180: MOV SCRATCH, 0xc97c1fff
0x01e198: PUSH SCRATCH
0x01e1b0: MOV SCRATCH, 0x41ff38
0x01e1e0: MOV DWORD PTR [SCRATCH], EAX
0x01e1f8: X86 push esi
0x01e228: MOV SCRATCH, EAX
0x01e258: ADD SCRATCH, 0x00008c
0x01e270: MOV DWORD PTR [SCRATCH], EDI
0x01e288: X86CALLOUT 0x407ff5
0x01e2a0: MOV SCRATCH, 0x41ff38
0x01e2d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e2e8: MOV ECX, SCRATCH
0x01e300: MOV SCRATCH, 0x4552d021
0x01e318: PUSH SCRATCH
0x01e330: X86 push esi
0x01e360: MOV SCRATCH, ECX
0x01e390: ADD SCRATCH, 0x000088
0x01e3a8: MOV DWORD PTR [SCRATCH], EAX
0x01e3c0: X86CALLOUT 0x407ff5
0x01e3d8: MOV SCRATCH, 0x41ff38
0x01e408: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e420: MOV ECX, SCRATCH
0x01e438: MOV SCRATCH, ECX
0x01e468: ADD SCRATCH, 0x000078
0x01e480: MOV DWORD PTR [SCRATCH], EAX
0x01e498: MOV SCRATCH, 0x41ff38
0x01e4c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e4e0: MOV ESI, SCRATCH
0x01e4f8: MOV SCRATCH, 0xcb1508dc
0x01e510: PUSH SCRATCH
0x01e528: MOV SCRATCH, EBP
0x01e558: ADD SCRATCH, 0xfffff77c
0x01e570: MOV EAX, SCRATCH
0x01e588: X86 push eax
0x01e5b8: X86 add esi, 78h
0x01e5d0: X86CALLOUT 0x401617
0x01e5e8: X86 push eax
0x01e618: X86JUMPOUT call dword ptr [esi]
0x01e630: X86 push eax
0x01e660: X86CALLOUT 0x407ff5
0x01e678: MOV SCRATCH, 0x41ff38
0x01e6a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e6c0: MOV ECX, SCRATCH
0x01e6d8: MOV SCRATCH, ECX
0x01e708: ADD SCRATCH, 0x00006c
0x01e720: MOV DWORD PTR [SCRATCH], EAX
0x01e738: MOV SCRATCH, 0x41ff38
0x01e768: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e780: MOV ESI, SCRATCH
0x01e798: MOV SCRATCH, 0xe058bb45
0x01e7b0: PUSH SCRATCH
0x01e7c8: MOV SCRATCH, EBP
0x01e7f8: ADD SCRATCH, 0xfffff77c
0x01e810: MOV EAX, SCRATCH
0x01e828: X86 push eax
0x01e858: X86 add esi, 6Ch
0x01e870: X86CALLOUT 0x401617
0x01e888: X86 push eax
0x01e8b8: X86JUMPOUT call dword ptr [esi]
0x01e8d0: X86 push eax
0x01e900: X86CALLOUT 0x407ff5
0x01e918: MOV SCRATCH, 0x41ff38
0x01e948: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01e960: MOV ECX, SCRATCH
0x01e978: MOV SCRATCH, ECX
0x01e9a8: ADD SCRATCH, 0x000068
0x01e9c0: MOV DWORD PTR [SCRATCH], EAX
0x01e9d8: MOV SCRATCH, 0x41ff38
0x01ea08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01ea20: MOV ESI, SCRATCH
0x01ea38: MOV SCRATCH, 0xff808c10
0x01ea50: PUSH SCRATCH
0x01ea68: MOV SCRATCH, EBP
0x01ea98: ADD SCRATCH, 0xfffff77c
0x01eab0: MOV EAX, SCRATCH
0x01eac8: X86 push eax
0x01eaf8: X86 add esi, 6Ch
0x01eb10: X86CALLOUT 0x401617
0x01eb28: X86 push eax
0x01eb58: X86JUMPOUT call dword ptr [esi]
0x01eb70: X86 push eax
0x01eba0: X86CALLOUT 0x407ff5
0x01ebb8: MOV SCRATCH, 0x41ff38
0x01ebe8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01ec00: MOV ECX, SCRATCH
0x01ec18: MOV SCRATCH, 0x40105c
0x01ec48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01ec60: MOV ESI, SCRATCH
0x01ec78: MOV SCRATCH, ECX
0x01eca8: ADD SCRATCH, 0x000004
0x01ecc0: MOV DWORD PTR [SCRATCH], EAX
0x01ecd8: MOV SCRATCH, 0x000005
0x01ecf0: PUSH SCRATCH
0x01ed08: X86 pop ecx
0x01ed20: MOV SCRATCH, 0x000010
0x01ed38: PUSH SCRATCH
0x01ed50: MOV SCRATCH, EBP
0x01ed80: ADD SCRATCH, 0xffffffe8
0x01ed98: MOV EAX, SCRATCH
0x01edb0: MOV SCRATCH, EBP
0x01ede0: ADD SCRATCH, 0xffffffe8
0x01edf8: MOV EDI, SCRATCH
0x01ee10: X86 [rep] movsd dword ptr [esi], dword ptr es:[edi]
0x01ee28: X86 push eax
0x01ee58: X86 mov byte ptr [ebp+0FFFFFFEAh], bl
0x01ee70: X86 mov byte ptr [ebp+0FFFFFFE9h], bl
0x01ee88: X86CALLOUT 0x407ec9
0x01eea0: X86 cmp eax, 530BF41Dh
0x01eeb8: JNZ VM[0x01ef00] (fallthrough VM[0x01eed0])
0x01eed0: X86 xor eax, eax
0x01eee8: CRASH
0x01ef00: X86 mov eax, dword ptr fs:[30h]
0x01ef18: MOV SCRATCH, 0x42034c
0x01ef48: MOV DWORD PTR [SCRATCH], EAX
0x01ef60: MOV SCRATCH, EAX
0x01ef90: ADD SCRATCH, 0x000008
0x01efa8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01efc0: MOV EAX, SCRATCH
0x01efd8: MOV SCRATCH, 0x000030
0x01eff0: PUSH SCRATCH
0x01f008: MOV SCRATCH, 0x42034c
0x01f038: MOV DWORD PTR [SCRATCH], EAX
0x01f050: MOV SCRATCH, EBP
0x01f080: ADD SCRATCH, 0xffffffb8
0x01f098: MOV EAX, SCRATCH
0x01f0b0: X86 push ebx
0x01f0e0: X86 push eax
0x01f110: X86CALLOUT 0x40ae80
0x01f128: X86 mov edi, 208h
0x01f140: X86 push edi
0x01f170: MOV SCRATCH, EBP
0x01f1a0: ADD SCRATCH, 0xfffffb8c
0x01f1b8: MOV EAX, SCRATCH
0x01f1d0: X86 push ebx
0x01f200: X86 push eax
0x01f230: X86CALLOUT 0x40ae80
0x01f248: MOV SCRATCH, 0x41ff38
0x01f278: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01f290: MOV ESI, SCRATCH
0x01f2a8: X86 add esp, 18h
0x01f2c0: MOV SCRATCH, 0x839a7905
0x01f2d8: PUSH SCRATCH
0x01f2f0: MOV SCRATCH, EBP
0x01f320: ADD SCRATCH, 0xfffff77c
0x01f338: MOV EAX, SCRATCH
0x01f350: X86 push eax
0x01f380: X86 add esi, 6Ch
0x01f398: X86CALLOUT 0x401617
0x01f3b0: X86 push eax
0x01f3e0: X86JUMPOUT call dword ptr [esi]
0x01f3f8: X86 push eax
0x01f428: X86CALLOUT 0x407ff5
0x01f440: MOV SCRATCH, 0x000001
0x01f458: PUSH SCRATCH
0x01f470: X86JUMPOUT call eax
0x01f488: MOV SCRATCH, 0x000410
0x01f4a0: PUSH SCRATCH
0x01f4b8: MOV SCRATCH, EBP
0x01f4e8: ADD SCRATCH, 0xfffff36c
0x01f500: MOV EAX, SCRATCH
0x01f518: X86 push ebx
0x01f548: X86 push eax
0x01f578: X86CALLOUT 0x40ae80
0x01f590: X86 add esp, 0Ch
0x01f5a8: MOV SCRATCH, 0x000030
0x01f5c0: PUSH SCRATCH
0x01f5d8: X86 pop esi
0x01f5f0: X86 mov word ptr [ebp+0FFFFFB8Ch], 25h
0x01f608: X86 mov word ptr [ebp+0FFFFFB8Eh], 2Eh
0x01f620: X86 mov word ptr [ebp+0FFFFFB90h], si
0x01f638: X86 mov word ptr [ebp+0FFFFFB92h], 38h
0x01f650: X86 mov word ptr [ebp+0FFFFFB94h], 78h
0x01f668: X86 mov word ptr [ebp+0FFFFFB96h], bx
0x01f680: X86JUMPOUT call dword ptr [40105Ch]
0x01f698: X86 push eax
0x01f6c8: MOV SCRATCH, EBP
0x01f6f8: ADD SCRATCH, 0xfffffb8c
0x01f710: MOV EAX, SCRATCH
0x01f728: X86 push eax
0x01f758: MOV SCRATCH, EBP
0x01f788: ADD SCRATCH, 0xfffff36c
0x01f7a0: MOV EAX, SCRATCH
0x01f7b8: MOV SCRATCH, 0x000104
0x01f7d0: PUSH SCRATCH
0x01f7e8: X86 push eax
0x01f818: X86JUMPOUT call dword ptr [4010F8h]
0x01f830: X86 push edi
0x01f860: MOV SCRATCH, EBP
0x01f890: ADD SCRATCH, 0xfffffb8c
0x01f8a8: MOV EAX, SCRATCH
0x01f8c0: X86 push ebx
0x01f8f0: X86 push eax
0x01f920: X86CALLOUT 0x40ae80
0x01f938: MOV SCRATCH, 0x42034c
0x01f968: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01f980: MOV EAX, SCRATCH
0x01f998: X86 add esp, 1Ch
0x01f9b0: MOV SCRATCH, 0x007f00
0x01f9c8: PUSH SCRATCH
0x01f9e0: X86 push ebx
0x01fa10: MOV SCRATCH, EBP
0x01fa40: ADD SCRATCH, 0xffffffb8
0x01fa58: MOV DWORD PTR [SCRATCH], ESI
0x01fa70: MOV SCRATCH, EBP
0x01faa0: ADD SCRATCH, 0xffffffbc
0x01fab8: MOV DWORD PTR [SCRATCH], EBX
0x01fad0: X86 mov dword ptr [ebp+0FFFFFFC0h], 4060B3h
0x01fae8: MOV SCRATCH, EBP
0x01fb18: ADD SCRATCH, 0xffffffc4
0x01fb30: MOV DWORD PTR [SCRATCH], EBX
0x01fb48: MOV SCRATCH, EBP
0x01fb78: ADD SCRATCH, 0xffffffc8
0x01fb90: MOV DWORD PTR [SCRATCH], EBX
0x01fba8: MOV SCRATCH, EBP
0x01fbd8: ADD SCRATCH, 0xffffffcc
0x01fbf0: MOV DWORD PTR [SCRATCH], EAX
0x01fc08: X86JUMPOUT call dword ptr [401074h]
0x01fc20: MOV SCRATCH, EBP
0x01fc50: ADD SCRATCH, 0xffffffd4
0x01fc68: MOV DWORD PTR [SCRATCH], EAX
0x01fc80: MOV SCRATCH, EBP
0x01fcb0: ADD SCRATCH, 0xfffff36c
0x01fcc8: MOV EAX, SCRATCH
0x01fce0: MOV SCRATCH, 0xb3c27a4d
0x01fcf8: PUSH SCRATCH
0x01fd10: X86 mov dword ptr [ebp+0FFFFFFD8h], 6h
0x01fd28: MOV SCRATCH, EBP
0x01fd58: ADD SCRATCH, 0xffffffe0
0x01fd70: MOV DWORD PTR [SCRATCH], EAX
0x01fd88: X86CALLOUT 0x409edc
0x01fda0: X86 test eax, eax
0x01fdb8: JNZ VM[0x020070] (fallthrough VM[0x01fdd0])
0x01fdd0: MOV SCRATCH, 0x41ff38
0x01fe00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x01fe18: MOV EAX, SCRATCH
0x01fe30: X86 push ebx
0x01fe60: X86 push ebx
0x01fe90: X86 push ebx
0x01fec0: MOV SCRATCH, 0x405bc4
0x01fed8: PUSH SCRATCH
0x01fef0: X86 push ebx
0x01ff20: X86 push ebx
0x01ff50: MOV SCRATCH, 0xffffffff
0x01ff68: PUSH SCRATCH
0x01ff80: X86JUMPOUT call dword ptr [eax+4h]
0x01ff98: MOV SCRATCH, 0xffffffff
0x01ffb0: PUSH SCRATCH
0x01ffc8: X86 push eax
0x01fff8: MOV SCRATCH, 0x41ff38
0x020028: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020040: MOV EAX, SCRATCH
0x020058: X86JUMPOUT call dword ptr [eax+68h]
0x020070: MOV SCRATCH, EBP
0x0200a0: ADD SCRATCH, 0xfffffd94
0x0200b8: MOV EAX, SCRATCH
0x0200d0: X86 push eax
0x020100: MOV SCRATCH, 0x41ff38
0x020130: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020148: MOV EAX, SCRATCH
0x020160: X86 mov word ptr [ebp+0FFFFFD94h], 67h
0x020178: X86 mov word ptr [ebp+0FFFFFD96h], 64h
0x020190: X86 mov word ptr [ebp+0FFFFFD98h], 69h
0x0201a8: X86 mov word ptr [ebp+0FFFFFD9Ah], 33h
0x0201c0: X86 mov word ptr [ebp+0FFFFFD9Ch], 32h
0x0201d8: X86 mov word ptr [ebp+0FFFFFD9Eh], 2Eh
0x0201f0: X86 mov word ptr [ebp+0FFFFFDA0h], 64h
0x020208: X86 mov word ptr [ebp+0FFFFFDA2h], 6Ch
0x020220: X86 mov word ptr [ebp+0FFFFFDA4h], 6Ch
0x020238: X86 mov word ptr [ebp+0FFFFFDA6h], bx
0x020250: X86JUMPOUT call dword ptr [eax+6Ch]
0x020268: X86 push ebx
0x020298: X86JUMPOUT call dword ptr [401070h]
0x0202b0: X86 push eax
0x0202e0: MOV SCRATCH, EBP
0x020310: ADD SCRATCH, 0xfffffffc
0x020328: MOV DWORD PTR [SCRATCH], EAX
0x020340: X86JUMPOUT call dword ptr [401018h]
0x020358: MOV SCRATCH, 0x40107c
0x020388: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0203a0: MOV ESI, SCRATCH
0x0203b8: MOV SCRATCH, 0x000001
0x0203d0: PUSH SCRATCH
0x0203e8: MOV SCRATCH, 0x420354
0x020418: MOV DWORD PTR [SCRATCH], EAX
0x020430: X86JUMPOUT call esi
0x020448: X86 push eax
0x020478: X86 push ebx
0x0204a8: X86JUMPOUT call esi
0x0204c0: X86 push eax
0x0204f0: MOV SCRATCH, EBP
0x020520: ADD SCRATCH, 0xfffffffc
0x020538: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020550: PUSH SCRATCH
0x020568: X86JUMPOUT call dword ptr [40101Ch]
0x020580: X86 push eax
0x0205b0: MOV SCRATCH, 0x420354
0x0205e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0205f8: PUSH SCRATCH
0x020610: X86JUMPOUT call dword ptr [401020h]
0x020628: MOV SCRATCH, 0xcc0020
0x020640: PUSH SCRATCH
0x020658: X86 push ebx
0x020688: X86 push ebx
0x0206b8: MOV SCRATCH, EBP
0x0206e8: ADD SCRATCH, 0xfffffffc
0x020700: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020718: PUSH SCRATCH
0x020730: MOV SCRATCH, 0x000001
0x020748: PUSH SCRATCH
0x020760: X86JUMPOUT call esi
0x020778: X86 push eax
0x0207a8: X86 push ebx
0x0207d8: X86JUMPOUT call esi
0x0207f0: X86 push eax
0x020820: X86 push ebx
0x020850: X86 push ebx
0x020880: MOV SCRATCH, 0x420354
0x0208b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0208c8: PUSH SCRATCH
0x0208e0: X86JUMPOUT call dword ptr [401024h]
0x0208f8: MOV SCRATCH, EBP
0x020928: ADD SCRATCH, 0xfffffffc
0x020940: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020958: PUSH SCRATCH
0x020970: X86 push ebx
0x0209a0: X86JUMPOUT call dword ptr [4010B4h]
0x0209b8: MOV SCRATCH, EBP
0x0209e8: ADD SCRATCH, 0xffffffb8
0x020a00: MOV EAX, SCRATCH
0x020a18: X86 push eax
0x020a48: X86JUMPOUT call dword ptr [4010A4h]
0x020a60: X86 push edi
0x020a90: MOV SCRATCH, EBP
0x020ac0: ADD SCRATCH, 0xfffff984
0x020ad8: MOV EAX, SCRATCH
0x020af0: X86 push ebx
0x020b20: X86 push eax
0x020b50: X86CALLOUT 0x40ae80
0x020b68: X86 add esp, 0Ch
0x020b80: X86 push ebx
0x020bb0: MOV SCRATCH, 0x42034c
0x020be0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x020bf8: PUSH SCRATCH
0x020c10: X86 mov word ptr [ebp+0FFFFF984h], 3Ch
0x020c28: X86 push ebx
0x020c58: X86 push ebx
0x020c88: MOV SCRATCH, 0x000001
0x020ca0: PUSH SCRATCH
0x020cb8: X86 mov word ptr [ebp+0FFFFF986h], 75h
0x020cd0: X86 mov word ptr [ebp+0FFFFF988h], 6Eh
0x020ce8: X86 mov word ptr [ebp+0FFFFF98Ah], 3Eh
0x020d00: X86JUMPOUT call esi
0x020d18: X86 push eax
0x020d48: X86 push ebx
0x020d78: X86JUMPOUT call esi
0x020d90: X86 push eax
0x020dc0: X86 push ebx
0x020df0: X86 push ebx
0x020e20: MOV SCRATCH, 0x80000000
0x020e38: PUSH SCRATCH
0x020e50: MOV SCRATCH, EBP
0x020e80: ADD SCRATCH, 0xfffff984
0x020e98: MOV EAX, SCRATCH
0x020eb0: X86 push eax
0x020ee0: MOV SCRATCH, EBP
0x020f10: ADD SCRATCH, 0xfffff36c
0x020f28: MOV EAX, SCRATCH
0x020f40: X86 push eax
0x020f70: MOV SCRATCH, 0x000008
0x020f88: PUSH SCRATCH
0x020fa0: X86JUMPOUT call dword ptr [4010A0h]
0x020fb8: X86 mov esi, eax
0x020fe8: MOV SCRATCH, 0x000005
0x021000: PUSH SCRATCH
0x021018: X86 push esi
0x021048: X86JUMPOUT call dword ptr [40109Ch]
0x021060: X86 push esi
0x021090: X86JUMPOUT call dword ptr [401098h]
0x0210a8: MOV SCRATCH, 0x41ff38
0x0210d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0210f0: MOV EAX, SCRATCH
0x021108: X86 push ebx
0x021138: X86 push ebx
0x021168: X86 push ebx
0x021198: MOV SCRATCH, 0x405bc4
0x0211b0: PUSH SCRATCH
0x0211c8: X86 push ebx
0x0211f8: X86 push ebx
0x021228: MOV SCRATCH, 0xffffffff
0x021240: PUSH SCRATCH
0x021258: X86JUMPOUT call dword ptr [eax+4h]
0x021270: MOV SCRATCH, 0x401094
0x0212a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0212b8: MOV ESI, SCRATCH
0x0212d0: X86 mov edi, eax
0x021300: CRASH
0x021318: MOV SCRATCH, EBP
0x021348: ADD SCRATCH, 0xffffff9c
0x021360: MOV EAX, SCRATCH
0x021378: X86 push eax
0x0213a8: X86JUMPOUT call dword ptr [401090h]
0x0213c0: MOV SCRATCH, EBP
0x0213f0: ADD SCRATCH, 0xffffff9c
0x021408: MOV EAX, SCRATCH
0x021420: X86 push eax
0x021450: X86JUMPOUT call dword ptr [40108Ch]
0x021468: X86 push ebx
0x021498: X86 push ebx
0x0214c8: X86 push ebx
0x0214f8: MOV SCRATCH, EBP
0x021528: ADD SCRATCH, 0xffffff9c
0x021540: MOV EAX, SCRATCH
0x021558: X86 push eax
0x021588: X86JUMPOUT call esi
0x0215a0: X86 test eax, eax
0x0215b8: JNZ VM[0x021318] (fallthrough VM[0x0215d0])
0x0215d0: MOV SCRATCH, 0x41ff38
0x021600: MOV SCRATCH, DWORD PTR [SCRATCH]
0x021618: MOV EAX, SCRATCH
0x021630: MOV SCRATCH, 0xffffffff
0x021648: PUSH SCRATCH
0x021660: X86 push edi
0x021690: X86JUMPOUT call dword ptr [eax+68h]
0x0216a8: MOV SCRATCH, 0x41ff34
0x0216d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0216f0: MOV EAX, SCRATCH
0x021708: X86 push ebx
0x021738: MOV SCRATCH, 0xffffffff
0x021750: PUSH SCRATCH
0x021768: X86JUMPOUT call dword ptr [eax+44h]
0x021780: X86 push ebx
0x0217b0: X86JUMPOUT call dword ptr [40100Ch]
0x0217c8: X86 push ebx
0x0217f8: X86 push ebx
0x021828: X86 push ebx
0x021858: X86 push ebx
0x021888: X86JUMPOUT call dword ptr [401088h]
0x0218a0: X86 push ebx
0x0218d0: X86 push ebx
0x021900: X86 push ebx
0x021930: X86 push ebx
0x021960: X86 push ebx
0x021990: X86JUMPOUT call dword ptr [401008h]
0x0219a8: X86 push ebx
0x0219d8: X86 push ebx
0x021a08: X86 push ebx
0x021a38: X86JUMPOUT call dword ptr [401004h]
0x021a50: X86 push ebx
0x021a80: X86JUMPOUT call dword ptr [401000h]
0x021a98: X86 push ebx
0x021ac8: X86 push ebx
0x021af8: X86 push ebx
0x021b28: X86 push ebx
0x021b58: X86 push ebx
0x021b88: X86 push ebx
0x021bb8: X86 push ebx
0x021be8: X86 push ebx
0x021c18: X86 push ebx
0x021c48: X86 push ebx
0x021c78: X86 push ebx
0x021ca8: X86 push ebx
0x021cd8: X86 push ebx
0x021d08: X86JUMPOUT call dword ptr [401010h]
0x021d20: X86 pop edi
0x021d38: X86 pop esi
0x021d50: X86 pop ebx
0x021d68: X86 leave 
0x021d80: X86 ret 
0x021d98: MOV SCRATCH, EBP
0x021dc8: ADD SCRATCH, 0x000008
0x021de0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x021df8: MOV ESI, SCRATCH
0x021e10: X86 mov eax, esi
0x021e40: MOV SCRATCH, EAX
0x021e70: ADD SCRATCH, 0x000002
0x021e88: MOV EDX, SCRATCH
0x021ea0: X86 mov cx, word ptr [eax]
0x021eb8: X86 inc eax
0x021ed0: X86 inc eax
0x021ee8: X86 test cx, cx
0x021f00: JNZ VM[0x021ea0] (fallthrough VM[0x021f18])
0x021f18: X86 sub eax, edx
0x021f30: X86 sar eax, 1h
0x021f48: X86 cmp eax, 8h
0x021f60: JC VM[0x022578] (fallthrough VM[0x021f78])
0x021f78: X86 and dword ptr [ebp+0FFFFFFFCh], 0h
0x021f90: X86 push ebx
0x021fc0: MOV SCRATCH, EAX
0x021ff0: ADD SCRATCH, 0xfffffff8
0x022008: MOV EBX, SCRATCH
0x022020: X86 test ebx, ebx
0x022038: JBE VM[0x022560] (fallthrough VM[0x022050])
0x022050: MOV SCRATCH, EBP
0x022080: ADD SCRATCH, 0x000008
0x022098: MOV DWORD PTR [SCRATCH], ESI
0x0220b0: X86 push edi
0x0220e0: MOV SCRATCH, EBP
0x022110: ADD SCRATCH, 0xffffffe8
0x022128: MOV EAX, SCRATCH
0x022140: X86 push eax
0x022170: MOV SCRATCH, 0x000010
0x022188: PUSH SCRATCH
0x0221a0: MOV SCRATCH, EBP
0x0221d0: ADD SCRATCH, 0x000008
0x0221e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x022200: PUSH SCRATCH
0x022218: X86CALLOUT 0x406ae6
0x022230: MOV SCRATCH, 0x41f4f8
0x022260: MOV SCRATCH, DWORD PTR [SCRATCH]
0x022278: MOV EAX, SCRATCH
0x022290: X86 xor edx, edx
0x0222a8: CRASH
0x0222c0: MOV SCRATCH, 0x000004
0x0222d8: PUSH SCRATCH
0x0222f0: X86 mov esi, eax
0x022320: X86 pop ecx
0x022338: MOV SCRATCH, EBP
0x022368: ADD SCRATCH, 0xffffffe8
0x022380: MOV EDI, SCRATCH
0x022398: X86 xor eax, eax
0x0223b0: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x0223c8: JZ VM[0x022530] (fallthrough VM[0x0223e0])
0x0223e0: MOV SCRATCH, EDX
0x022410: SHL SCRATCH, 0x000002
0x022428: ADD SCRATCH, 0x41f4fc
0x022440: MOV SCRATCH, DWORD PTR [SCRATCH]
0x022458: MOV EAX, SCRATCH
0x022470: X86 inc edx
0x022488: X86 test eax, eax
0x0224a0: JNZ VM[0x0222c0] (fallthrough VM[0x0224b8])
0x0224b8: X86 inc dword ptr [ebp+0FFFFFFFCh]
0x0224d0: X86 add dword ptr [ebp+8h], 2h
0x0224e8: X86 cmp dword ptr [ebp+0FFFFFFFCh], ebx
0x022500: JC VM[0x0220e0] (fallthrough VM[0x022518])
0x022518: CRASH
0x022530: X86 mov dword ptr [ebp+0FFFFFFF8h], 1h
0x022548: X86 pop edi
0x022560: X86 pop ebx
0x022578: MOV SCRATCH, EBP
0x0225a8: ADD SCRATCH, 0xfffffff8
0x0225c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0225d8: MOV EAX, SCRATCH
0x0225f0: X86 pop esi
0x022608: X86 leave 
0x022620: X86 ret 4h
0x022638: MOV SCRATCH, 0x000208
0x022650: PUSH SCRATCH
0x022668: MOV SCRATCH, EBP
0x022698: ADD SCRATCH, 0xfffffdb8
0x0226b0: MOV EAX, SCRATCH
0x0226c8: X86 push esi
0x0226f8: X86 push eax
0x022728: X86CALLOUT 0x40ae80
0x022740: X86 add esp, 0Ch
0x022758: MOV SCRATCH, EBP
0x022788: ADD SCRATCH, 0xfffffdb8
0x0227a0: MOV EAX, SCRATCH
0x0227b8: X86 push eax
0x0227e8: MOV SCRATCH, 0x41ff38
0x022818: MOV SCRATCH, DWORD PTR [SCRATCH]
0x022830: MOV EAX, SCRATCH
0x022848: X86 mov word ptr [ebp+0FFFFFDB8h], 73h
0x022860: X86 mov word ptr [ebp+0FFFFFDBAh], 65h
0x022878: X86 mov word ptr [ebp+0FFFFFDBCh], 74h
0x022890: X86 mov word ptr [ebp+0FFFFFDBEh], 75h
0x0228a8: X86 mov word ptr [ebp+0FFFFFDC0h], 70h
0x0228c0: X86 mov word ptr [ebp+0FFFFFDC2h], 61h
0x0228d8: X86 mov word ptr [ebp+0FFFFFDC4h], 70h
0x0228f0: X86 mov word ptr [ebp+0FFFFFDC6h], 69h
0x022908: X86 mov word ptr [ebp+0FFFFFDC8h], 2Eh
0x022920: X86 mov word ptr [ebp+0FFFFFDCAh], 64h
0x022938: X86 mov word ptr [ebp+0FFFFFDCCh], 6Ch
0x022950: X86 mov word ptr [ebp+0FFFFFDCEh], 6Ch
0x022968: X86JUMPOUT call dword ptr [eax+6Ch]
0x022980: X86 mov edi, eax
0x0229b0: X86 cmp edi, esi
0x0229c8: JNZ VM[0x022a10] (fallthrough VM[0x0229e0])
0x0229e0: X86 xor eax, eax
0x0229f8: CRASH
0x022a10: X86 push ebx
0x022a40: MOV SCRATCH, 0x412b8efe
0x022a58: PUSH SCRATCH
0x022a70: X86 push edi
0x022aa0: X86CALLOUT 0x407ff5
0x022ab8: MOV SCRATCH, 0xe14d138b
0x022ad0: PUSH SCRATCH
0x022ae8: X86 push edi
0x022b18: MOV SCRATCH, EBP
0x022b48: ADD SCRATCH, 0xffffffe8
0x022b60: MOV DWORD PTR [SCRATCH], EAX
0x022b78: X86CALLOUT 0x407ff5
0x022b90: MOV SCRATCH, 0xf153785d
0x022ba8: PUSH SCRATCH
0x022bc0: X86 push edi
0x022bf0: MOV SCRATCH, EBP
0x022c20: ADD SCRATCH, 0xffffffec
0x022c38: MOV DWORD PTR [SCRATCH], EAX
0x022c50: X86CALLOUT 0x407ff5
0x022c68: MOV SCRATCH, 0xb0661a12
0x022c80: PUSH SCRATCH
0x022c98: X86 push edi
0x022cc8: MOV SCRATCH, EBP
0x022cf8: ADD SCRATCH, 0xfffffff8
0x022d10: MOV DWORD PTR [SCRATCH], EAX
0x022d28: X86CALLOUT 0x407ff5
0x022d40: MOV SCRATCH, 0x8b4591a0
0x022d58: PUSH SCRATCH
0x022d70: X86 push edi
0x022da0: X86 mov ebx, eax
0x022dd0: X86CALLOUT 0x407ff5
0x022de8: X86 push esi
0x022e18: X86 push esi
0x022e48: X86 push esi
0x022e78: MOV SCRATCH, 0x000006
0x022e90: PUSH SCRATCH
0x022ea8: X86 push esi
0x022ed8: X86 push esi
0x022f08: X86 push esi
0x022f38: MOV SCRATCH, EBP
0x022f68: ADD SCRATCH, 0xffffffe4
0x022f80: MOV DWORD PTR [SCRATCH], EAX
0x022f98: X86JUMPOUT call ebx
0x022fb0: X86 mov ebx, eax
0x022fe0: X86 cmp ebx, esi
0x022ff8: JNZ VM[0x023040] (fallthrough VM[0x023010])
0x023010: X86 xor eax, eax
0x023028: CRASH
0x023040: X86 mov edi, 226h
0x023058: X86 push edi
0x023088: MOV SCRATCH, EBP
0x0230b8: ADD SCRATCH, 0xfffffb90
0x0230d0: MOV EAX, SCRATCH
0x0230e8: X86 push esi
0x023118: X86 push eax
0x023148: X86CALLOUT 0x40ae80
0x023160: X86 add esp, 0Ch
0x023178: MOV SCRATCH, EBP
0x0231a8: ADD SCRATCH, 0xfffffb90
0x0231c0: MOV EAX, SCRATCH
0x0231d8: X86 push eax
0x023208: X86 push ebx
0x023238: MOV SCRATCH, EBP
0x023268: ADD SCRATCH, 0xfffffb90
0x023280: MOV DWORD PTR [SCRATCH], EDI
0x023298: X86JUMPOUT call dword ptr [ebp+0FFFFFFF8h]
0x0232b0: X86 test eax, eax
0x0232c8: JZ VM[0x0244c8] (fallthrough VM[0x0232e0])
0x0232e0: MOV SCRATCH, 0x000007
0x0232f8: PUSH SCRATCH
0x023310: X86 pop ecx
0x023328: X86 xor eax, eax
0x023340: MOV SCRATCH, EBP
0x023370: ADD SCRATCH, 0xffffffc4
0x023388: MOV EDI, SCRATCH
0x0233a0: X86 [rep] stosd dword ptr es:[edi]
0x0233b8: MOV SCRATCH, EBP
0x0233e8: ADD SCRATCH, 0xffffffc4
0x023400: MOV EAX, SCRATCH
0x023418: X86 push eax
0x023448: X86 mov dword ptr [ebp+0FFFFFFC4h], 1Ch
0x023460: MOV SCRATCH, EBP
0x023490: ADD SCRATCH, 0xfffffff8
0x0234a8: MOV DWORD PTR [SCRATCH], ESI
0x0234c0: X86 push esi
0x0234f0: CRASH
0x023508: MOV SCRATCH, EBP
0x023538: ADD SCRATCH, 0xfffffffc
0x023550: MOV EAX, SCRATCH
0x023568: X86 push eax
0x023598: X86 push esi
0x0235c8: X86 push esi
0x0235f8: MOV SCRATCH, EBP
0x023628: ADD SCRATCH, 0xfffffff4
0x023640: MOV EAX, SCRATCH
0x023658: X86 push eax
0x023688: MOV SCRATCH, 0x000001
0x0236a0: PUSH SCRATCH
0x0236b8: MOV SCRATCH, EBP
0x0236e8: ADD SCRATCH, 0xffffffc4
0x023700: MOV EAX, SCRATCH
0x023718: X86 push eax
0x023748: X86 push ebx
0x023778: X86JUMPOUT call dword ptr [ebp+0FFFFFFE8h]
0x023790: X86 test eax, eax
0x0237a8: JNZ VM[0x023868] (fallthrough VM[0x0237c0])
0x0237c0: MOV SCRATCH, 0x41ff38
0x0237f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x023808: MOV EAX, SCRATCH
0x023820: X86JUMPOUT call dword ptr [eax+84h]
0x023838: X86 cmp eax, 7Ah
0x023850: JNZ VM[0x024330] (fallthrough VM[0x023868])
0x023868: MOV SCRATCH, EBP
0x023898: ADD SCRATCH, 0xfffffffc
0x0238b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0238c8: MOV EAX, SCRATCH
0x0238e0: X86 add eax, 2h
0x0238f8: X86 push eax
0x023928: MOV SCRATCH, 0x41ff38
0x023958: MOV SCRATCH, DWORD PTR [SCRATCH]
0x023970: MOV EAX, SCRATCH
0x023988: MOV SCRATCH, 0x000040
0x0239a0: PUSH SCRATCH
0x0239b8: X86JUMPOUT call dword ptr [eax+8Ch]
0x0239d0: X86 mov edi, eax
0x023a00: MOV SCRATCH, EBP
0x023a30: ADD SCRATCH, 0xfffffffc
0x023a48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x023a60: MOV EAX, SCRATCH
0x023a78: X86 add eax, 2h
0x023a90: X86 push eax
0x023ac0: X86 push esi
0x023af0: X86 push edi
0x023b20: X86CALLOUT 0x40ae80
0x023b38: MOV SCRATCH, EBP
0x023b68: ADD SCRATCH, 0xfffffffc
0x023b80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x023b98: MOV EAX, SCRATCH
0x023bb0: X86 add esp, 0Ch
0x023bc8: MOV SCRATCH, EBP
0x023bf8: ADD SCRATCH, 0xfffffffc
0x023c10: MOV ECX, SCRATCH
0x023c28: X86 push ecx
0x023c58: X86 push eax
0x023c88: X86 push edi
0x023cb8: MOV SCRATCH, EBP
0x023ce8: ADD SCRATCH, 0xffffffe0
0x023d00: MOV DWORD PTR [SCRATCH], EAX
0x023d18: MOV SCRATCH, EBP
0x023d48: ADD SCRATCH, 0xfffffff4
0x023d60: MOV EAX, SCRATCH
0x023d78: X86 push eax
0x023da8: MOV SCRATCH, 0x000001
0x023dc0: PUSH SCRATCH
0x023dd8: MOV SCRATCH, EBP
0x023e08: ADD SCRATCH, 0xffffffc4
0x023e20: MOV EAX, SCRATCH
0x023e38: X86 push eax
0x023e68: X86 push ebx
0x023e98: X86JUMPOUT call dword ptr [ebp+0FFFFFFE8h]
0x023eb0: X86 test eax, eax
0x023ec8: JZ VM[0x024138] (fallthrough VM[0x023ee0])
0x023ee0: X86 mov eax, edi
0x023f10: MOV SCRATCH, EAX
0x023f40: ADD SCRATCH, 0x000002
0x023f58: MOV EDX, SCRATCH
0x023f70: X86 mov cx, word ptr [eax]
0x023f88: X86 inc eax
0x023fa0: X86 inc eax
0x023fb8: X86 cmp cx, si
0x023fd0: JNZ VM[0x023f70] (fallthrough VM[0x023fe8])
0x023fe8: X86 sub eax, edx
0x024000: X86 sar eax, 1h
0x024018: JZ VM[0x024138] (fallthrough VM[0x024030])
0x024030: X86 push edi
0x024060: X86CALLOUT 0x4065b8
0x024078: X86 xor ecx, ecx
0x024090: X86 inc ecx
0x0240a8: X86 cmp eax, ecx
0x0240c0: JNZ VM[0x024138] (fallthrough VM[0x0240d8])
0x0240d8: MOV SCRATCH, EBP
0x024108: ADD SCRATCH, 0xfffffff0
0x024120: MOV DWORD PTR [SCRATCH], ECX
0x024138: MOV SCRATCH, EBP
0x024168: ADD SCRATCH, 0xffffffe0
0x024180: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024198: MOV EAX, SCRATCH
0x0241b0: X86 add eax, 2h
0x0241c8: X86 push eax
0x0241f8: X86 push esi
0x024228: X86 push edi
0x024258: X86CALLOUT 0x40ae80
0x024270: MOV SCRATCH, 0x41ff38
0x0242a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0242b8: MOV EAX, SCRATCH
0x0242d0: X86 add esp, 0Ch
0x0242e8: X86 push edi
0x024318: X86JUMPOUT call dword ptr [eax+90h]
0x024330: X86 inc dword ptr [ebp+0FFFFFFF8h]
0x024348: MOV SCRATCH, EBP
0x024378: ADD SCRATCH, 0xffffffc4
0x024390: MOV EAX, SCRATCH
0x0243a8: X86 push eax
0x0243d8: MOV SCRATCH, EBP
0x024408: ADD SCRATCH, 0xfffffff8
0x024420: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024438: PUSH SCRATCH
0x024450: X86 push ebx
0x024480: X86JUMPOUT call dword ptr [ebp+0FFFFFFECh]
0x024498: X86 test eax, eax
0x0244b0: JNZ VM[0x023508] (fallthrough VM[0x0244c8])
0x0244c8: X86 push ebx
0x0244f8: X86JUMPOUT call dword ptr [ebp+0FFFFFFE4h]
0x024510: MOV SCRATCH, EBP
0x024540: ADD SCRATCH, 0xfffffff0
0x024558: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024570: MOV EAX, SCRATCH
0x024588: X86 pop ebx
0x0245a0: X86 pop edi
0x0245b8: X86 pop esi
0x0245d0: X86 leave 
0x0245e8: X86 ret 
0x024600: MOV SCRATCH, EBP
0x024630: ADD SCRATCH, 0x000008
0x024648: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024660: MOV EAX, SCRATCH
0x024678: CRASH
0x024690: X86 movzx ecx, word ptr [eax]
0x0246a8: X86 cmp cx, 41h
0x0246c0: JC VM[0x024738] (fallthrough VM[0x0246d8])
0x0246d8: X86 cmp cx, 5Ah
0x0246f0: JA VM[0x024738] (fallthrough VM[0x024708])
0x024708: X86 add ecx, 20h
0x024720: X86 mov word ptr [eax], cx
0x024738: X86 inc eax
0x024750: X86 inc eax
0x024768: X86 cmp word ptr [eax], 0h
0x024780: JNZ VM[0x024690] (fallthrough VM[0x024798])
0x024798: X86 pop ebp
0x0247b0: X86 ret 4h
0x0247c8: MOV SCRATCH, EBP
0x0247f8: ADD SCRATCH, 0x000008
0x024810: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024828: MOV EAX, SCRATCH
0x024840: X86 mov ecx, eax
0x024870: CRASH
0x024888: X86 mov dl, byte ptr [eax]
0x0248a0: X86 mov byte ptr [ecx], dl
0x0248b8: X86 inc ecx
0x0248d0: X86 inc eax
0x0248e8: X86 inc eax
0x024900: X86 cmp word ptr [eax], 0h
0x024918: JNZ VM[0x024888] (fallthrough VM[0x024930])
0x024930: X86 mov al, byte ptr [eax]
0x024948: X86 mov byte ptr [ecx], al
0x024960: X86 pop ebp
0x024978: X86 ret 4h
0x024990: MOV SCRATCH, EBP
0x0249c0: ADD SCRATCH, 0x00000c
0x0249d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0249f0: MOV ECX, SCRATCH
0x024a08: X86 mov al, byte ptr [ecx]
0x024a20: X86 test al, al
0x024a38: JZ VM[0x024b88] (fallthrough VM[0x024a50])
0x024a50: MOV SCRATCH, EBP
0x024a80: ADD SCRATCH, 0x000008
0x024a98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024ab0: MOV EDX, SCRATCH
0x024ac8: X86 movzx ax, al
0x024ae0: X86 mov word ptr [edx], ax
0x024af8: X86 inc edx
0x024b10: X86 inc edx
0x024b28: X86 inc ecx
0x024b40: X86 mov al, byte ptr [ecx]
0x024b58: X86 test al, al
0x024b70: JNZ VM[0x024ac8] (fallthrough VM[0x024b88])
0x024b88: X86 pop ebp
0x024ba0: X86 ret 8h
0x024bb8: MOV SCRATCH, 0x000004
0x024bd0: PUSH SCRATCH
0x024be8: X86 mov edi, 1000h
0x024c00: X86 push edi
0x024c30: X86 mov esi, 10000h
0x024c48: X86 push esi
0x024c78: MOV SCRATCH, 0x000000
0x024c90: PUSH SCRATCH
0x024ca8: MOV SCRATCH, EBP
0x024cd8: ADD SCRATCH, 0xfffffffc
0x024cf0: MOV DWORD PTR [SCRATCH], ESI
0x024d08: X86CALLOUT 0x408810
0x024d20: X86 mov ebx, eax
0x024d50: MOV SCRATCH, EBP
0x024d80: ADD SCRATCH, 0xfffffff8
0x024d98: MOV EAX, SCRATCH
0x024db0: X86 push eax
0x024de0: X86 push esi
0x024e10: CRASH
0x024e28: X86 push ebx
0x024e58: X86CALLOUT 0x408e07
0x024e70: X86 add dword ptr [ebp+0FFFFFFFCh], esi
0x024e88: MOV SCRATCH, 0x000004
0x024ea0: PUSH SCRATCH
0x024eb8: X86 push edi
0x024ee8: MOV SCRATCH, EBP
0x024f18: ADD SCRATCH, 0xfffffffc
0x024f30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x024f48: PUSH SCRATCH
0x024f60: MOV SCRATCH, 0x000000
0x024f78: PUSH SCRATCH
0x024f90: X86CALLOUT 0x408810
0x024fa8: X86 mov ebx, eax
0x024fd8: MOV SCRATCH, EBP
0x025008: ADD SCRATCH, 0xfffffff8
0x025020: MOV EAX, SCRATCH
0x025038: X86 push eax
0x025068: MOV SCRATCH, EBP
0x025098: ADD SCRATCH, 0xfffffffc
0x0250b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0250c8: PUSH SCRATCH
0x0250e0: MOV SCRATCH, 0x41ff34
0x025110: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025128: MOV EAX, SCRATCH
0x025140: X86 push ebx
0x025170: MOV SCRATCH, 0x000005
0x025188: PUSH SCRATCH
0x0251a0: X86JUMPOUT call dword ptr [eax]
0x0251b8: X86 test eax, eax
0x0251d0: JNZ VM[0x024e28] (fallthrough VM[0x0251e8])
0x0251e8: X86 pop edi
0x025200: X86 pop esi
0x025218: X86 mov eax, ebx
0x025248: X86 pop ebx
0x025260: X86 leave 
0x025278: X86 ret 
0x025290: MOV SCRATCH, 0x000004
0x0252a8: PUSH SCRATCH
0x0252c0: X86 mov edi, 1000h
0x0252d8: X86 push edi
0x025308: X86 mov esi, 10000h
0x025320: X86 push esi
0x025350: MOV SCRATCH, 0x000000
0x025368: PUSH SCRATCH
0x025380: MOV SCRATCH, EBP
0x0253b0: ADD SCRATCH, 0xfffffffc
0x0253c8: MOV DWORD PTR [SCRATCH], ESI
0x0253e0: X86CALLOUT 0x408810
0x0253f8: X86 mov ebx, eax
0x025428: MOV SCRATCH, EBP
0x025458: ADD SCRATCH, 0xfffffff8
0x025470: MOV EAX, SCRATCH
0x025488: X86 push eax
0x0254b8: X86 push esi
0x0254e8: CRASH
0x025500: X86 push ebx
0x025530: X86CALLOUT 0x408e07
0x025548: X86 add dword ptr [ebp+0FFFFFFFCh], esi
0x025560: MOV SCRATCH, 0x000004
0x025578: PUSH SCRATCH
0x025590: X86 push edi
0x0255c0: MOV SCRATCH, EBP
0x0255f0: ADD SCRATCH, 0xfffffffc
0x025608: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025620: PUSH SCRATCH
0x025638: MOV SCRATCH, 0x000000
0x025650: PUSH SCRATCH
0x025668: X86CALLOUT 0x408810
0x025680: X86 mov ebx, eax
0x0256b0: MOV SCRATCH, EBP
0x0256e0: ADD SCRATCH, 0xfffffff8
0x0256f8: MOV EAX, SCRATCH
0x025710: X86 push eax
0x025740: MOV SCRATCH, EBP
0x025770: ADD SCRATCH, 0xfffffffc
0x025788: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0257a0: PUSH SCRATCH
0x0257b8: MOV SCRATCH, 0x41ff34
0x0257e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025800: MOV EAX, SCRATCH
0x025818: X86 push ebx
0x025848: MOV SCRATCH, 0x00000b
0x025860: PUSH SCRATCH
0x025878: X86JUMPOUT call dword ptr [eax]
0x025890: X86 test eax, eax
0x0258a8: JNZ VM[0x025500] (fallthrough VM[0x0258c0])
0x0258c0: X86 pop edi
0x0258d8: X86 pop esi
0x0258f0: X86 mov eax, ebx
0x025920: X86 pop ebx
0x025938: X86 leave 
0x025950: X86 ret 
0x025968: MOV SCRATCH, 0x420340
0x025998: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0259b0: MOV ESI, SCRATCH
0x0259c8: X86 cmp esi, ebx
0x0259e0: JNZ VM[0x025ba8] (fallthrough VM[0x0259f8])
0x0259f8: MOV SCRATCH, 0x00000c
0x025a10: PUSH SCRATCH
0x025a28: X86CALLOUT 0x408d2b
0x025a40: X86 mov edi, eax
0x025a70: X86 cmp edi, ebx
0x025a88: MOV SCRATCH, 0x420340
0x025ab8: MOV DWORD PTR [SCRATCH], EDI
0x025ad0: JZ VM[0x0269d0] (fallthrough VM[0x025ae8])
0x025ae8: X86 xor eax, eax
0x025b00: X86 stosd dword ptr es:[edi]
0x025b18: X86 stosd dword ptr es:[edi]
0x025b30: X86 stosd dword ptr es:[edi]
0x025b48: MOV SCRATCH, 0x420340
0x025b78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025b90: MOV ESI, SCRATCH
0x025ba8: X86 cmp dword ptr [esi], ebx
0x025bc0: JZ VM[0x025c38] (fallthrough VM[0x025bd8])
0x025bd8: X86 cmp dword ptr [esi+4h], ebx
0x025bf0: JZ VM[0x025c38] (fallthrough VM[0x025c08])
0x025c08: X86 cmp dword ptr [esi+8h], ebx
0x025c20: JNZ VM[0x0263a0] (fallthrough VM[0x025c38])
0x025c38: MOV SCRATCH, 0x000208
0x025c50: PUSH SCRATCH
0x025c68: MOV SCRATCH, EBP
0x025c98: ADD SCRATCH, 0xfffffd90
0x025cb0: MOV EAX, SCRATCH
0x025cc8: X86 push ebx
0x025cf8: X86 push eax
0x025d28: X86CALLOUT 0x40ae80
0x025d40: MOV SCRATCH, 0x41ff38
0x025d70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025d88: MOV ESI, SCRATCH
0x025da0: X86 add esp, 0Ch
0x025db8: MOV SCRATCH, EBP
0x025de8: ADD SCRATCH, 0xfffffd90
0x025e00: MOV EAX, SCRATCH
0x025e18: X86 push eax
0x025e48: X86 add esi, 6Ch
0x025e60: X86CALLOUT 0x40150e
0x025e78: X86 push eax
0x025ea8: X86JUMPOUT call dword ptr [esi]
0x025ec0: X86 mov esi, eax
0x025ef0: X86 cmp esi, ebx
0x025f08: JZ VM[0x0269d0] (fallthrough VM[0x025f20])
0x025f20: MOV SCRATCH, 0x2ba201d
0x025f38: PUSH SCRATCH
0x025f50: X86 push esi
0x025f80: X86CALLOUT 0x407ff5
0x025f98: MOV SCRATCH, 0x420340
0x025fc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x025fe0: MOV ECX, SCRATCH
0x025ff8: MOV SCRATCH, 0xb01327f1
0x026010: PUSH SCRATCH
0x026028: X86 push esi
0x026058: MOV SCRATCH, ECX
0x026088: MOV DWORD PTR [SCRATCH], EAX
0x0260a0: X86CALLOUT 0x407ff5
0x0260b8: MOV SCRATCH, 0x420340
0x0260e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x026100: MOV ECX, SCRATCH
0x026118: MOV SCRATCH, 0xd87f4bfe
0x026130: PUSH SCRATCH
0x026148: X86 push esi
0x026178: MOV SCRATCH, ECX
0x0261a8: ADD SCRATCH, 0x000004
0x0261c0: MOV DWORD PTR [SCRATCH], EAX
0x0261d8: X86CALLOUT 0x407ff5
0x0261f0: MOV SCRATCH, 0x420340
0x026220: MOV SCRATCH, DWORD PTR [SCRATCH]
0x026238: MOV ECX, SCRATCH
0x026250: MOV SCRATCH, ECX
0x026280: ADD SCRATCH, 0x000008
0x026298: MOV DWORD PTR [SCRATCH], EAX
0x0262b0: MOV SCRATCH, 0x420340
0x0262e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0262f8: MOV ESI, SCRATCH
0x026310: X86 cmp dword ptr [esi], ebx
0x026328: JZ VM[0x0269d0] (fallthrough VM[0x026340])
0x026340: X86 cmp dword ptr [esi+4h], ebx
0x026358: JZ VM[0x0269d0] (fallthrough VM[0x026370])
0x026370: X86 cmp dword ptr [esi+8h], ebx
0x026388: JZ VM[0x0269d0] (fallthrough VM[0x0263a0])
0x0263a0: MOV SCRATCH, 0x000068
0x0263b8: PUSH SCRATCH
0x0263d0: MOV SCRATCH, EBP
0x026400: ADD SCRATCH, 0xffffff98
0x026418: MOV EAX, SCRATCH
0x026430: X86 push ebx
0x026460: X86 push eax
0x026490: X86CALLOUT 0x40ae80
0x0264a8: X86 add esp, 0Ch
0x0264c0: MOV SCRATCH, EBP
0x0264f0: ADD SCRATCH, 0xffffff98
0x026508: MOV EAX, SCRATCH
0x026520: X86 push eax
0x026550: X86JUMPOUT call dword ptr [esi]
0x026568: MOV SCRATCH, EBP
0x026598: ADD SCRATCH, 0x00000c
0x0265b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0265c8: PUSH SCRATCH
0x0265e0: MOV SCRATCH, EBP
0x026610: ADD SCRATCH, 0xffffff98
0x026628: MOV EAX, SCRATCH
0x026640: MOV SCRATCH, EBP
0x026670: ADD SCRATCH, 0x000008
0x026688: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0266a0: PUSH SCRATCH
0x0266b8: X86 push eax
0x0266e8: MOV SCRATCH, 0x420340
0x026718: MOV SCRATCH, DWORD PTR [SCRATCH]
0x026730: MOV EAX, SCRATCH
0x026748: X86JUMPOUT call dword ptr [eax+4h]
0x026760: MOV SCRATCH, EBP
0x026790: ADD SCRATCH, 0xffffff98
0x0267a8: MOV EAX, SCRATCH
0x0267c0: X86 push eax
0x0267f0: MOV SCRATCH, 0x420340
0x026820: MOV SCRATCH, DWORD PTR [SCRATCH]
0x026838: MOV EAX, SCRATCH
0x026850: X86JUMPOUT call dword ptr [eax+8h]
0x026868: MOV SCRATCH, EBP
0x026898: ADD SCRATCH, 0x000010
0x0268b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0268c8: MOV EDI, SCRATCH
0x0268e0: MOV SCRATCH, EBP
0x026910: ADD SCRATCH, 0xfffffff0
0x026928: MOV ESI, SCRATCH
0x026940: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x026958: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x026970: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x026988: X86 xor ebx, ebx
0x0269a0: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x0269b8: X86 inc ebx
0x0269d0: X86 pop edi
0x0269e8: X86 pop esi
0x026a00: X86 mov eax, ebx
0x026a30: X86 pop ebx
0x026a48: X86 leave 
0x026a60: X86 ret 0Ch
0x026a78: X86 mov ebx, 208h
0x026a90: X86 push ebx
0x026ac0: MOV SCRATCH, EBP
0x026af0: ADD SCRATCH, 0xfffffdd0
0x026b08: MOV EAX, SCRATCH
0x026b20: X86 push esi
0x026b50: X86 push eax
0x026b80: X86CALLOUT 0x40ae80
0x026b98: X86 push ebx
0x026bc8: MOV SCRATCH, EBP
0x026bf8: ADD SCRATCH, 0xfffffbc8
0x026c10: MOV EAX, SCRATCH
0x026c28: X86 push esi
0x026c58: X86 push eax
0x026c88: X86CALLOUT 0x40ae80
0x026ca0: X86 push ebx
0x026cd0: MOV SCRATCH, EBP
0x026d00: ADD SCRATCH, 0xfffff7b8
0x026d18: MOV EAX, SCRATCH
0x026d30: X86 push esi
0x026d60: X86 push eax
0x026d90: X86CALLOUT 0x40ae80
0x026da8: X86 add esp, 24h
0x026dc0: MOV SCRATCH, 0x41f724
0x026df0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x026e08: PUSH SCRATCH
0x026e20: MOV SCRATCH, EBP
0x026e50: ADD SCRATCH, 0xfffffdd0
0x026e68: MOV EAX, SCRATCH
0x026e80: X86 push eax
0x026eb0: MOV SCRATCH, 0x41f67c
0x026ec8: PUSH SCRATCH
0x026ee0: X86CALLOUT 0x409a11
0x026ef8: MOV SCRATCH, EBP
0x026f28: ADD SCRATCH, 0xfffffffc
0x026f40: MOV EAX, SCRATCH
0x026f58: X86 push eax
0x026f88: MOV SCRATCH, 0x020019
0x026fa0: PUSH SCRATCH
0x026fb8: X86 push esi
0x026fe8: MOV SCRATCH, EBP
0x027018: ADD SCRATCH, 0xfffffdd0
0x027030: MOV EAX, SCRATCH
0x027048: X86 push eax
0x027078: MOV SCRATCH, 0x41ff2c
0x0270a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0270c0: MOV EAX, SCRATCH
0x0270d8: X86 mov edi, 80000002h
0x0270f0: X86 push edi
0x027120: X86JUMPOUT call dword ptr [eax+20h]
0x027138: X86 test eax, eax
0x027150: JNZ VM[0x027b70] (fallthrough VM[0x027168])
0x027168: X86 push ebx
0x027198: MOV SCRATCH, EBP
0x0271c8: ADD SCRATCH, 0xfffff9c0
0x0271e0: MOV EAX, SCRATCH
0x0271f8: X86 push esi
0x027228: X86 push eax
0x027258: MOV SCRATCH, EBP
0x027288: ADD SCRATCH, 0xfffffff4
0x0272a0: MOV DWORD PTR [SCRATCH], EBX
0x0272b8: X86 mov dword ptr [ebp+0FFFFFFF8h], 1h
0x0272d0: X86CALLOUT 0x40ae80
0x0272e8: X86 add esp, 0Ch
0x027300: MOV SCRATCH, 0x41f728
0x027330: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027348: PUSH SCRATCH
0x027360: MOV SCRATCH, EBP
0x027390: ADD SCRATCH, 0xfffffbc8
0x0273a8: MOV EAX, SCRATCH
0x0273c0: X86 push eax
0x0273f0: MOV SCRATCH, 0x41f6bc
0x027408: PUSH SCRATCH
0x027420: X86CALLOUT 0x409a11
0x027438: MOV SCRATCH, EBP
0x027468: ADD SCRATCH, 0xfffffff4
0x027480: MOV EAX, SCRATCH
0x027498: X86 push eax
0x0274c8: MOV SCRATCH, EBP
0x0274f8: ADD SCRATCH, 0xfffff9c0
0x027510: MOV EAX, SCRATCH
0x027528: X86 push eax
0x027558: MOV SCRATCH, EBP
0x027588: ADD SCRATCH, 0xfffffff8
0x0275a0: MOV EAX, SCRATCH
0x0275b8: X86 push eax
0x0275e8: X86 push esi
0x027618: MOV SCRATCH, EBP
0x027648: ADD SCRATCH, 0xfffffbc8
0x027660: MOV EAX, SCRATCH
0x027678: X86 push eax
0x0276a8: MOV SCRATCH, EBP
0x0276d8: ADD SCRATCH, 0xfffffffc
0x0276f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027708: PUSH SCRATCH
0x027720: MOV SCRATCH, 0x41ff2c
0x027750: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027768: MOV EAX, SCRATCH
0x027780: X86JUMPOUT call dword ptr [eax+1Ch]
0x027798: X86 test eax, eax
0x0277b0: JNZ VM[0x027a80] (fallthrough VM[0x0277c8])
0x0277c8: MOV SCRATCH, 0x41f72c
0x0277f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027810: PUSH SCRATCH
0x027828: MOV SCRATCH, EBP
0x027858: ADD SCRATCH, 0xfffff7b8
0x027870: MOV EAX, SCRATCH
0x027888: X86 push eax
0x0278b8: MOV SCRATCH, 0x41f6d8
0x0278d0: PUSH SCRATCH
0x0278e8: X86CALLOUT 0x409a11
0x027900: MOV SCRATCH, EBP
0x027930: ADD SCRATCH, 0xfffff7b8
0x027948: MOV EAX, SCRATCH
0x027960: X86 push eax
0x027990: MOV SCRATCH, EBP
0x0279c0: ADD SCRATCH, 0xfffff9c0
0x0279d8: MOV EAX, SCRATCH
0x0279f0: X86 push eax
0x027a20: X86CALLOUT 0x407e65
0x027a38: X86 test eax, eax
0x027a50: JNZ VM[0x027a80] (fallthrough VM[0x027a68])
0x027a68: X86 mov dword ptr [ebp+0FFFFFFDCh], 1h
0x027a80: MOV SCRATCH, EBP
0x027ab0: ADD SCRATCH, 0xfffffffc
0x027ac8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027ae0: PUSH SCRATCH
0x027af8: MOV SCRATCH, 0x41ff2c
0x027b28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027b40: MOV EAX, SCRATCH
0x027b58: X86JUMPOUT call dword ptr [eax+24h]
0x027b70: X86 push ebx
0x027ba0: MOV SCRATCH, EBP
0x027bd0: ADD SCRATCH, 0xfffffdd0
0x027be8: MOV EAX, SCRATCH
0x027c00: X86 push esi
0x027c30: X86 push eax
0x027c60: X86CALLOUT 0x40ae80
0x027c78: X86 push ebx
0x027ca8: MOV SCRATCH, EBP
0x027cd8: ADD SCRATCH, 0xfffffbc8
0x027cf0: MOV EAX, SCRATCH
0x027d08: X86 push esi
0x027d38: X86 push eax
0x027d68: X86CALLOUT 0x40ae80
0x027d80: X86 push ebx
0x027db0: MOV SCRATCH, EBP
0x027de0: ADD SCRATCH, 0xfffff7b8
0x027df8: MOV EAX, SCRATCH
0x027e10: X86 push esi
0x027e40: X86 push eax
0x027e70: X86CALLOUT 0x40ae80
0x027e88: X86 add esp, 24h
0x027ea0: MOV SCRATCH, 0x41f800
0x027ed0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x027ee8: PUSH SCRATCH
0x027f00: MOV SCRATCH, EBP
0x027f30: ADD SCRATCH, 0xfffffdd0
0x027f48: MOV EAX, SCRATCH
0x027f60: X86 push eax
0x027f90: MOV SCRATCH, 0x41f730
0x027fa8: PUSH SCRATCH
0x027fc0: X86CALLOUT 0x409a11
0x027fd8: MOV SCRATCH, EBP
0x028008: ADD SCRATCH, 0xfffffffc
0x028020: MOV EAX, SCRATCH
0x028038: X86 push eax
0x028068: MOV SCRATCH, 0x020019
0x028080: PUSH SCRATCH
0x028098: X86 push esi
0x0280c8: MOV SCRATCH, EBP
0x0280f8: ADD SCRATCH, 0xfffffdd0
0x028110: MOV EAX, SCRATCH
0x028128: X86 push eax
0x028158: MOV SCRATCH, 0x41ff2c
0x028188: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0281a0: MOV EAX, SCRATCH
0x0281b8: X86 push edi
0x0281e8: X86JUMPOUT call dword ptr [eax+20h]
0x028200: X86 test eax, eax
0x028218: JNZ VM[0x029ee0] (fallthrough VM[0x028230])
0x028230: X86 mov edi, 1000h
0x028248: X86 push edi
0x028278: MOV SCRATCH, EBP
0x0282a8: ADD SCRATCH, 0xfffffff4
0x0282c0: MOV DWORD PTR [SCRATCH], EDI
0x0282d8: X86 mov dword ptr [ebp+0FFFFFFF8h], 3h
0x0282f0: X86CALLOUT 0x408d2b
0x028308: X86 push edi
0x028338: X86 push esi
0x028368: X86 push eax
0x028398: MOV SCRATCH, EBP
0x0283c8: ADD SCRATCH, 0xffffffe8
0x0283e0: MOV DWORD PTR [SCRATCH], EAX
0x0283f8: X86CALLOUT 0x40ae80
0x028410: X86 add esp, 0Ch
0x028428: MOV SCRATCH, 0x41f804
0x028458: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028470: PUSH SCRATCH
0x028488: MOV SCRATCH, EBP
0x0284b8: ADD SCRATCH, 0xfffffbc8
0x0284d0: MOV EAX, SCRATCH
0x0284e8: X86 push eax
0x028518: MOV SCRATCH, 0x41f78c
0x028530: PUSH SCRATCH
0x028548: X86CALLOUT 0x409a11
0x028560: MOV SCRATCH, EBP
0x028590: ADD SCRATCH, 0xfffffff4
0x0285a8: MOV EAX, SCRATCH
0x0285c0: X86 push eax
0x0285f0: MOV SCRATCH, EBP
0x028620: ADD SCRATCH, 0xffffffe8
0x028638: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028650: PUSH SCRATCH
0x028668: MOV SCRATCH, EBP
0x028698: ADD SCRATCH, 0xfffffff8
0x0286b0: MOV EAX, SCRATCH
0x0286c8: X86 push eax
0x0286f8: X86 push esi
0x028728: MOV SCRATCH, EBP
0x028758: ADD SCRATCH, 0xfffffbc8
0x028770: MOV EAX, SCRATCH
0x028788: X86 push eax
0x0287b8: MOV SCRATCH, EBP
0x0287e8: ADD SCRATCH, 0xfffffffc
0x028800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028818: PUSH SCRATCH
0x028830: MOV SCRATCH, 0x41ff2c
0x028860: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028878: MOV EAX, SCRATCH
0x028890: X86JUMPOUT call dword ptr [eax+1Ch]
0x0288a8: X86 test eax, eax
0x0288c0: JNZ VM[0x029ca0] (fallthrough VM[0x0288d8])
0x0288d8: X86 push edi
0x028908: X86CALLOUT 0x408d2b
0x028920: X86 push edi
0x028950: MOV SCRATCH, EBP
0x028980: ADD SCRATCH, 0xffffffe4
0x028998: MOV DWORD PTR [SCRATCH], EAX
0x0289b0: X86CALLOUT 0x408d2b
0x0289c8: X86 push edi
0x0289f8: MOV SCRATCH, EBP
0x028a28: ADD SCRATCH, 0xfffffff0
0x028a40: MOV DWORD PTR [SCRATCH], EAX
0x028a58: X86CALLOUT 0x408d2b
0x028a70: X86 push edi
0x028aa0: X86 push esi
0x028ad0: MOV SCRATCH, EBP
0x028b00: ADD SCRATCH, 0xffffffe4
0x028b18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028b30: PUSH SCRATCH
0x028b48: MOV SCRATCH, EBP
0x028b78: ADD SCRATCH, 0xffffffec
0x028b90: MOV DWORD PTR [SCRATCH], EAX
0x028ba8: X86CALLOUT 0x40ae80
0x028bc0: X86 push edi
0x028bf0: X86 push esi
0x028c20: MOV SCRATCH, EBP
0x028c50: ADD SCRATCH, 0xfffffff0
0x028c68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028c80: PUSH SCRATCH
0x028c98: X86CALLOUT 0x40ae80
0x028cb0: X86 push edi
0x028ce0: X86 push esi
0x028d10: MOV SCRATCH, EBP
0x028d40: ADD SCRATCH, 0xffffffec
0x028d58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028d70: PUSH SCRATCH
0x028d88: X86CALLOUT 0x40ae80
0x028da0: MOV SCRATCH, EBP
0x028dd0: ADD SCRATCH, 0xffffffe4
0x028de8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028e00: MOV EDI, SCRATCH
0x028e18: X86 add esp, 24h
0x028e30: MOV SCRATCH, 0x41f808
0x028e60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028e78: PUSH SCRATCH
0x028e90: X86 push edi
0x028ec0: MOV SCRATCH, 0x41f7b0
0x028ed8: PUSH SCRATCH
0x028ef0: X86CALLOUT 0x409a11
0x028f08: MOV SCRATCH, 0x41f80c
0x028f38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028f50: PUSH SCRATCH
0x028f68: MOV SCRATCH, EBP
0x028f98: ADD SCRATCH, 0xfffffff0
0x028fb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x028fc8: PUSH SCRATCH
0x028fe0: MOV SCRATCH, 0x41f7e0
0x028ff8: PUSH SCRATCH
0x029010: X86CALLOUT 0x409a11
0x029028: MOV SCRATCH, 0x41f810
0x029058: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029070: PUSH SCRATCH
0x029088: MOV SCRATCH, EBP
0x0290b8: ADD SCRATCH, 0xffffffec
0x0290d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0290e8: PUSH SCRATCH
0x029100: MOV SCRATCH, 0x41f7f4
0x029118: PUSH SCRATCH
0x029130: X86CALLOUT 0x409a11
0x029148: X86 push edi
0x029178: X86CALLOUT 0x406996
0x029190: MOV SCRATCH, EBP
0x0291c0: ADD SCRATCH, 0xfffffff0
0x0291d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0291f0: PUSH SCRATCH
0x029208: X86CALLOUT 0x406996
0x029220: MOV SCRATCH, EBP
0x029250: ADD SCRATCH, 0xffffffec
0x029268: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029280: PUSH SCRATCH
0x029298: X86CALLOUT 0x406996
0x0292b0: MOV SCRATCH, 0x41f808
0x0292e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0292f8: MOV ECX, SCRATCH
0x029310: MOV SCRATCH, EBP
0x029340: ADD SCRATCH, 0xffffffe8
0x029358: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029370: MOV ESI, SCRATCH
0x029388: X86 shr ecx, 1h
0x0293a0: X86 add esi, 8h
0x0293b8: X86 xor eax, eax
0x0293d0: X86 [rep] cmpsb byte ptr [esi], byte ptr es:[edi]
0x0293e8: JNZ VM[0x0297c0] (fallthrough VM[0x029400])
0x029400: MOV SCRATCH, 0x41f80c
0x029430: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029448: MOV ECX, SCRATCH
0x029460: MOV SCRATCH, EBP
0x029490: ADD SCRATCH, 0xffffffe8
0x0294a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0294c0: MOV EAX, SCRATCH
0x0294d8: MOV SCRATCH, EBP
0x029508: ADD SCRATCH, 0xfffffff0
0x029520: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029538: MOV EDI, SCRATCH
0x029550: X86 shr ecx, 1h
0x029568: MOV SCRATCH, EAX
0x029598: ADD SCRATCH, 0x000024
0x0295b0: MOV ESI, SCRATCH
0x0295c8: X86 xor edx, edx
0x0295e0: X86 [rep] cmpsb byte ptr [esi], byte ptr es:[edi]
0x0295f8: JNZ VM[0x0297c0] (fallthrough VM[0x029610])
0x029610: MOV SCRATCH, 0x41f810
0x029640: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029658: MOV ECX, SCRATCH
0x029670: MOV SCRATCH, EBP
0x0296a0: ADD SCRATCH, 0xffffffec
0x0296b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0296d0: MOV EDI, SCRATCH
0x0296e8: X86 shr ecx, 1h
0x029700: MOV SCRATCH, EAX
0x029730: ADD SCRATCH, 0x000068
0x029748: MOV ESI, SCRATCH
0x029760: X86 xor eax, eax
0x029778: X86 [rep] cmpsb byte ptr [esi], byte ptr es:[edi]
0x029790: JNZ VM[0x0297c0] (fallthrough VM[0x0297a8])
0x0297a8: X86 mov dword ptr [ebp+0FFFFFFE0h], 1h
0x0297c0: X86 mov esi, 1000h
0x0297d8: X86 push esi
0x029808: X86 xor edi, edi
0x029820: X86 push edi
0x029850: MOV SCRATCH, EBP
0x029880: ADD SCRATCH, 0xffffffe4
0x029898: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0298b0: PUSH SCRATCH
0x0298c8: X86CALLOUT 0x40ae80
0x0298e0: X86 push esi
0x029910: X86 push edi
0x029940: MOV SCRATCH, EBP
0x029970: ADD SCRATCH, 0xfffffff0
0x029988: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0299a0: PUSH SCRATCH
0x0299b8: X86CALLOUT 0x40ae80
0x0299d0: X86 push esi
0x029a00: X86 push edi
0x029a30: MOV SCRATCH, EBP
0x029a60: ADD SCRATCH, 0xffffffec
0x029a78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029a90: PUSH SCRATCH
0x029aa8: X86CALLOUT 0x40ae80
0x029ac0: X86 add esp, 24h
0x029ad8: MOV SCRATCH, EBP
0x029b08: ADD SCRATCH, 0xffffffe4
0x029b20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029b38: PUSH SCRATCH
0x029b50: X86CALLOUT 0x408d5d
0x029b68: MOV SCRATCH, EBP
0x029b98: ADD SCRATCH, 0xfffffff0
0x029bb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029bc8: PUSH SCRATCH
0x029be0: X86CALLOUT 0x408d5d
0x029bf8: MOV SCRATCH, EBP
0x029c28: ADD SCRATCH, 0xffffffec
0x029c40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029c58: PUSH SCRATCH
0x029c70: X86CALLOUT 0x408d5d
0x029c88: X86 xor esi, esi
0x029ca0: MOV SCRATCH, EBP
0x029cd0: ADD SCRATCH, 0xffffffe8
0x029ce8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029d00: MOV EDI, SCRATCH
0x029d18: MOV SCRATCH, EBP
0x029d48: ADD SCRATCH, 0xffffffe8
0x029d60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029d78: PUSH SCRATCH
0x029d90: X86 xor eax, eax
0x029da8: X86 stosd dword ptr es:[edi]
0x029dc0: X86CALLOUT 0x408d5d
0x029dd8: MOV SCRATCH, EBP
0x029e08: ADD SCRATCH, 0xfffffffc
0x029e20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029e38: PUSH SCRATCH
0x029e50: MOV SCRATCH, 0x41ff2c
0x029e80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x029e98: MOV EAX, SCRATCH
0x029eb0: X86JUMPOUT call dword ptr [eax+24h]
0x029ec8: X86 mov edi, 80000002h
0x029ee0: X86 push ebx
0x029f10: MOV SCRATCH, EBP
0x029f40: ADD SCRATCH, 0xfffffdd0
0x029f58: MOV EAX, SCRATCH
0x029f70: X86 push esi
0x029fa0: X86 push eax
0x029fd0: X86CALLOUT 0x40ae80
0x029fe8: X86 push ebx
0x02a018: MOV SCRATCH, EBP
0x02a048: ADD SCRATCH, 0xfffffbc8
0x02a060: MOV EAX, SCRATCH
0x02a078: X86 push esi
0x02a0a8: X86 push eax
0x02a0d8: X86CALLOUT 0x40ae80
0x02a0f0: X86 push ebx
0x02a120: MOV SCRATCH, EBP
0x02a150: ADD SCRATCH, 0xfffff9c0
0x02a168: MOV EAX, SCRATCH
0x02a180: X86 push esi
0x02a1b0: X86 push eax
0x02a1e0: X86CALLOUT 0x40ae80
0x02a1f8: X86 push ebx
0x02a228: MOV SCRATCH, EBP
0x02a258: ADD SCRATCH, 0xfffff7b8
0x02a270: MOV EAX, SCRATCH
0x02a288: X86 push esi
0x02a2b8: X86 push eax
0x02a2e8: X86CALLOUT 0x40ae80
0x02a300: X86 add esp, 30h
0x02a318: MOV SCRATCH, 0x41f880
0x02a348: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02a360: PUSH SCRATCH
0x02a378: MOV SCRATCH, EBP
0x02a3a8: ADD SCRATCH, 0xfffffdd0
0x02a3c0: MOV EAX, SCRATCH
0x02a3d8: X86 push eax
0x02a408: MOV SCRATCH, 0x41f814
0x02a420: PUSH SCRATCH
0x02a438: X86CALLOUT 0x409a11
0x02a450: MOV SCRATCH, EBP
0x02a480: ADD SCRATCH, 0xfffffffc
0x02a498: MOV EAX, SCRATCH
0x02a4b0: X86 push eax
0x02a4e0: MOV SCRATCH, 0x020019
0x02a4f8: PUSH SCRATCH
0x02a510: X86 push esi
0x02a540: MOV SCRATCH, EBP
0x02a570: ADD SCRATCH, 0xfffffdd0
0x02a588: MOV EAX, SCRATCH
0x02a5a0: X86 push eax
0x02a5d0: MOV SCRATCH, 0x41ff2c
0x02a600: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02a618: MOV EAX, SCRATCH
0x02a630: X86 push edi
0x02a660: X86JUMPOUT call dword ptr [eax+20h]
0x02a678: X86 test eax, eax
0x02a690: JNZ VM[0x02b170] (fallthrough VM[0x02a6a8])
0x02a6a8: X86 push ebx
0x02a6d8: X86 xor edi, edi
0x02a6f0: MOV SCRATCH, EBP
0x02a720: ADD SCRATCH, 0xfffff9c0
0x02a738: MOV EAX, SCRATCH
0x02a750: X86 push esi
0x02a780: X86 inc edi
0x02a798: X86 push eax
0x02a7c8: MOV SCRATCH, EBP
0x02a7f8: ADD SCRATCH, 0xfffffff4
0x02a810: MOV DWORD PTR [SCRATCH], EBX
0x02a828: MOV SCRATCH, EBP
0x02a858: ADD SCRATCH, 0xfffffff8
0x02a870: MOV DWORD PTR [SCRATCH], EDI
0x02a888: X86CALLOUT 0x40ae80
0x02a8a0: X86 add esp, 0Ch
0x02a8b8: MOV SCRATCH, 0x41f884
0x02a8e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02a900: PUSH SCRATCH
0x02a918: MOV SCRATCH, EBP
0x02a948: ADD SCRATCH, 0xfffffbc8
0x02a960: MOV EAX, SCRATCH
0x02a978: X86 push eax
0x02a9a8: MOV SCRATCH, 0x41f84c
0x02a9c0: PUSH SCRATCH
0x02a9d8: X86CALLOUT 0x409a11
0x02a9f0: MOV SCRATCH, EBP
0x02aa20: ADD SCRATCH, 0xfffffff4
0x02aa38: MOV EAX, SCRATCH
0x02aa50: X86 push eax
0x02aa80: MOV SCRATCH, EBP
0x02aab0: ADD SCRATCH, 0xfffff9c0
0x02aac8: MOV EAX, SCRATCH
0x02aae0: X86 push eax
0x02ab10: MOV SCRATCH, EBP
0x02ab40: ADD SCRATCH, 0xfffffff8
0x02ab58: MOV EAX, SCRATCH
0x02ab70: X86 push eax
0x02aba0: X86 push esi
0x02abd0: MOV SCRATCH, EBP
0x02ac00: ADD SCRATCH, 0xfffffbc8
0x02ac18: MOV EAX, SCRATCH
0x02ac30: X86 push eax
0x02ac60: MOV SCRATCH, EBP
0x02ac90: ADD SCRATCH, 0xfffffffc
0x02aca8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02acc0: PUSH SCRATCH
0x02acd8: MOV SCRATCH, 0x41ff2c
0x02ad08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02ad20: MOV EAX, SCRATCH
0x02ad38: X86JUMPOUT call dword ptr [eax+1Ch]
0x02ad50: X86 test eax, eax
0x02ad68: JNZ VM[0x02b080] (fallthrough VM[0x02ad80])
0x02ad80: MOV SCRATCH, 0x41f888
0x02adb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02adc8: PUSH SCRATCH
0x02ade0: MOV SCRATCH, EBP
0x02ae10: ADD SCRATCH, 0xfffff7b8
0x02ae28: MOV EAX, SCRATCH
0x02ae40: X86 push eax
0x02ae70: MOV SCRATCH, 0x41f86c
0x02ae88: PUSH SCRATCH
0x02aea0: X86CALLOUT 0x409a11
0x02aeb8: MOV SCRATCH, EBP
0x02aee8: ADD SCRATCH, 0xfffff7b8
0x02af00: MOV EAX, SCRATCH
0x02af18: X86 push eax
0x02af48: MOV SCRATCH, EBP
0x02af78: ADD SCRATCH, 0xfffff9c0
0x02af90: MOV EAX, SCRATCH
0x02afa8: X86 push eax
0x02afd8: X86CALLOUT 0x407e65
0x02aff0: X86 test eax, eax
0x02b008: JNZ VM[0x02b080] (fallthrough VM[0x02b020])
0x02b020: MOV SCRATCH, EBP
0x02b050: ADD SCRATCH, 0xffffffd8
0x02b068: MOV DWORD PTR [SCRATCH], EDI
0x02b080: MOV SCRATCH, EBP
0x02b0b0: ADD SCRATCH, 0xfffffffc
0x02b0c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02b0e0: PUSH SCRATCH
0x02b0f8: MOV SCRATCH, 0x41ff2c
0x02b128: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02b140: MOV EAX, SCRATCH
0x02b158: X86JUMPOUT call dword ptr [eax+24h]
0x02b170: X86 push ebx
0x02b1a0: MOV SCRATCH, EBP
0x02b1d0: ADD SCRATCH, 0xfffffdd0
0x02b1e8: MOV EAX, SCRATCH
0x02b200: X86 push esi
0x02b230: X86 push eax
0x02b260: X86CALLOUT 0x40ae80
0x02b278: X86 push ebx
0x02b2a8: MOV SCRATCH, EBP
0x02b2d8: ADD SCRATCH, 0xfffffbc8
0x02b2f0: MOV EAX, SCRATCH
0x02b308: X86 push esi
0x02b338: X86 push eax
0x02b368: X86CALLOUT 0x40ae80
0x02b380: X86 push ebx
0x02b3b0: MOV SCRATCH, EBP
0x02b3e0: ADD SCRATCH, 0xfffff9c0
0x02b3f8: MOV EAX, SCRATCH
0x02b410: X86 push esi
0x02b440: X86 push eax
0x02b470: X86CALLOUT 0x40ae80
0x02b488: X86 push ebx
0x02b4b8: MOV SCRATCH, EBP
0x02b4e8: ADD SCRATCH, 0xfffff7b8
0x02b500: MOV EAX, SCRATCH
0x02b518: X86 push esi
0x02b548: X86 push eax
0x02b578: X86CALLOUT 0x40ae80
0x02b590: X86 add esp, 30h
0x02b5a8: X86 cmp dword ptr [ebp+0FFFFFFDCh], esi
0x02b5c0: JZ VM[0x02b680] (fallthrough VM[0x02b5d8])
0x02b5d8: X86 cmp dword ptr [ebp+0FFFFFFE0h], esi
0x02b5f0: JZ VM[0x02b680] (fallthrough VM[0x02b608])
0x02b608: X86 cmp dword ptr [ebp+0FFFFFFD8h], esi
0x02b620: JZ VM[0x02b680] (fallthrough VM[0x02b638])
0x02b638: X86 push esi
0x02b668: X86CALLOUT 0x408bde
0x02b680: X86 pop edi
0x02b698: X86 pop esi
0x02b6b0: X86 pop ebx
0x02b6c8: X86 leave 
0x02b6e0: X86 ret 
0x02b6f8: MOV SCRATCH, EBP
0x02b728: ADD SCRATCH, 0x000008
0x02b740: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02b758: MOV ESI, SCRATCH
0x02b770: MOV SCRATCH, EBP
0x02b7a0: ADD SCRATCH, 0x000008
0x02b7b8: MOV EAX, SCRATCH
0x02b7d0: X86 push eax
0x02b800: MOV SCRATCH, 0x7fffffff
0x02b818: PUSH SCRATCH
0x02b830: X86 push esi
0x02b860: X86CALLOUT 0x407119
0x02b878: MOV SCRATCH, EBP
0x02b8a8: ADD SCRATCH, 0x000008
0x02b8c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02b8d8: MOV EAX, SCRATCH
0x02b8f0: MOV SCRATCH, EAX
0x02b920: SHL SCRATCH, 0x000001
0x02b938: ADD SCRATCH, ESI
0x02b950: MOV EAX, SCRATCH
0x02b968: X86 pop esi
0x02b980: CRASH
0x02b998: X86 dec eax
0x02b9b0: X86 dec eax
0x02b9c8: X86 cmp word ptr [eax], 5Ch
0x02b9e0: JNZ VM[0x02b998] (fallthrough VM[0x02b9f8])
0x02b9f8: X86 add eax, 2h
0x02ba10: X86 push eax
0x02ba40: MOV SCRATCH, 0x000104
0x02ba58: PUSH SCRATCH
0x02ba70: MOV SCRATCH, EBP
0x02baa0: ADD SCRATCH, 0x00000c
0x02bab8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02bad0: PUSH SCRATCH
0x02bae8: X86CALLOUT 0x40709e
0x02bb00: X86 pop ebp
0x02bb18: X86 ret 8h
0x02bb30: MOV SCRATCH, EBP
0x02bb60: ADD SCRATCH, 0x000008
0x02bb78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02bb90: MOV EBX, SCRATCH
0x02bba8: X86 cmp word ptr [ebx+38h], 0h
0x02bbc0: JZ VM[0x02bf98] (fallthrough VM[0x02bbd8])
0x02bbd8: MOV SCRATCH, EBX
0x02bc08: ADD SCRATCH, 0x00003c
0x02bc20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02bc38: MOV EAX, SCRATCH
0x02bc50: X86 test eax, eax
0x02bc68: JZ VM[0x02bf98] (fallthrough VM[0x02bc80])
0x02bc80: X86 push eax
0x02bcb0: X86CALLOUT 0x406958
0x02bcc8: MOV SCRATCH, EBP
0x02bcf8: ADD SCRATCH, 0xfffffff0
0x02bd10: MOV EAX, SCRATCH
0x02bd28: X86 push eax
0x02bd58: X86 movzx eax, word ptr [ebx+38h]
0x02bd70: X86 push eax
0x02bda0: MOV SCRATCH, EBX
0x02bdd0: ADD SCRATCH, 0x00003c
0x02bde8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02be00: PUSH SCRATCH
0x02be18: X86CALLOUT 0x406ae6
0x02be30: MOV SCRATCH, EBP
0x02be60: ADD SCRATCH, 0x00000c
0x02be78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02be90: MOV EDI, SCRATCH
0x02bea8: MOV SCRATCH, 0x000004
0x02bec0: PUSH SCRATCH
0x02bed8: X86 pop ecx
0x02bef0: MOV SCRATCH, EBP
0x02bf20: ADD SCRATCH, 0xfffffff0
0x02bf38: MOV ESI, SCRATCH
0x02bf50: X86 xor eax, eax
0x02bf68: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x02bf80: JZ VM[0x02c058] (fallthrough VM[0x02bf98])
0x02bf98: MOV SCRATCH, EBX
0x02bfc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02bfe0: MOV EAX, SCRATCH
0x02bff8: X86 test eax, eax
0x02c010: JZ VM[0x02c0a0] (fallthrough VM[0x02c028])
0x02c028: X86 add ebx, eax
0x02c040: CRASH
0x02c058: X86 xor eax, eax
0x02c070: X86 inc eax
0x02c088: CRASH
0x02c0a0: X86 xor eax, eax
0x02c0b8: X86 pop edi
0x02c0d0: X86 pop esi
0x02c0e8: X86 pop ebx
0x02c100: X86 leave 
0x02c118: X86 ret 8h
0x02c130: MOV SCRATCH, EBP
0x02c160: ADD SCRATCH, 0x000008
0x02c178: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c190: MOV EBX, SCRATCH
0x02c1a8: X86 cmp word ptr [ebx+38h], 0h
0x02c1c0: JZ VM[0x02c598] (fallthrough VM[0x02c1d8])
0x02c1d8: MOV SCRATCH, EBX
0x02c208: ADD SCRATCH, 0x00003c
0x02c220: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c238: MOV EAX, SCRATCH
0x02c250: X86 test eax, eax
0x02c268: JZ VM[0x02c598] (fallthrough VM[0x02c280])
0x02c280: X86 push eax
0x02c2b0: X86CALLOUT 0x406958
0x02c2c8: MOV SCRATCH, EBP
0x02c2f8: ADD SCRATCH, 0xfffffff0
0x02c310: MOV EAX, SCRATCH
0x02c328: X86 push eax
0x02c358: X86 movzx eax, word ptr [ebx+38h]
0x02c370: X86 push eax
0x02c3a0: MOV SCRATCH, EBX
0x02c3d0: ADD SCRATCH, 0x00003c
0x02c3e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c400: PUSH SCRATCH
0x02c418: X86CALLOUT 0x406ae6
0x02c430: MOV SCRATCH, EBP
0x02c460: ADD SCRATCH, 0x00000c
0x02c478: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c490: MOV EDI, SCRATCH
0x02c4a8: MOV SCRATCH, 0x000004
0x02c4c0: PUSH SCRATCH
0x02c4d8: X86 pop ecx
0x02c4f0: MOV SCRATCH, EBP
0x02c520: ADD SCRATCH, 0xfffffff0
0x02c538: MOV ESI, SCRATCH
0x02c550: X86 xor eax, eax
0x02c568: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x02c580: JZ VM[0x02c658] (fallthrough VM[0x02c598])
0x02c598: MOV SCRATCH, EBX
0x02c5c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c5e0: MOV EAX, SCRATCH
0x02c5f8: X86 test eax, eax
0x02c610: JZ VM[0x02c6e8] (fallthrough VM[0x02c628])
0x02c628: X86 add ebx, eax
0x02c640: CRASH
0x02c658: MOV SCRATCH, EBX
0x02c688: ADD SCRATCH, 0x000044
0x02c6a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c6b8: MOV EAX, SCRATCH
0x02c6d0: CRASH
0x02c6e8: X86 xor eax, eax
0x02c700: X86 pop edi
0x02c718: X86 pop esi
0x02c730: X86 pop ebx
0x02c748: X86 leave 
0x02c760: X86 ret 8h
0x02c778: MOV SCRATCH, EBP
0x02c7a8: ADD SCRATCH, 0x000008
0x02c7c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02c7d8: MOV EBX, SCRATCH
0x02c7f0: X86 xor eax, eax
0x02c808: X86 cmp dword ptr [ebx], eax
0x02c820: MOV SCRATCH, EBP
0x02c850: ADD SCRATCH, 0xfffffff8
0x02c868: MOV DWORD PTR [SCRATCH], EAX
0x02c880: JBE VM[0x02d300] (fallthrough VM[0x02c898])
0x02c898: MOV SCRATCH, EBP
0x02c8c8: ADD SCRATCH, 0x000008
0x02c8e0: MOV DWORD PTR [SCRATCH], EAX
0x02c8f8: MOV SCRATCH, EBX
0x02c928: ADD SCRATCH, 0x00001e
0x02c940: MOV EAX, SCRATCH
0x02c958: MOV SCRATCH, EBP
0x02c988: ADD SCRATCH, 0xfffffffc
0x02c9a0: MOV DWORD PTR [SCRATCH], EAX
0x02c9b8: MOV SCRATCH, 0x000208
0x02c9d0: PUSH SCRATCH
0x02c9e8: MOV SCRATCH, EBP
0x02ca18: ADD SCRATCH, 0xfffffddc
0x02ca30: MOV EAX, SCRATCH
0x02ca48: MOV SCRATCH, 0x000000
0x02ca60: PUSH SCRATCH
0x02ca78: X86 push eax
0x02caa8: X86CALLOUT 0x40ae80
0x02cac0: MOV SCRATCH, EBP
0x02caf0: ADD SCRATCH, 0xfffffffc
0x02cb08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02cb20: MOV EAX, SCRATCH
0x02cb38: X86 movzx eax, word ptr [eax]
0x02cb50: X86 add eax, dword ptr [ebp+8h]
0x02cb68: X86 add esp, 0Ch
0x02cb80: MOV SCRATCH, EBX
0x02cbb0: ADD SCRATCH, EAX
0x02cbc8: ADD SCRATCH, 0x000020
0x02cbe0: MOV EAX, SCRATCH
0x02cbf8: X86 push eax
0x02cc28: MOV SCRATCH, EBP
0x02cc58: ADD SCRATCH, 0xfffffddc
0x02cc70: MOV EAX, SCRATCH
0x02cc88: X86 push eax
0x02ccb8: X86CALLOUT 0x4069ca
0x02ccd0: MOV SCRATCH, EBP
0x02cd00: ADD SCRATCH, 0xfffffddc
0x02cd18: MOV EAX, SCRATCH
0x02cd30: X86 push eax
0x02cd60: X86CALLOUT 0x406958
0x02cd78: MOV SCRATCH, EBP
0x02cda8: ADD SCRATCH, 0xfffffff4
0x02cdc0: MOV EAX, SCRATCH
0x02cdd8: X86 push eax
0x02ce08: MOV SCRATCH, 0x7fffffff
0x02ce20: PUSH SCRATCH
0x02ce38: MOV SCRATCH, EBP
0x02ce68: ADD SCRATCH, 0xfffffddc
0x02ce80: MOV EAX, SCRATCH
0x02ce98: X86 push eax
0x02cec8: X86CALLOUT 0x407155
0x02cee0: MOV SCRATCH, EBP
0x02cf10: ADD SCRATCH, 0xffffffe4
0x02cf28: MOV EAX, SCRATCH
0x02cf40: X86 push eax
0x02cf70: MOV SCRATCH, EBP
0x02cfa0: ADD SCRATCH, 0xfffffff4
0x02cfb8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02cfd0: PUSH SCRATCH
0x02cfe8: MOV SCRATCH, EBP
0x02d018: ADD SCRATCH, 0xfffffddc
0x02d030: MOV EAX, SCRATCH
0x02d048: X86 push eax
0x02d078: X86CALLOUT 0x406ae6
0x02d090: MOV SCRATCH, EBP
0x02d0c0: ADD SCRATCH, 0x00000c
0x02d0d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02d0f0: MOV EDI, SCRATCH
0x02d108: MOV SCRATCH, 0x000004
0x02d120: PUSH SCRATCH
0x02d138: X86 pop ecx
0x02d150: MOV SCRATCH, EBP
0x02d180: ADD SCRATCH, 0xffffffe4
0x02d198: MOV ESI, SCRATCH
0x02d1b0: X86 xor eax, eax
0x02d1c8: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x02d1e0: JZ VM[0x02d390] (fallthrough VM[0x02d1f8])
0x02d1f8: X86 inc dword ptr [ebp+0FFFFFFF8h]
0x02d210: X86 mov eax, 11Ch
0x02d228: X86 add dword ptr [ebp+8h], eax
0x02d240: X86 add dword ptr [ebp+0FFFFFFFCh], eax
0x02d258: MOV SCRATCH, EBP
0x02d288: ADD SCRATCH, 0xfffffff8
0x02d2a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02d2b8: MOV EAX, SCRATCH
0x02d2d0: X86 cmp eax, dword ptr [ebx]
0x02d2e8: JC VM[0x02c9b8] (fallthrough VM[0x02d300])
0x02d300: X86 xor eax, eax
0x02d318: X86 pop edi
0x02d330: X86 pop esi
0x02d348: X86 pop ebx
0x02d360: X86 leave 
0x02d378: X86 ret 8h
0x02d390: X86 xor eax, eax
0x02d3a8: X86 inc eax
0x02d3c0: CRASH
0x02d3d8: X86 mov ebx, 208h
0x02d3f0: X86 push ebx
0x02d420: X86 xor esi, esi
0x02d438: MOV SCRATCH, EBP
0x02d468: ADD SCRATCH, 0xfffffdd8
0x02d480: MOV EAX, SCRATCH
0x02d498: X86 push esi
0x02d4c8: X86 push eax
0x02d4f8: X86CALLOUT 0x40ae80
0x02d510: MOV SCRATCH, 0x41ff38
0x02d540: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02d558: MOV EAX, SCRATCH
0x02d570: X86 add esp, 0Ch
0x02d588: MOV SCRATCH, 0x000104
0x02d5a0: PUSH SCRATCH
0x02d5b8: MOV SCRATCH, EBP
0x02d5e8: ADD SCRATCH, 0xfffffdd8
0x02d600: MOV ECX, SCRATCH
0x02d618: X86 push ecx
0x02d648: X86 push esi
0x02d678: MOV SCRATCH, EAX
0x02d6a8: ADD SCRATCH, 0x000048
0x02d6c0: MOV EDI, SCRATCH
0x02d6d8: X86JUMPOUT call dword ptr [eax+78h]
0x02d6f0: X86 push eax
0x02d720: X86JUMPOUT call dword ptr [edi]
0x02d738: MOV SCRATCH, EBP
0x02d768: ADD SCRATCH, 0xfffffdd8
0x02d780: MOV EAX, SCRATCH
0x02d798: MOV SCRATCH, EAX
0x02d7c8: ADD SCRATCH, 0x000002
0x02d7e0: MOV ECX, SCRATCH
0x02d7f8: X86 mov dx, word ptr [eax]
0x02d810: X86 inc eax
0x02d828: X86 inc eax
0x02d840: X86 cmp dx, si
0x02d858: JNZ VM[0x02d7f8] (fallthrough VM[0x02d870])
0x02d870: X86 sub eax, ecx
0x02d888: X86 sar eax, 1h
0x02d8a0: X86 add eax, eax
0x02d8b8: MOV SCRATCH, EBP
0x02d8e8: ADD SCRATCH, 0xfffffff8
0x02d900: MOV DWORD PTR [SCRATCH], EAX
0x02d918: MOV SCRATCH, EBP
0x02d948: ADD SCRATCH, 0xfffffdd8
0x02d960: MOV EAX, SCRATCH
0x02d978: X86 push eax
0x02d9a8: X86CALLOUT 0x406958
0x02d9c0: X86 cmp word ptr [ebp+0FFFFFDD8h], si
0x02d9d8: MOV SCRATCH, EBP
0x02da08: ADD SCRATCH, 0xfffffdd8
0x02da20: MOV EDI, SCRATCH
0x02da38: JZ VM[0x02dd20] (fallthrough VM[0x02da50])
0x02da50: MOV SCRATCH, EBP
0x02da80: ADD SCRATCH, 0xfffffff8
0x02da98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02dab0: PUSH SCRATCH
0x02dac8: X86 push edi
0x02daf8: X86CALLOUT 0x407ec9
0x02db10: X86 cmp eax, 0A51198F4h
0x02db28: JNZ VM[0x02dca8] (fallthrough VM[0x02db40])
0x02db40: X86 push ebx
0x02db70: MOV SCRATCH, EBP
0x02dba0: ADD SCRATCH, 0xfffffdd8
0x02dbb8: MOV EAX, SCRATCH
0x02dbd0: X86 push esi
0x02dc00: X86 push eax
0x02dc30: X86CALLOUT 0x40ae80
0x02dc48: X86 add esp, 0Ch
0x02dc60: X86 push esi
0x02dc90: X86CALLOUT 0x408bde
0x02dca8: X86 sub dword ptr [ebp+0FFFFFFF8h], 2h
0x02dcc0: X86 inc edi
0x02dcd8: X86 inc edi
0x02dcf0: X86 cmp word ptr [edi], si
0x02dd08: JNZ VM[0x02da50] (fallthrough VM[0x02dd20])
0x02dd20: MOV SCRATCH, EBP
0x02dd50: ADD SCRATCH, 0xfffffdd8
0x02dd68: MOV EAX, SCRATCH
0x02dd80: MOV SCRATCH, 0x00005c
0x02dd98: PUSH SCRATCH
0x02ddb0: X86 push eax
0x02dde0: X86JUMPOUT call dword ptr [4010F4h]
0x02ddf8: X86 pop ecx
0x02de10: X86 pop ecx
0x02de28: CRASH
0x02de40: X86 movzx ecx, word ptr [eax]
0x02de58: X86 cmp cx, 2Eh
0x02de70: JZ VM[0x02dfa8] (fallthrough VM[0x02de88])
0x02de88: X86 cmp cx, 30h
0x02dea0: JC VM[0x02dee8] (fallthrough VM[0x02deb8])
0x02deb8: X86 cmp cx, 39h
0x02ded0: JBE VM[0x02df48] (fallthrough VM[0x02dee8])
0x02dee8: X86 cmp cx, 61h
0x02df00: JC VM[0x02e218] (fallthrough VM[0x02df18])
0x02df18: X86 cmp cx, 66h
0x02df30: JA VM[0x02e218] (fallthrough VM[0x02df48])
0x02df48: X86 inc eax
0x02df60: X86 inc eax
0x02df78: X86 cmp word ptr [eax], si
0x02df90: JNZ VM[0x02de40] (fallthrough VM[0x02dfa8])
0x02dfa8: X86 push ebx
0x02dfd8: MOV SCRATCH, EBP
0x02e008: ADD SCRATCH, 0xfffffdd8
0x02e020: MOV EAX, SCRATCH
0x02e038: X86 push esi
0x02e068: X86 push eax
0x02e098: X86CALLOUT 0x40ae80
0x02e0b0: X86 push ebx
0x02e0e0: MOV SCRATCH, EBP
0x02e110: ADD SCRATCH, 0xfffff9c8
0x02e128: MOV EAX, SCRATCH
0x02e140: X86 push esi
0x02e170: X86 push eax
0x02e1a0: X86CALLOUT 0x40ae80
0x02e1b8: X86 add esp, 18h
0x02e1d0: X86 push esi
0x02e200: X86CALLOUT 0x408bde
0x02e218: X86 push esi
0x02e248: X86 push esi
0x02e278: MOV SCRATCH, 0x000003
0x02e290: PUSH SCRATCH
0x02e2a8: X86 push esi
0x02e2d8: MOV SCRATCH, 0x000001
0x02e2f0: PUSH SCRATCH
0x02e308: MOV SCRATCH, 0x80000000
0x02e320: PUSH SCRATCH
0x02e338: MOV SCRATCH, EBP
0x02e368: ADD SCRATCH, 0xfffffdd8
0x02e380: MOV EAX, SCRATCH
0x02e398: X86 push eax
0x02e3c8: X86CALLOUT 0x408933
0x02e3e0: X86 mov edi, eax
0x02e410: X86 cmp edi, 0FFFFFFFFh
0x02e428: JNZ VM[0x02e5a8] (fallthrough VM[0x02e440])
0x02e440: X86 push ebx
0x02e470: MOV SCRATCH, EBP
0x02e4a0: ADD SCRATCH, 0xfffffdd8
0x02e4b8: MOV EAX, SCRATCH
0x02e4d0: X86 push esi
0x02e500: X86 push eax
0x02e530: X86CALLOUT 0x40ae80
0x02e548: X86 add esp, 0Ch
0x02e560: X86 push esi
0x02e590: X86CALLOUT 0x408bde
0x02e5a8: X86 push esi
0x02e5d8: X86 push edi
0x02e608: X86CALLOUT 0x408cbe
0x02e620: MOV SCRATCH, 0x000004
0x02e638: PUSH SCRATCH
0x02e650: MOV SCRATCH, 0x001000
0x02e668: PUSH SCRATCH
0x02e680: X86 push eax
0x02e6b0: X86 push esi
0x02e6e0: MOV SCRATCH, EBP
0x02e710: ADD SCRATCH, 0xfffffffc
0x02e728: MOV DWORD PTR [SCRATCH], EAX
0x02e740: X86CALLOUT 0x408810
0x02e758: X86 push esi
0x02e788: MOV SCRATCH, EBP
0x02e7b8: ADD SCRATCH, 0xfffffff4
0x02e7d0: MOV ECX, SCRATCH
0x02e7e8: X86 push ecx
0x02e818: MOV SCRATCH, EBP
0x02e848: ADD SCRATCH, 0xfffffffc
0x02e860: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02e878: PUSH SCRATCH
0x02e890: MOV SCRATCH, EBP
0x02e8c0: ADD SCRATCH, 0xfffffff0
0x02e8d8: MOV DWORD PTR [SCRATCH], EAX
0x02e8f0: X86 push eax
0x02e920: X86 push edi
0x02e950: X86CALLOUT 0x408c4e
0x02e968: MOV SCRATCH, 0x41ff34
0x02e998: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02e9b0: MOV EAX, SCRATCH
0x02e9c8: X86 push edi
0x02e9f8: X86JUMPOUT call dword ptr [eax+3Ch]
0x02ea10: X86 push ebx
0x02ea40: MOV SCRATCH, EBP
0x02ea70: ADD SCRATCH, 0xfffff9c8
0x02ea88: MOV EAX, SCRATCH
0x02eaa0: X86 push esi
0x02ead0: X86 push eax
0x02eb00: X86CALLOUT 0x40ae80
0x02eb18: X86 xor eax, eax
0x02eb30: MOV SCRATCH, EBP
0x02eb60: ADD SCRATCH, 0xffffffe0
0x02eb78: MOV EDI, SCRATCH
0x02eb90: X86 stosd dword ptr es:[edi]
0x02eba8: X86 stosd dword ptr es:[edi]
0x02ebc0: X86 stosd dword ptr es:[edi]
0x02ebd8: X86 add esp, 0Ch
0x02ebf0: X86 stosd dword ptr es:[edi]
0x02ec08: MOV SCRATCH, EBP
0x02ec38: ADD SCRATCH, 0xfffffff0
0x02ec50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02ec68: MOV EDI, SCRATCH
0x02ec80: MOV SCRATCH, EBP
0x02ecb0: ADD SCRATCH, 0xffffffe0
0x02ecc8: MOV EAX, SCRATCH
0x02ece0: X86 push eax
0x02ed10: MOV SCRATCH, EBP
0x02ed40: ADD SCRATCH, 0xfffffffc
0x02ed58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02ed70: PUSH SCRATCH
0x02ed88: X86 push edi
0x02edb8: X86CALLOUT 0x406ae6
0x02edd0: MOV SCRATCH, EBP
0x02ee00: ADD SCRATCH, 0xfffffffc
0x02ee18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02ee30: PUSH SCRATCH
0x02ee48: X86 push esi
0x02ee78: X86 push edi
0x02eea8: X86CALLOUT 0x40ae80
0x02eec0: X86 add esp, 0Ch
0x02eed8: MOV SCRATCH, 0x004000
0x02eef0: PUSH SCRATCH
0x02ef08: X86 push esi
0x02ef38: X86 push edi
0x02ef68: X86CALLOUT 0x40889f
0x02ef80: MOV SCRATCH, 0x008000
0x02ef98: PUSH SCRATCH
0x02efb0: X86 push esi
0x02efe0: X86 push edi
0x02f010: X86CALLOUT 0x40889f
0x02f028: X86 mov word ptr [ebp+0FFFFFBD0h], 25h
0x02f040: X86 mov word ptr [ebp+0FFFFFBD2h], 2Eh
0x02f058: X86 mov word ptr [ebp+0FFFFFBD4h], 30h
0x02f070: X86 mov word ptr [ebp+0FFFFFBD6h], 32h
0x02f088: X86 mov word ptr [ebp+0FFFFFBD8h], 78h
0x02f0a0: X86 mov word ptr [ebp+0FFFFFBDAh], si
0x02f0b8: X86 xor edi, edi
0x02f0d0: X86 movzx eax, byte ptr [ebp+edi+0FFFFFFE0h]
0x02f0e8: X86 push eax
0x02f118: MOV SCRATCH, EBP
0x02f148: ADD SCRATCH, 0xfffffbd0
0x02f160: MOV EAX, SCRATCH
0x02f178: X86 push eax
0x02f1a8: MOV SCRATCH, EBP
0x02f1d8: ADD SCRATCH, 0xfffff7c0
0x02f1f0: MOV EAX, SCRATCH
0x02f208: MOV SCRATCH, 0x000104
0x02f220: PUSH SCRATCH
0x02f238: X86 push eax
0x02f268: X86JUMPOUT call dword ptr [4010F8h]
0x02f280: X86 add esp, 10h
0x02f298: MOV SCRATCH, EBP
0x02f2c8: ADD SCRATCH, 0xfffff7c0
0x02f2e0: MOV EAX, SCRATCH
0x02f2f8: X86 push eax
0x02f328: MOV SCRATCH, 0x000104
0x02f340: PUSH SCRATCH
0x02f358: MOV SCRATCH, EBP
0x02f388: ADD SCRATCH, 0xfffff9c8
0x02f3a0: MOV EAX, SCRATCH
0x02f3b8: X86 push eax
0x02f3e8: X86CALLOUT 0x4070d8
0x02f400: X86 inc edi
0x02f418: X86 cmp edi, 10h
0x02f430: JC VM[0x02f0d0] (fallthrough VM[0x02f448])
0x02f448: MOV SCRATCH, EBP
0x02f478: ADD SCRATCH, 0xfffffff8
0x02f490: MOV EAX, SCRATCH
0x02f4a8: X86 push eax
0x02f4d8: MOV SCRATCH, 0x000104
0x02f4f0: PUSH SCRATCH
0x02f508: MOV SCRATCH, EBP
0x02f538: ADD SCRATCH, 0xfffffdd8
0x02f550: MOV EAX, SCRATCH
0x02f568: X86 push eax
0x02f598: X86CALLOUT 0x407119
0x02f5b0: MOV SCRATCH, EBP
0x02f5e0: ADD SCRATCH, 0xfffffff8
0x02f5f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x02f610: MOV EAX, SCRATCH
0x02f628: X86 cmp eax, esi
0x02f640: JBE VM[0x02fb38] (fallthrough VM[0x02f658])
0x02f658: MOV SCRATCH, EBP
0x02f688: ADD SCRATCH, 0xfffffdd8
0x02f6a0: MOV EDI, SCRATCH
0x02f6b8: MOV SCRATCH, EBP
0x02f6e8: ADD SCRATCH, 0xfffffffc
0x02f700: MOV DWORD PTR [SCRATCH], EAX
0x02f718: MOV SCRATCH, 0x000010
0x02f730: PUSH SCRATCH
0x02f748: MOV SCRATCH, EBP
0x02f778: ADD SCRATCH, 0xfffff9c8
0x02f790: MOV EAX, SCRATCH
0x02f7a8: X86 push eax
0x02f7d8: X86 push edi
0x02f808: X86JUMPOUT call dword ptr [4010FCh]
0x02f820: X86 add esp, 0Ch
0x02f838: X86 test eax, eax
0x02f850: JNZ VM[0x02fad8] (fallthrough VM[0x02f868])
0x02f868: X86 push ebx
0x02f898: MOV SCRATCH, EBP
0x02f8c8: ADD SCRATCH, 0xfffffdd8
0x02f8e0: MOV EAX, SCRATCH
0x02f8f8: X86 push esi
0x02f928: X86 push eax
0x02f958: X86CALLOUT 0x40ae80
0x02f970: X86 push ebx
0x02f9a0: MOV SCRATCH, EBP
0x02f9d0: ADD SCRATCH, 0xfffff9c8
0x02f9e8: MOV EAX, SCRATCH
0x02fa00: X86 push esi
0x02fa30: X86 push eax
0x02fa60: X86CALLOUT 0x40ae80
0x02fa78: X86 add esp, 18h
0x02fa90: X86 push esi
0x02fac0: X86CALLOUT 0x408bde
0x02fad8: X86 inc edi
0x02faf0: X86 inc edi
0x02fb08: X86 dec dword ptr [ebp+0FFFFFFFCh]
0x02fb20: JNZ VM[0x02f718] (fallthrough VM[0x02fb38])
0x02fb38: X86 pop edi
0x02fb50: X86 pop esi
0x02fb68: X86 pop ebx
0x02fb80: X86 leave 
0x02fb98: X86 ret 
0x02fbb0: X86CALLOUT 0x406a02
0x02fbc8: X86 mov ebx, eax
0x02fbf8: X86CALLOUT 0x406a74
0x02fc10: X86 mov esi, eax
0x02fc40: MOV SCRATCH, 0x41f544
0x02fc58: PUSH SCRATCH
0x02fc70: X86 push esi
0x02fca0: X86CALLOUT 0x4072ce
0x02fcb8: X86 test eax, eax
0x02fcd0: JZ VM[0x02fe50] (fallthrough VM[0x02fce8])
0x02fce8: MOV SCRATCH, 0x41f558
0x02fd00: PUSH SCRATCH
0x02fd18: X86 push ebx
0x02fd48: X86CALLOUT 0x4071f4
0x02fd60: X86 test eax, eax
0x02fd78: JZ VM[0x02fe50] (fallthrough VM[0x02fd90])
0x02fd90: MOV SCRATCH, 0x41f56c
0x02fda8: PUSH SCRATCH
0x02fdc0: X86 push esi
0x02fdf0: X86CALLOUT 0x4072ce
0x02fe08: X86 test eax, eax
0x02fe20: JZ VM[0x02fe50] (fallthrough VM[0x02fe38])
0x02fe38: X86 inc edi
0x02fe50: X86 push ebx
0x02fe80: X86CALLOUT 0x408e07
0x02fe98: X86 push esi
0x02fec8: X86CALLOUT 0x408e07
0x02fee0: X86 mov eax, edi
0x02ff10: X86 pop edi
0x02ff28: X86 pop esi
0x02ff40: X86 pop ebx
0x02ff58: X86 ret 
0x02ff70: X86CALLOUT 0x406a02
0x02ff88: MOV SCRATCH, EBP
0x02ffb8: ADD SCRATCH, 0xfffffffc
0x02ffd0: MOV DWORD PTR [SCRATCH], EAX
0x02ffe8: X86CALLOUT 0x406a74
0x030000: MOV SCRATCH, 0x000006
0x030018: PUSH SCRATCH
0x030030: MOV SCRATCH, EBP
0x030060: ADD SCRATCH, 0xfffffff8
0x030078: MOV DWORD PTR [SCRATCH], EAX
0x030090: X86 pop ecx
0x0300a8: X86 xor eax, eax
0x0300c0: MOV SCRATCH, EBP
0x0300f0: ADD SCRATCH, 0xffffffcc
0x030108: MOV EDI, SCRATCH
0x030120: X86 [rep] stosd dword ptr es:[edi]
0x030138: X86 mov edi, 208h
0x030150: X86 push edi
0x030180: X86 xor ebx, ebx
0x030198: MOV SCRATCH, EBP
0x0301c8: ADD SCRATCH, 0xfffffdc4
0x0301e0: MOV EAX, SCRATCH
0x0301f8: X86 push ebx
0x030228: X86 push eax
0x030258: X86CALLOUT 0x40ae80
0x030270: MOV SCRATCH, EBP
0x0302a0: ADD SCRATCH, 0x000008
0x0302b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0302d0: MOV ESI, SCRATCH
0x0302e8: X86 add esp, 0Ch
0x030300: MOV SCRATCH, 0x41f508
0x030318: PUSH SCRATCH
0x030330: MOV SCRATCH, EBP
0x030360: ADD SCRATCH, 0xfffffff8
0x030378: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030390: PUSH SCRATCH
0x0303a8: MOV SCRATCH, ESI
0x0303d8: ADD SCRATCH, 0x000008
0x0303f0: MOV DWORD PTR [SCRATCH], EBX
0x030408: X86CALLOUT 0x4072ce
0x030420: X86 test eax, eax
0x030438: JZ VM[0x030678] (fallthrough VM[0x030450])
0x030450: MOV SCRATCH, 0x41f51c
0x030468: PUSH SCRATCH
0x030480: MOV SCRATCH, EBP
0x0304b0: ADD SCRATCH, 0xfffffffc
0x0304c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0304e0: PUSH SCRATCH
0x0304f8: X86CALLOUT 0x4071f4
0x030510: X86 test eax, eax
0x030528: JNZ VM[0x030630] (fallthrough VM[0x030540])
0x030540: MOV SCRATCH, 0x41f530
0x030558: PUSH SCRATCH
0x030570: MOV SCRATCH, EBP
0x0305a0: ADD SCRATCH, 0xfffffffc
0x0305b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0305d0: PUSH SCRATCH
0x0305e8: X86CALLOUT 0x4071f4
0x030600: X86 test eax, eax
0x030618: JZ VM[0x030678] (fallthrough VM[0x030630])
0x030630: X86 mov dword ptr [esi+4h], 4055D5h
0x030648: X86 mov dword ptr [esi], 40581Eh
0x030660: CRASH
0x030678: MOV SCRATCH, 0x41f544
0x030690: PUSH SCRATCH
0x0306a8: MOV SCRATCH, EBP
0x0306d8: ADD SCRATCH, 0xfffffff8
0x0306f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030708: PUSH SCRATCH
0x030720: X86CALLOUT 0x4072ce
0x030738: X86 test eax, eax
0x030750: JZ VM[0x031fc8] (fallthrough VM[0x030768])
0x030768: MOV SCRATCH, 0x41f558
0x030780: PUSH SCRATCH
0x030798: MOV SCRATCH, EBP
0x0307c8: ADD SCRATCH, 0xfffffffc
0x0307e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0307f8: PUSH SCRATCH
0x030810: X86CALLOUT 0x4071f4
0x030828: X86 test eax, eax
0x030840: JZ VM[0x031fc8] (fallthrough VM[0x030858])
0x030858: MOV SCRATCH, 0x41f558
0x030870: PUSH SCRATCH
0x030888: MOV SCRATCH, EBP
0x0308b8: ADD SCRATCH, 0xfffffffc
0x0308d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0308e8: PUSH SCRATCH
0x030900: X86CALLOUT 0x407261
0x030918: X86 push eax
0x030948: MOV SCRATCH, 0x41ff38
0x030978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030990: MOV EAX, SCRATCH
0x0309a8: X86 push ebx
0x0309d8: MOV SCRATCH, 0x000410
0x0309f0: PUSH SCRATCH
0x030a08: X86JUMPOUT call dword ptr [eax]
0x030a20: X86 cmp eax, ebx
0x030a38: MOV SCRATCH, EBP
0x030a68: ADD SCRATCH, 0x000008
0x030a80: MOV DWORD PTR [SCRATCH], EAX
0x030a98: JZ VM[0x031ef0] (fallthrough VM[0x030ab0])
0x030ab0: MOV SCRATCH, EBP
0x030ae0: ADD SCRATCH, 0xffffffec
0x030af8: MOV ECX, SCRATCH
0x030b10: X86 push ecx
0x030b40: MOV SCRATCH, 0x000018
0x030b58: PUSH SCRATCH
0x030b70: MOV SCRATCH, EBP
0x030ba0: ADD SCRATCH, 0xffffffcc
0x030bb8: MOV ECX, SCRATCH
0x030bd0: X86 push ecx
0x030c00: X86 push ebx
0x030c30: X86 push eax
0x030c60: MOV SCRATCH, 0x41ff34
0x030c90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030ca8: MOV EAX, SCRATCH
0x030cc0: X86JUMPOUT call dword ptr [eax+4h]
0x030cd8: X86 test eax, eax
0x030cf0: JNZ VM[0x031ef0] (fallthrough VM[0x030d08])
0x030d08: X86 push ebx
0x030d38: MOV SCRATCH, 0x000004
0x030d50: PUSH SCRATCH
0x030d68: MOV SCRATCH, EBP
0x030d98: ADD SCRATCH, 0xfffffff4
0x030db0: MOV EAX, SCRATCH
0x030dc8: X86 push eax
0x030df8: MOV SCRATCH, EBP
0x030e28: ADD SCRATCH, 0xffffffd0
0x030e40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030e58: MOV EAX, SCRATCH
0x030e70: X86 add eax, 8h
0x030e88: X86 push eax
0x030eb8: MOV SCRATCH, EBP
0x030ee8: ADD SCRATCH, 0x000008
0x030f00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030f18: PUSH SCRATCH
0x030f30: MOV SCRATCH, 0x41ff38
0x030f60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x030f78: MOV EAX, SCRATCH
0x030f90: X86JUMPOUT call dword ptr [eax+0Ch]
0x030fa8: X86 test eax, eax
0x030fc0: JZ VM[0x031ef0] (fallthrough VM[0x030fd8])
0x030fd8: X86 push edi
0x031008: MOV SCRATCH, EBP
0x031038: ADD SCRATCH, 0xfffffdc4
0x031050: MOV EAX, SCRATCH
0x031068: X86 push ebx
0x031098: X86 push eax
0x0310c8: X86CALLOUT 0x40ae80
0x0310e0: X86 push edi
0x031110: MOV SCRATCH, EBP
0x031140: ADD SCRATCH, 0xfffffbbc
0x031158: MOV EAX, SCRATCH
0x031170: X86 push ebx
0x0311a0: X86 push eax
0x0311d0: X86CALLOUT 0x40ae80
0x0311e8: MOV SCRATCH, 0x41ff38
0x031218: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031230: MOV EDI, SCRATCH
0x031248: X86 add esp, 18h
0x031260: MOV SCRATCH, 0xd9e75e63
0x031278: PUSH SCRATCH
0x031290: MOV SCRATCH, EBP
0x0312c0: ADD SCRATCH, 0xfffffbbc
0x0312d8: MOV EAX, SCRATCH
0x0312f0: X86 push eax
0x031320: X86 add edi, 6Ch
0x031338: X86CALLOUT 0x401562
0x031350: X86 push eax
0x031380: X86JUMPOUT call dword ptr [edi]
0x031398: X86 push eax
0x0313c8: X86CALLOUT 0x407ff5
0x0313e0: MOV SCRATCH, 0x000104
0x0313f8: PUSH SCRATCH
0x031410: MOV SCRATCH, EBP
0x031440: ADD SCRATCH, 0xfffffdc4
0x031458: MOV ECX, SCRATCH
0x031470: X86 push ecx
0x0314a0: MOV SCRATCH, EBP
0x0314d0: ADD SCRATCH, 0xfffffff4
0x0314e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031500: PUSH SCRATCH
0x031518: MOV SCRATCH, EBP
0x031548: ADD SCRATCH, 0x000008
0x031560: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031578: PUSH SCRATCH
0x031590: X86JUMPOUT call eax
0x0315a8: X86 test eax, eax
0x0315c0: JZ VM[0x031ef0] (fallthrough VM[0x0315d8])
0x0315d8: MOV SCRATCH, EBP
0x031608: ADD SCRATCH, 0x000008
0x031620: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031638: PUSH SCRATCH
0x031650: MOV SCRATCH, 0x41ff34
0x031680: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031698: MOV EAX, SCRATCH
0x0316b0: X86JUMPOUT call dword ptr [eax+3Ch]
0x0316c8: MOV SCRATCH, EBP
0x0316f8: ADD SCRATCH, 0xffffffe8
0x031710: MOV EAX, SCRATCH
0x031728: X86 push eax
0x031758: MOV SCRATCH, EBP
0x031788: ADD SCRATCH, 0xfffffdc4
0x0317a0: MOV EAX, SCRATCH
0x0317b8: X86 push eax
0x0317e8: MOV SCRATCH, 0x41ff30
0x031818: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031830: MOV EAX, SCRATCH
0x031848: X86JUMPOUT call dword ptr [eax+8h]
0x031860: X86 cmp eax, ebx
0x031878: MOV SCRATCH, EBP
0x0318a8: ADD SCRATCH, 0x000008
0x0318c0: MOV DWORD PTR [SCRATCH], EAX
0x0318d8: JZ VM[0x031ef0] (fallthrough VM[0x0318f0])
0x0318f0: MOV SCRATCH, 0x000004
0x031908: PUSH SCRATCH
0x031920: MOV SCRATCH, 0x001000
0x031938: PUSH SCRATCH
0x031950: X86 push eax
0x031980: X86 push ebx
0x0319b0: X86CALLOUT 0x408810
0x0319c8: X86 mov edi, eax
0x0319f8: X86 push edi
0x031a28: MOV SCRATCH, EBP
0x031a58: ADD SCRATCH, 0x000008
0x031a70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031a88: PUSH SCRATCH
0x031aa0: MOV SCRATCH, EBP
0x031ad0: ADD SCRATCH, 0xfffffdc4
0x031ae8: MOV EAX, SCRATCH
0x031b00: X86 push ebx
0x031b30: X86 push eax
0x031b60: MOV SCRATCH, 0x41ff30
0x031b90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031ba8: MOV EAX, SCRATCH
0x031bc0: X86JUMPOUT call dword ptr [eax]
0x031bd8: MOV SCRATCH, EBP
0x031c08: ADD SCRATCH, 0xffffffe4
0x031c20: MOV EAX, SCRATCH
0x031c38: X86 push eax
0x031c68: MOV SCRATCH, EBP
0x031c98: ADD SCRATCH, 0xfffffff0
0x031cb0: MOV EAX, SCRATCH
0x031cc8: X86 push eax
0x031cf8: MOV SCRATCH, 0x41ff30
0x031d28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031d40: MOV EAX, SCRATCH
0x031d58: MOV SCRATCH, 0x40116c
0x031d70: PUSH SCRATCH
0x031d88: X86 push edi
0x031db8: X86JUMPOUT call dword ptr [eax+4h]
0x031dd0: X86 test eax, eax
0x031de8: JZ VM[0x031ea8] (fallthrough VM[0x031e00])
0x031e00: MOV SCRATCH, EBP
0x031e30: ADD SCRATCH, 0xfffffff0
0x031e48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x031e60: MOV EAX, SCRATCH
0x031e78: X86 cmp dword ptr [eax+8h], 0B0000h
0x031e90: JC VM[0x031f38] (fallthrough VM[0x031ea8])
0x031ea8: X86 push edi
0x031ed8: X86CALLOUT 0x408e07
0x031ef0: X86 mov dword ptr [esi+4h], 40593Ch
0x031f08: X86 mov dword ptr [esi], 4055FEh
0x031f20: CRASH
0x031f38: X86 push edi
0x031f68: X86CALLOUT 0x408e07
0x031f80: X86 mov dword ptr [esi+4h], 40593Ch
0x031f98: X86 mov dword ptr [esi], 405972h
0x031fb0: CRASH
0x031fc8: MOV SCRATCH, EBP
0x031ff8: ADD SCRATCH, 0xfffffff8
0x032010: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032028: MOV EBX, SCRATCH
0x032040: MOV SCRATCH, 0x41f580
0x032058: PUSH SCRATCH
0x032070: X86 push ebx
0x0320a0: X86CALLOUT 0x4072ce
0x0320b8: X86 test eax, eax
0x0320d0: JZ VM[0x032220] (fallthrough VM[0x0320e8])
0x0320e8: MOV SCRATCH, 0x41f594
0x032100: PUSH SCRATCH
0x032118: MOV SCRATCH, EBP
0x032148: ADD SCRATCH, 0xfffffffc
0x032160: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032178: PUSH SCRATCH
0x032190: X86CALLOUT 0x4071f4
0x0321a8: X86 test eax, eax
0x0321c0: JZ VM[0x032220] (fallthrough VM[0x0321d8])
0x0321d8: X86 mov dword ptr [esi+4h], 405B44h
0x0321f0: X86 mov dword ptr [esi], 4058C3h
0x032208: CRASH
0x032220: MOV SCRATCH, EBP
0x032250: ADD SCRATCH, 0xfffffffc
0x032268: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032280: MOV EDI, SCRATCH
0x032298: MOV SCRATCH, 0x41f618
0x0322b0: PUSH SCRATCH
0x0322c8: X86 push edi
0x0322f8: X86CALLOUT 0x4071f4
0x032310: X86 test eax, eax
0x032328: JNZ VM[0x032b20] (fallthrough VM[0x032340])
0x032340: MOV SCRATCH, 0x41f62c
0x032358: PUSH SCRATCH
0x032370: X86 push edi
0x0323a0: X86CALLOUT 0x4071f4
0x0323b8: X86 test eax, eax
0x0323d0: JNZ VM[0x032b20] (fallthrough VM[0x0323e8])
0x0323e8: MOV SCRATCH, 0x41f5a8
0x032400: PUSH SCRATCH
0x032418: X86 push edi
0x032448: X86CALLOUT 0x4071f4
0x032460: X86 test eax, eax
0x032478: JZ VM[0x032580] (fallthrough VM[0x032490])
0x032490: MOV SCRATCH, 0x41f5bc
0x0324a8: PUSH SCRATCH
0x0324c0: X86 push edi
0x0324f0: X86CALLOUT 0x4071f4
0x032508: X86 test eax, eax
0x032520: JZ VM[0x032580] (fallthrough VM[0x032538])
0x032538: X86 mov dword ptr [esi+4h], 4059A5h
0x032550: X86 mov dword ptr [esi], 4059DBh
0x032568: CRASH
0x032580: MOV SCRATCH, 0x41f88c
0x032598: PUSH SCRATCH
0x0325b0: X86 push ebx
0x0325e0: X86CALLOUT 0x4072ce
0x0325f8: X86 test eax, eax
0x032610: JZ VM[0x032730] (fallthrough VM[0x032628])
0x032628: MOV SCRATCH, 0x41f8a0
0x032640: PUSH SCRATCH
0x032658: X86 push ebx
0x032688: X86CALLOUT 0x4072ce
0x0326a0: X86 test eax, eax
0x0326b8: JZ VM[0x032730] (fallthrough VM[0x0326d0])
0x0326d0: X86 mov dword ptr [esi+4h], 405891h
0x0326e8: X86 mov dword ptr [esi], 405847h
0x032700: X86 mov dword ptr [esi+8h], 9h
0x032718: CRASH
0x032730: MOV SCRATCH, 0x41f640
0x032748: PUSH SCRATCH
0x032760: X86 push edi
0x032790: X86CALLOUT 0x4071f4
0x0327a8: X86 test eax, eax
0x0327c0: JNZ VM[0x032ac0] (fallthrough VM[0x0327d8])
0x0327d8: MOV SCRATCH, 0x41f654
0x0327f0: PUSH SCRATCH
0x032808: X86 push edi
0x032838: X86CALLOUT 0x4071f4
0x032850: X86 test eax, eax
0x032868: JNZ VM[0x032ac0] (fallthrough VM[0x032880])
0x032880: MOV SCRATCH, 0x41f668
0x032898: PUSH SCRATCH
0x0328b0: X86 push ebx
0x0328e0: X86CALLOUT 0x4072ce
0x0328f8: X86 test eax, eax
0x032910: JZ VM[0x032988] (fallthrough VM[0x032928])
0x032928: X86 mov dword ptr [esi+4h], 405A8Eh
0x032940: X86 mov dword ptr [esi], 405AC4h
0x032958: X86 mov dword ptr [esi+8h], 0Bh
0x032970: CRASH
0x032988: MOV SCRATCH, 0x41f8b4
0x0329a0: PUSH SCRATCH
0x0329b8: X86 push edi
0x0329e8: X86CALLOUT 0x4071f4
0x032a00: X86 test eax, eax
0x032a18: X86 mov dword ptr [esi], 405B7Ah
0x032a30: JZ VM[0x032a90] (fallthrough VM[0x032a48])
0x032a48: X86 mov dword ptr [esi+4h], 405B0Eh
0x032a60: X86 mov dword ptr [esi+8h], 0Ch
0x032a78: CRASH
0x032a90: X86 mov dword ptr [esi+4h], 405B44h
0x032aa8: CRASH
0x032ac0: X86 mov dword ptr [esi+4h], 405A0Eh
0x032ad8: X86 mov dword ptr [esi], 405A44h
0x032af0: X86 mov dword ptr [esi+8h], 0Ah
0x032b08: CRASH
0x032b20: X86 mov dword ptr [esi+4h], 40590Dh
0x032b38: X86 mov dword ptr [esi], 405B7Ah
0x032b50: MOV SCRATCH, EBP
0x032b80: ADD SCRATCH, 0xfffffffc
0x032b98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032bb0: PUSH SCRATCH
0x032bc8: X86CALLOUT 0x408e07
0x032be0: MOV SCRATCH, EBP
0x032c10: ADD SCRATCH, 0xfffffff8
0x032c28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032c40: PUSH SCRATCH
0x032c58: X86CALLOUT 0x408e07
0x032c70: X86 pop edi
0x032c88: X86 xor eax, eax
0x032ca0: X86 pop esi
0x032cb8: X86 inc eax
0x032cd0: X86 pop ebx
0x032ce8: X86 leave 
0x032d00: X86 ret 4h
0x032d18: MOV SCRATCH, EBP
0x032d48: ADD SCRATCH, 0xfffffff0
0x032d60: MOV EAX, SCRATCH
0x032d78: X86 push eax
0x032da8: MOV SCRATCH, 0x000018
0x032dc0: PUSH SCRATCH
0x032dd8: MOV SCRATCH, EBP
0x032e08: ADD SCRATCH, 0xffffffc8
0x032e20: MOV EAX, SCRATCH
0x032e38: X86 push eax
0x032e68: MOV SCRATCH, 0x41ff34
0x032e98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032eb0: MOV EAX, SCRATCH
0x032ec8: X86 push edi
0x032ef8: MOV SCRATCH, 0xffffffff
0x032f10: PUSH SCRATCH
0x032f28: X86JUMPOUT call dword ptr [eax+4h]
0x032f40: X86 test eax, eax
0x032f58: JNZ VM[0x035520] (fallthrough VM[0x032f70])
0x032f70: MOV SCRATCH, EBP
0x032fa0: ADD SCRATCH, 0xffffffdc
0x032fb8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x032fd0: PUSH SCRATCH
0x032fe8: X86 push edi
0x033018: MOV SCRATCH, 0x000400
0x033030: PUSH SCRATCH
0x033048: X86CALLOUT 0x408b2c
0x033060: X86 cmp eax, edi
0x033078: MOV SCRATCH, EBP
0x0330a8: ADD SCRATCH, 0xfffffff4
0x0330c0: MOV DWORD PTR [SCRATCH], EAX
0x0330d8: JZ VM[0x035520] (fallthrough VM[0x0330f0])
0x0330f0: X86 push ebx
0x033120: X86 push esi
0x033150: X86 mov ebx, 1000h
0x033168: X86 push ebx
0x033198: X86CALLOUT 0x408d2b
0x0331b0: X86 mov esi, eax
0x0331e0: X86 cmp esi, edi
0x0331f8: MOV SCRATCH, EBP
0x033228: ADD SCRATCH, 0xfffffff8
0x033240: MOV DWORD PTR [SCRATCH], ESI
0x033258: JZ VM[0x035100] (fallthrough VM[0x033270])
0x033270: X86 push ebx
0x0332a0: X86 push edi
0x0332d0: X86 push esi
0x033300: X86CALLOUT 0x40ae80
0x033318: X86 add esp, 0Ch
0x033330: MOV SCRATCH, EBP
0x033360: ADD SCRATCH, 0xfffffff0
0x033378: MOV EAX, SCRATCH
0x033390: X86 push eax
0x0333c0: MOV SCRATCH, 0x41ff34
0x0333f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033408: MOV EAX, SCRATCH
0x033420: X86 push ebx
0x033450: X86 push esi
0x033480: MOV SCRATCH, 0x00001b
0x033498: PUSH SCRATCH
0x0334b0: MOV SCRATCH, EBP
0x0334e0: ADD SCRATCH, 0xfffffff4
0x0334f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033510: PUSH SCRATCH
0x033528: X86JUMPOUT call dword ptr [eax+4h]
0x033540: X86 test eax, eax
0x033558: JNZ VM[0x035100] (fallthrough VM[0x033570])
0x033570: MOV SCRATCH, EBP
0x0335a0: ADD SCRATCH, 0xfffffdb0
0x0335b8: MOV EAX, SCRATCH
0x0335d0: X86 push eax
0x033600: MOV SCRATCH, ESI
0x033630: ADD SCRATCH, 0x000004
0x033648: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033660: PUSH SCRATCH
0x033678: X86CALLOUT 0x4071a3
0x033690: MOV SCRATCH, EBP
0x0336c0: ADD SCRATCH, 0xfffffdb0
0x0336d8: MOV EAX, SCRATCH
0x0336f0: X86 push eax
0x033720: X86CALLOUT 0x406958
0x033738: MOV SCRATCH, EBP
0x033768: ADD SCRATCH, 0xfffffffc
0x033780: MOV EAX, SCRATCH
0x033798: X86 push eax
0x0337c8: MOV SCRATCH, 0x7fffffff
0x0337e0: PUSH SCRATCH
0x0337f8: MOV SCRATCH, EBP
0x033828: ADD SCRATCH, 0xfffffdb0
0x033840: MOV EAX, SCRATCH
0x033858: X86 push eax
0x033888: X86CALLOUT 0x407155
0x0338a0: MOV SCRATCH, EBP
0x0338d0: ADD SCRATCH, 0xffffffe0
0x0338e8: MOV EAX, SCRATCH
0x033900: X86 push eax
0x033930: MOV SCRATCH, EBP
0x033960: ADD SCRATCH, 0xfffffffc
0x033978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033990: PUSH SCRATCH
0x0339a8: MOV SCRATCH, EBP
0x0339d8: ADD SCRATCH, 0xfffffdb0
0x0339f0: MOV EAX, SCRATCH
0x033a08: X86 push eax
0x033a38: X86CALLOUT 0x406ae6
0x033a50: MOV SCRATCH, 0x000004
0x033a68: PUSH SCRATCH
0x033a80: X86 pop ecx
0x033a98: X86 mov edi, 4011C4h
0x033ab0: MOV SCRATCH, EBP
0x033ae0: ADD SCRATCH, 0xffffffe0
0x033af8: MOV ESI, SCRATCH
0x033b10: X86 xor eax, eax
0x033b28: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x033b40: JNZ VM[0x033e28] (fallthrough VM[0x033b58])
0x033b58: MOV SCRATCH, EBP
0x033b88: ADD SCRATCH, 0xfffffff4
0x033ba0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033bb8: PUSH SCRATCH
0x033bd0: MOV SCRATCH, 0x41ff34
0x033c00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033c18: MOV EAX, SCRATCH
0x033c30: X86JUMPOUT call dword ptr [eax+3Ch]
0x033c48: X86 push ebx
0x033c78: MOV SCRATCH, 0x000000
0x033c90: PUSH SCRATCH
0x033ca8: MOV SCRATCH, EBP
0x033cd8: ADD SCRATCH, 0xfffffff8
0x033cf0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033d08: PUSH SCRATCH
0x033d20: X86CALLOUT 0x40ae80
0x033d38: X86 add esp, 0Ch
0x033d50: MOV SCRATCH, EBP
0x033d80: ADD SCRATCH, 0xfffffff8
0x033d98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033db0: PUSH SCRATCH
0x033dc8: X86CALLOUT 0x408d5d
0x033de0: MOV SCRATCH, 0x000000
0x033df8: PUSH SCRATCH
0x033e10: X86CALLOUT 0x408bde
0x033e28: MOV SCRATCH, 0x000004
0x033e40: PUSH SCRATCH
0x033e58: X86 pop ecx
0x033e70: X86 mov edi, 4011B0h
0x033e88: MOV SCRATCH, EBP
0x033eb8: ADD SCRATCH, 0xffffffe0
0x033ed0: MOV ESI, SCRATCH
0x033ee8: X86 xor eax, eax
0x033f00: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x033f18: JNZ VM[0x034200] (fallthrough VM[0x033f30])
0x033f30: MOV SCRATCH, EBP
0x033f60: ADD SCRATCH, 0xfffffff4
0x033f78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033f90: PUSH SCRATCH
0x033fa8: MOV SCRATCH, 0x41ff34
0x033fd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x033ff0: MOV EAX, SCRATCH
0x034008: X86JUMPOUT call dword ptr [eax+3Ch]
0x034020: X86 push ebx
0x034050: MOV SCRATCH, 0x000000
0x034068: PUSH SCRATCH
0x034080: MOV SCRATCH, EBP
0x0340b0: ADD SCRATCH, 0xfffffff8
0x0340c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0340e0: PUSH SCRATCH
0x0340f8: X86CALLOUT 0x40ae80
0x034110: X86 add esp, 0Ch
0x034128: MOV SCRATCH, EBP
0x034158: ADD SCRATCH, 0xfffffff8
0x034170: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034188: PUSH SCRATCH
0x0341a0: X86CALLOUT 0x408d5d
0x0341b8: MOV SCRATCH, 0x000000
0x0341d0: PUSH SCRATCH
0x0341e8: X86CALLOUT 0x408bde
0x034200: X86 push ebx
0x034230: X86CALLOUT 0x408d2b
0x034248: X86 test eax, eax
0x034260: MOV SCRATCH, EBP
0x034290: ADD SCRATCH, 0xfffffffc
0x0342a8: MOV DWORD PTR [SCRATCH], EAX
0x0342c0: JZ VM[0x035070] (fallthrough VM[0x0342d8])
0x0342d8: X86 push ebx
0x034308: MOV SCRATCH, 0x000000
0x034320: PUSH SCRATCH
0x034338: X86 push eax
0x034368: X86CALLOUT 0x40ae80
0x034380: X86 add esp, 0Ch
0x034398: MOV SCRATCH, EBP
0x0343c8: ADD SCRATCH, 0xfffffff0
0x0343e0: MOV EAX, SCRATCH
0x0343f8: X86 push eax
0x034428: MOV SCRATCH, 0x41ff34
0x034458: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034470: MOV EAX, SCRATCH
0x034488: X86 push ebx
0x0344b8: MOV SCRATCH, EBP
0x0344e8: ADD SCRATCH, 0xfffffffc
0x034500: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034518: PUSH SCRATCH
0x034530: MOV SCRATCH, 0x00001b
0x034548: PUSH SCRATCH
0x034560: MOV SCRATCH, 0xffffffff
0x034578: PUSH SCRATCH
0x034590: X86JUMPOUT call dword ptr [eax+4h]
0x0345a8: X86 test eax, eax
0x0345c0: JNZ VM[0x035070] (fallthrough VM[0x0345d8])
0x0345d8: MOV SCRATCH, EBP
0x034608: ADD SCRATCH, 0xfffffff8
0x034620: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034638: MOV EDX, SCRATCH
0x034650: MOV SCRATCH, EDX
0x034680: ADD SCRATCH, 0x000004
0x034698: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0346b0: PUSH SCRATCH
0x0346c8: X86CALLOUT 0x406958
0x0346e0: MOV SCRATCH, EBP
0x034710: ADD SCRATCH, 0xfffffffc
0x034728: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034740: MOV ESI, SCRATCH
0x034758: MOV SCRATCH, ESI
0x034788: ADD SCRATCH, 0x000004
0x0347a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0347b8: PUSH SCRATCH
0x0347d0: X86CALLOUT 0x406958
0x0347e8: MOV SCRATCH, EBP
0x034818: ADD SCRATCH, 0xffffffe0
0x034830: MOV EAX, SCRATCH
0x034848: X86 push eax
0x034878: X86 movzx eax, word ptr [edx]
0x034890: X86 push eax
0x0348c0: MOV SCRATCH, EDX
0x0348f0: ADD SCRATCH, 0x000004
0x034908: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034920: PUSH SCRATCH
0x034938: X86CALLOUT 0x406ae6
0x034950: MOV SCRATCH, EBP
0x034980: ADD SCRATCH, 0xffffffb8
0x034998: MOV EAX, SCRATCH
0x0349b0: X86 push eax
0x0349e0: X86 movzx eax, word ptr [esi]
0x0349f8: X86 push eax
0x034a28: MOV SCRATCH, ESI
0x034a58: ADD SCRATCH, 0x000004
0x034a70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034a88: PUSH SCRATCH
0x034aa0: X86CALLOUT 0x406ae6
0x034ab8: MOV SCRATCH, 0x000004
0x034ad0: PUSH SCRATCH
0x034ae8: X86 pop ecx
0x034b00: MOV SCRATCH, EBP
0x034b30: ADD SCRATCH, 0xffffffb8
0x034b48: MOV EDI, SCRATCH
0x034b60: MOV SCRATCH, EBP
0x034b90: ADD SCRATCH, 0xffffffe0
0x034ba8: MOV ESI, SCRATCH
0x034bc0: X86 xor eax, eax
0x034bd8: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x034bf0: JNZ VM[0x035070] (fallthrough VM[0x034c08])
0x034c08: MOV SCRATCH, EBP
0x034c38: ADD SCRATCH, 0xfffffff4
0x034c50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034c68: PUSH SCRATCH
0x034c80: MOV SCRATCH, 0x41ff34
0x034cb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034cc8: MOV EAX, SCRATCH
0x034ce0: X86JUMPOUT call dword ptr [eax+3Ch]
0x034cf8: X86 push ebx
0x034d28: X86 xor esi, esi
0x034d40: X86 push esi
0x034d70: MOV SCRATCH, EBP
0x034da0: ADD SCRATCH, 0xfffffff8
0x034db8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034dd0: PUSH SCRATCH
0x034de8: X86CALLOUT 0x40ae80
0x034e00: X86 push ebx
0x034e30: X86 push esi
0x034e60: MOV SCRATCH, EBP
0x034e90: ADD SCRATCH, 0xfffffffc
0x034ea8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034ec0: PUSH SCRATCH
0x034ed8: X86CALLOUT 0x40ae80
0x034ef0: X86 add esp, 18h
0x034f08: MOV SCRATCH, EBP
0x034f38: ADD SCRATCH, 0xfffffff8
0x034f50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034f68: PUSH SCRATCH
0x034f80: X86CALLOUT 0x408d5d
0x034f98: MOV SCRATCH, EBP
0x034fc8: ADD SCRATCH, 0xfffffffc
0x034fe0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x034ff8: PUSH SCRATCH
0x035010: X86CALLOUT 0x408d5d
0x035028: X86 push esi
0x035058: X86CALLOUT 0x408bde
0x035070: MOV SCRATCH, EBP
0x0350a0: ADD SCRATCH, 0xfffffff8
0x0350b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0350d0: MOV ESI, SCRATCH
0x0350e8: X86 xor edi, edi
0x035100: MOV SCRATCH, EBP
0x035130: ADD SCRATCH, 0xfffffff4
0x035148: MOV SCRATCH, DWORD PTR [SCRATCH]
0x035160: PUSH SCRATCH
0x035178: MOV SCRATCH, 0x41ff34
0x0351a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0351c0: MOV EAX, SCRATCH
0x0351d8: X86JUMPOUT call dword ptr [eax+3Ch]
0x0351f0: X86 cmp dword ptr [ebp+0FFFFFFFCh], edi
0x035208: JZ VM[0x0353b8] (fallthrough VM[0x035220])
0x035220: X86 push ebx
0x035250: X86 push edi
0x035280: MOV SCRATCH, EBP
0x0352b0: ADD SCRATCH, 0xfffffffc
0x0352c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0352e0: PUSH SCRATCH
0x0352f8: X86CALLOUT 0x40ae80
0x035310: X86 add esp, 0Ch
0x035328: MOV SCRATCH, EBP
0x035358: ADD SCRATCH, 0xfffffffc
0x035370: MOV SCRATCH, DWORD PTR [SCRATCH]
0x035388: PUSH SCRATCH
0x0353a0: X86CALLOUT 0x408d5d
0x0353b8: X86 cmp esi, edi
0x0353d0: JZ VM[0x0354f0] (fallthrough VM[0x0353e8])
0x0353e8: X86 push ebx
0x035418: X86 push edi
0x035448: X86 push esi
0x035478: X86CALLOUT 0x40ae80
0x035490: X86 add esp, 0Ch
0x0354a8: X86 push esi
0x0354d8: X86CALLOUT 0x408d5d
0x0354f0: X86 pop esi
0x035508: X86 pop ebx
0x035520: X86 pop edi
0x035538: X86 leave 
0x035550: X86 ret 
0x035568: MOV SCRATCH, 0x000208
0x035580: PUSH SCRATCH
0x035598: X86 xor ebx, ebx
0x0355b0: MOV SCRATCH, EBP
0x0355e0: ADD SCRATCH, 0xfffffde4
0x0355f8: MOV EAX, SCRATCH
0x035610: X86 push ebx
0x035640: X86 push eax
0x035670: X86CALLOUT 0x40ae80
0x035688: MOV SCRATCH, 0x41ff38
0x0356b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0356d0: MOV EAX, SCRATCH
0x0356e8: X86 add esp, 0Ch
0x035700: MOV SCRATCH, 0x000104
0x035718: PUSH SCRATCH
0x035730: MOV SCRATCH, EBP
0x035760: ADD SCRATCH, 0xfffffde4
0x035778: MOV ECX, SCRATCH
0x035790: X86 push ecx
0x0357c0: X86 push ebx
0x0357f0: MOV SCRATCH, EAX
0x035820: ADD SCRATCH, 0x000048
0x035838: MOV ESI, SCRATCH
0x035850: X86JUMPOUT call dword ptr [eax+78h]
0x035868: X86 push eax
0x035898: X86JUMPOUT call dword ptr [esi]
0x0358b0: MOV SCRATCH, EBP
0x0358e0: ADD SCRATCH, 0xfffffde4
0x0358f8: MOV EAX, SCRATCH
0x035910: X86 push eax
0x035940: X86CALLOUT 0x406958
0x035958: X86 xor edx, edx
0x035970: X86 cmp word ptr [ebp+0FFFFFDE4h], bx
0x035988: MOV SCRATCH, EBP
0x0359b8: ADD SCRATCH, 0xfffffde4
0x0359d0: MOV EAX, SCRATCH
0x0359e8: JZ VM[0x035ad8] (fallthrough VM[0x035a00])
0x035a00: X86 movzx ecx, word ptr [ebp+0FFFFFDE4h]
0x035a18: X86 cmp cx, 5Ch
0x035a30: JNZ VM[0x035a60] (fallthrough VM[0x035a48])
0x035a48: X86 inc edx
0x035a60: X86 inc eax
0x035a78: X86 inc eax
0x035a90: X86 movzx ecx, word ptr [eax]
0x035aa8: X86 cmp cx, bx
0x035ac0: JNZ VM[0x035a18] (fallthrough VM[0x035ad8])
0x035ad8: X86 cmp word ptr [ebp+0FFFFFDE4h], 63h
0x035af0: JNZ VM[0x035b80] (fallthrough VM[0x035b08])
0x035b08: X86 cmp edx, 1h
0x035b20: JNZ VM[0x035b80] (fallthrough VM[0x035b38])
0x035b38: X86 push ebx
0x035b68: X86CALLOUT 0x408bde
0x035b80: MOV SCRATCH, EBP
0x035bb0: ADD SCRATCH, 0xfffffffc
0x035bc8: MOV EAX, SCRATCH
0x035be0: X86 push eax
0x035c10: X86 mov esi, 7FFFFFFFh
0x035c28: X86 push esi
0x035c58: MOV SCRATCH, EBP
0x035c88: ADD SCRATCH, 0xfffffde4
0x035ca0: MOV EAX, SCRATCH
0x035cb8: X86 push eax
0x035ce8: X86CALLOUT 0x407119
0x035d00: MOV SCRATCH, EBP
0x035d30: ADD SCRATCH, 0xfffffffc
0x035d48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x035d60: MOV EAX, SCRATCH
0x035d78: MOV SCRATCH, EAX
0x035da8: SHL SCRATCH, 0x000001
0x035dc0: ADD SCRATCH, EBP
0x035dd8: ADD SCRATCH, 0xfffffde4
0x035df0: MOV EAX, SCRATCH
0x035e08: CRASH
0x035e20: X86 dec eax
0x035e38: X86 dec eax
0x035e50: X86 cmp word ptr [eax], 5Ch
0x035e68: JNZ VM[0x035e20] (fallthrough VM[0x035e80])
0x035e80: X86 push edi
0x035eb0: X86 mov word ptr [eax], bx
0x035ec8: MOV SCRATCH, EBP
0x035ef8: ADD SCRATCH, 0xfffffffc
0x035f10: MOV EAX, SCRATCH
0x035f28: X86 push eax
0x035f58: X86 push esi
0x035f88: MOV SCRATCH, EBP
0x035fb8: ADD SCRATCH, 0xfffffde4
0x035fd0: MOV EAX, SCRATCH
0x035fe8: X86 push eax
0x036018: X86CALLOUT 0x407155
0x036030: MOV SCRATCH, EBP
0x036060: ADD SCRATCH, 0xffffffec
0x036078: MOV EAX, SCRATCH
0x036090: X86 push eax
0x0360c0: MOV SCRATCH, EBP
0x0360f0: ADD SCRATCH, 0xfffffffc
0x036108: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036120: PUSH SCRATCH
0x036138: MOV SCRATCH, EBP
0x036168: ADD SCRATCH, 0xfffffde4
0x036180: MOV EAX, SCRATCH
0x036198: X86 push eax
0x0361c8: X86CALLOUT 0x406ae6
0x0361e0: MOV SCRATCH, 0x000004
0x0361f8: PUSH SCRATCH
0x036210: X86 pop ecx
0x036228: MOV SCRATCH, EBP
0x036258: ADD SCRATCH, 0xffffffec
0x036270: MOV EDI, SCRATCH
0x036288: X86 mov esi, 4011D8h
0x0362a0: X86 xor eax, eax
0x0362b8: X86 [rep] cmpsd dword ptr [esi], dword ptr es:[edi]
0x0362d0: X86 pop edi
0x0362e8: JNZ VM[0x036348] (fallthrough VM[0x036300])
0x036300: X86 push ebx
0x036330: X86CALLOUT 0x408bde
0x036348: X86 pop esi
0x036360: X86 pop ebx
0x036378: X86 leave 
0x036390: X86 ret 
0x0363a8: MOV SCRATCH, EBP
0x0363d8: ADD SCRATCH, 0x00000c
0x0363f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036408: MOV ESI, SCRATCH
0x036420: MOV SCRATCH, EBP
0x036450: ADD SCRATCH, 0x000008
0x036468: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036480: MOV EDX, SCRATCH
0x036498: X86 mov al, byte ptr [edx]
0x0364b0: X86 cmp al, 5Ah
0x0364c8: JG VM[0x036528] (fallthrough VM[0x0364e0])
0x0364e0: X86 cmp al, 41h
0x0364f8: JL VM[0x036528] (fallthrough VM[0x036510])
0x036510: X86 add al, 20h
0x036528: X86 mov cl, al
0x036540: X86 mov al, byte ptr [esi]
0x036558: X86 cmp al, 5Ah
0x036570: JG VM[0x0365d0] (fallthrough VM[0x036588])
0x036588: X86 cmp al, 41h
0x0365a0: JL VM[0x0365d0] (fallthrough VM[0x0365b8])
0x0365b8: X86 add al, 20h
0x0365d0: X86 inc edx
0x0365e8: X86 inc esi
0x036600: X86 test cl, cl
0x036618: JZ VM[0x036660] (fallthrough VM[0x036630])
0x036630: X86 cmp cl, al
0x036648: JZ VM[0x036498] (fallthrough VM[0x036660])
0x036660: X86 movsx edx, al
0x036678: X86 movsx eax, cl
0x036690: X86 sub eax, edx
0x0366a8: X86 pop esi
0x0366c0: X86 pop ebp
0x0366d8: X86 ret 8h
0x0366f0: MOV SCRATCH, EBP
0x036720: ADD SCRATCH, 0x00000c
0x036738: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036750: MOV ESI, SCRATCH
0x036768: MOV SCRATCH, EBP
0x036798: ADD SCRATCH, 0x000008
0x0367b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0367c8: MOV EDX, SCRATCH
0x0367e0: X86 movzx eax, word ptr [edx]
0x0367f8: X86 cmp ax, 5Ah
0x036810: JA VM[0x036870] (fallthrough VM[0x036828])
0x036828: X86 cmp ax, 41h
0x036840: JC VM[0x036870] (fallthrough VM[0x036858])
0x036858: X86 add eax, 20h
0x036870: X86 movzx ecx, ax
0x036888: X86 movzx eax, word ptr [esi]
0x0368a0: X86 cmp ax, 5Ah
0x0368b8: JA VM[0x036918] (fallthrough VM[0x0368d0])
0x0368d0: X86 cmp ax, 41h
0x0368e8: JC VM[0x036918] (fallthrough VM[0x036900])
0x036900: X86 add eax, 20h
0x036918: X86 inc edx
0x036930: X86 inc edx
0x036948: X86 inc esi
0x036960: X86 inc esi
0x036978: X86 test cx, cx
0x036990: X86 movzx eax, ax
0x0369a8: JZ VM[0x0369f0] (fallthrough VM[0x0369c0])
0x0369c0: X86 cmp cx, ax
0x0369d8: JZ VM[0x0367e0] (fallthrough VM[0x0369f0])
0x0369f0: X86 movzx edx, ax
0x036a08: X86 movzx eax, cx
0x036a20: X86 sub eax, edx
0x036a38: X86 pop esi
0x036a50: X86 pop ebp
0x036a68: X86 ret 8h
0x036a80: MOV SCRATCH, EBP
0x036ab0: ADD SCRATCH, 0x00000c
0x036ac8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036ae0: MOV ESI, SCRATCH
0x036af8: X86 or eax, 0FFFFFFFFh
0x036b10: X86 test esi, esi
0x036b28: JBE VM[0x036c00] (fallthrough VM[0x036b40])
0x036b40: X86 movzx edx, byte ptr [ecx]
0x036b58: X86 xor edx, eax
0x036b70: X86 and edx, 0FFh
0x036b88: X86 shr eax, 8h
0x036ba0: X86 xor eax, dword ptr [edx*4+41FF40h]
0x036bb8: X86 inc ecx
0x036bd0: X86 dec esi
0x036be8: JNZ VM[0x036b40] (fallthrough VM[0x036c00])
0x036c00: X86 not eax
0x036c18: X86 pop esi
0x036c30: X86 pop ebp
0x036c48: X86 ret 8h
0x036c60: MOV SCRATCH, EBP
0x036c90: ADD SCRATCH, 0x000008
0x036ca8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036cc0: MOV ECX, SCRATCH
0x036cd8: X86 mov edx, ecx
0x036d08: X86 movzx ecx, byte ptr [ecx]
0x036d20: X86 or eax, 0FFFFFFFFh
0x036d38: CRASH
0x036d50: X86 xor ecx, eax
0x036d68: X86 and ecx, 0FFh
0x036d80: X86 shr eax, 8h
0x036d98: X86 xor eax, dword ptr [ecx*4+41FF40h]
0x036db0: X86 inc edx
0x036dc8: X86 mov cl, byte ptr [edx]
0x036de0: X86 test cl, cl
0x036df8: JNZ VM[0x036d50] (fallthrough VM[0x036e10])
0x036e10: X86 not eax
0x036e28: X86 pop ebp
0x036e40: X86 ret 4h
0x036e58: MOV SCRATCH, EBP
0x036e88: ADD SCRATCH, 0x000008
0x036ea0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x036eb8: MOV EDX, SCRATCH
0x036ed0: X86 movzx ecx, word ptr [edx]
0x036ee8: X86 or eax, 0FFFFFFFFh
0x036f00: X86 test cx, cx
0x036f18: JZ VM[0x037140] (fallthrough VM[0x036f30])
0x036f30: X86 movzx ecx, cx
0x036f48: X86 push esi
0x036f78: X86 movzx ecx, cx
0x036f90: MOV SCRATCH, ECX
0x036fc0: ADD SCRATCH, 0xffffffbf
0x036fd8: MOV ESI, SCRATCH
0x036ff0: X86 cmp si, 19h
0x037008: JA VM[0x037038] (fallthrough VM[0x037020])
0x037020: X86 add ecx, 20h
0x037038: X86 xor ecx, eax
0x037050: X86 and ecx, 0FFh
0x037068: X86 shr eax, 8h
0x037080: X86 xor eax, dword ptr [ecx*4+41FF40h]
0x037098: X86 xor eax, 637AB78Fh
0x0370b0: X86 inc edx
0x0370c8: X86 inc edx
0x0370e0: X86 movzx ecx, word ptr [edx]
0x0370f8: X86 test cx, cx
0x037110: JNZ VM[0x036f78] (fallthrough VM[0x037128])
0x037128: X86 pop esi
0x037140: X86 not eax
0x037158: X86 pop ebp
0x037170: X86 ret 4h
0x037188: X86 xor ecx, ecx
0x0371a0: MOV SCRATCH, 0x000008
0x0371b8: PUSH SCRATCH
0x0371d0: X86 mov eax, ecx
0x037200: X86 pop edx
0x037218: X86 test al, 1h
0x037230: JZ VM[0x037290] (fallthrough VM[0x037248])
0x037248: X86 shr eax, 1h
0x037260: X86 xor eax, 0EDB88320h
0x037278: CRASH
0x037290: X86 shr eax, 1h
0x0372a8: X86 dec edx
0x0372c0: X86 test edx, edx
0x0372d8: JG VM[0x037218] (fallthrough VM[0x0372f0])
0x0372f0: MOV SCRATCH, ECX
0x037320: SHL SCRATCH, 0x000002
0x037338: ADD SCRATCH, 0x41ff40
0x037350: MOV DWORD PTR [SCRATCH], EAX
0x037368: X86 inc ecx
0x037380: X86 cmp ecx, 100h
0x037398: JL VM[0x0371a0] (fallthrough VM[0x0373b0])
0x0373b0: X86 ret 
0x0373c8: MOV SCRATCH, EBP
0x0373f8: ADD SCRATCH, 0x000008
0x037410: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037428: MOV ECX, SCRATCH
0x037440: MOV SCRATCH, ECX
0x037470: ADD SCRATCH, 0x00003c
0x037488: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0374a0: MOV EAX, SCRATCH
0x0374b8: X86 add eax, ecx
0x0374d0: X86 cmp dword ptr [eax+78h], 0h
0x0374e8: JNZ VM[0x037530] (fallthrough VM[0x037500])
0x037500: X86 xor eax, eax
0x037518: CRASH
0x037530: MOV SCRATCH, EAX
0x037560: ADD SCRATCH, 0x000078
0x037578: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037590: MOV EDX, SCRATCH
0x0375a8: MOV SCRATCH, EAX
0x0375d8: ADD SCRATCH, 0x00007c
0x0375f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037608: MOV EAX, SCRATCH
0x037620: X86 and dword ptr [ebp+0FFFFFFFCh], 0h
0x037638: X86 push ebx
0x037668: X86 push esi
0x037698: MOV SCRATCH, EDX
0x0376c8: ADD SCRATCH, ECX
0x0376e0: MOV ESI, SCRATCH
0x0376f8: MOV SCRATCH, ESI
0x037728: ADD SCRATCH, 0x00001c
0x037740: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037758: MOV EBX, SCRATCH
0x037770: X86 add eax, esi
0x037788: X86 push edi
0x0377b8: MOV SCRATCH, ESI
0x0377e8: ADD SCRATCH, 0x000024
0x037800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037818: MOV EDI, SCRATCH
0x037830: MOV SCRATCH, EBP
0x037860: ADD SCRATCH, 0xfffffff4
0x037878: MOV DWORD PTR [SCRATCH], EAX
0x037890: MOV SCRATCH, ESI
0x0378c0: ADD SCRATCH, 0x000020
0x0378d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0378f0: MOV EAX, SCRATCH
0x037908: X86 add eax, ecx
0x037920: X86 add edi, ecx
0x037938: X86 add ebx, ecx
0x037950: X86 cmp dword ptr [esi+18h], 0h
0x037968: MOV SCRATCH, EBP
0x037998: ADD SCRATCH, 0xfffffff8
0x0379b0: MOV DWORD PTR [SCRATCH], EAX
0x0379c8: JA VM[0x037b60] (fallthrough VM[0x0379e0])
0x0379e0: X86 xor eax, eax
0x0379f8: X86 pop edi
0x037a10: X86 pop esi
0x037a28: X86 pop ebx
0x037a40: X86 leave 
0x037a58: X86 ret 8h
0x037a70: MOV SCRATCH, EBP
0x037aa0: ADD SCRATCH, 0xfffffff8
0x037ab8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037ad0: MOV EAX, SCRATCH
0x037ae8: MOV SCRATCH, EBP
0x037b18: ADD SCRATCH, 0x000008
0x037b30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037b48: MOV ECX, SCRATCH
0x037b60: MOV SCRATCH, EBP
0x037b90: ADD SCRATCH, 0xfffffffc
0x037ba8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037bc0: MOV EDX, SCRATCH
0x037bd8: MOV SCRATCH, EDX
0x037c08: SHL SCRATCH, 0x000002
0x037c20: ADD SCRATCH, EAX
0x037c38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037c50: MOV EAX, SCRATCH
0x037c68: X86 add eax, ecx
0x037c80: X86 push eax
0x037cb0: X86CALLOUT 0x407f0f
0x037cc8: X86 cmp eax, dword ptr [ebp+0Ch]
0x037ce0: JZ VM[0x037dd0] (fallthrough VM[0x037cf8])
0x037cf8: X86 inc dword ptr [ebp+0FFFFFFFCh]
0x037d10: MOV SCRATCH, EBP
0x037d40: ADD SCRATCH, 0xfffffffc
0x037d58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037d70: MOV EAX, SCRATCH
0x037d88: X86 cmp eax, dword ptr [esi+18h]
0x037da0: JC VM[0x037a70] (fallthrough VM[0x037db8])
0x037db8: CRASH
0x037dd0: MOV SCRATCH, EBP
0x037e00: ADD SCRATCH, 0xfffffffc
0x037e18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037e30: MOV EAX, SCRATCH
0x037e48: X86 movzx ecx, word ptr [edi+eax*2]
0x037e60: MOV SCRATCH, ECX
0x037e90: SHL SCRATCH, 0x000002
0x037ea8: ADD SCRATCH, EBX
0x037ec0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037ed8: MOV EBX, SCRATCH
0x037ef0: X86 add ebx, dword ptr [ebp+8h]
0x037f08: X86 cmp ebx, esi
0x037f20: JC VM[0x0381c0] (fallthrough VM[0x037f38])
0x037f38: X86 cmp ebx, dword ptr [ebp+0FFFFFFF4h]
0x037f50: JNC VM[0x0381c0] (fallthrough VM[0x037f68])
0x037f68: MOV SCRATCH, EBP
0x037f98: ADD SCRATCH, 0xfffffff8
0x037fb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x037fc8: MOV ECX, SCRATCH
0x037fe0: MOV SCRATCH, EAX
0x038010: SHL SCRATCH, 0x000002
0x038028: ADD SCRATCH, ECX
0x038040: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038058: MOV EAX, SCRATCH
0x038070: X86 add eax, dword ptr [ebp+8h]
0x038088: X86 push eax
0x0380b8: MOV SCRATCH, EBP
0x0380e8: ADD SCRATCH, 0x000008
0x038100: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038118: PUSH SCRATCH
0x038130: MOV SCRATCH, 0x41ff38
0x038160: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038178: MOV EAX, SCRATCH
0x038190: X86JUMPOUT call dword ptr [eax+88h]
0x0381a8: CRASH
0x0381c0: X86 mov eax, ebx
0x0381f0: CRASH
0x038208: MOV SCRATCH, EBP
0x038238: ADD SCRATCH, 0x000008
0x038250: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038268: MOV ECX, SCRATCH
0x038280: MOV SCRATCH, ECX
0x0382b0: ADD SCRATCH, 0x00003c
0x0382c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0382e0: MOV EAX, SCRATCH
0x0382f8: X86 add eax, ecx
0x038310: X86 movzx ecx, word ptr [eax+14h]
0x038328: X86 movzx esi, word ptr [eax+6h]
0x038340: MOV SCRATCH, EAX
0x038370: ADD SCRATCH, ECX
0x038388: ADD SCRATCH, 0x000018
0x0383a0: MOV EDX, SCRATCH
0x0383b8: X86 xor ecx, ecx
0x0383d0: X86 test esi, esi
0x0383e8: JBE VM[0x038610] (fallthrough VM[0x038400])
0x038400: MOV SCRATCH, EDX
0x038430: ADD SCRATCH, 0x00000c
0x038448: MOV EAX, SCRATCH
0x038460: MOV SCRATCH, EAX
0x038490: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0384a8: MOV EDI, SCRATCH
0x0384c0: X86 cmp dword ptr [ebp+0Ch], edi
0x0384d8: JC VM[0x0385b0] (fallthrough VM[0x0384f0])
0x0384f0: MOV SCRATCH, EAX
0x038520: ADD SCRATCH, 0x000004
0x038538: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038550: MOV EBX, SCRATCH
0x038568: X86 add ebx, edi
0x038580: X86 cmp dword ptr [ebp+0Ch], ebx
0x038598: JC VM[0x0386a0] (fallthrough VM[0x0385b0])
0x0385b0: X86 inc ecx
0x0385c8: X86 add eax, 28h
0x0385e0: X86 cmp ecx, esi
0x0385f8: JC VM[0x038460] (fallthrough VM[0x038610])
0x038610: X86 xor eax, eax
0x038628: X86 pop edi
0x038640: X86 pop esi
0x038658: X86 pop ebx
0x038670: X86 pop ebp
0x038688: X86 ret 8h
0x0386a0: X86 imul ecx, ecx, 28h
0x0386b8: X86 add ecx, edx
0x0386d0: MOV SCRATCH, ECX
0x038700: ADD SCRATCH, 0x000014
0x038718: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038730: MOV EAX, SCRATCH
0x038748: X86 sub eax, dword ptr [ecx+0Ch]
0x038760: X86 add eax, dword ptr [ebp+0Ch]
0x038778: CRASH
0x038790: MOV SCRATCH, EBP
0x0387c0: ADD SCRATCH, 0x00000c
0x0387d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0387f0: MOV ECX, SCRATCH
0x038808: MOV SCRATCH, EBP
0x038838: ADD SCRATCH, 0x000008
0x038850: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038868: MOV EAX, SCRATCH
0x038880: X86 dec ecx
0x038898: X86 dec ecx
0x0388b0: X86 dec eax
0x0388c8: X86 inc ecx
0x0388e0: X86 inc ecx
0x0388f8: X86 inc eax
0x038910: X86 movsx dx, byte ptr [eax]
0x038928: X86 mov word ptr [ecx], dx
0x038940: X86 cmp byte ptr [eax], 0h
0x038958: JNZ VM[0x0388c8] (fallthrough VM[0x038970])
0x038970: X86 pop ebp
0x038988: X86 ret 8h
0x0389a0: MOV SCRATCH, 0x000208
0x0389b8: PUSH SCRATCH
0x0389d0: MOV SCRATCH, EBP
0x038a00: ADD SCRATCH, 0xfffffcdc
0x038a18: MOV EAX, SCRATCH
0x038a30: MOV SCRATCH, 0x000000
0x038a48: PUSH SCRATCH
0x038a60: X86 push eax
0x038a90: X86CALLOUT 0x40ae80
0x038aa8: MOV SCRATCH, 0x000104
0x038ac0: PUSH SCRATCH
0x038ad8: MOV SCRATCH, EBP
0x038b08: ADD SCRATCH, 0xfffffee4
0x038b20: MOV EAX, SCRATCH
0x038b38: MOV SCRATCH, 0x000000
0x038b50: PUSH SCRATCH
0x038b68: X86 push eax
0x038b98: X86CALLOUT 0x40ae80
0x038bb0: MOV SCRATCH, EBP
0x038be0: ADD SCRATCH, 0x000008
0x038bf8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038c10: MOV EDI, SCRATCH
0x038c28: MOV SCRATCH, EDI
0x038c58: ADD SCRATCH, 0x00003c
0x038c70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038c88: MOV EBX, SCRATCH
0x038ca0: X86 add ebx, edi
0x038cb8: MOV SCRATCH, EBX
0x038ce8: ADD SCRATCH, 0x000078
0x038d00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038d18: MOV EAX, SCRATCH
0x038d30: X86 add esp, 18h
0x038d48: X86 test eax, eax
0x038d60: JZ VM[0x0397b0] (fallthrough VM[0x038d78])
0x038d78: X86 push esi
0x038da8: X86 push eax
0x038dd8: X86 push edi
0x038e08: X86CALLOUT 0x4080b2
0x038e20: X86 mov esi, eax
0x038e50: X86 add esi, edi
0x038e68: MOV SCRATCH, ESI
0x038e98: ADD SCRATCH, 0x000020
0x038eb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038ec8: PUSH SCRATCH
0x038ee0: X86 push edi
0x038f10: X86CALLOUT 0x4080b2
0x038f28: MOV SCRATCH, ESI
0x038f58: ADD SCRATCH, 0x000024
0x038f70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x038f88: PUSH SCRATCH
0x038fa0: X86 add eax, edi
0x038fb8: X86 push edi
0x038fe8: MOV SCRATCH, EBP
0x039018: ADD SCRATCH, 0xffffffe8
0x039030: MOV DWORD PTR [SCRATCH], EAX
0x039048: X86CALLOUT 0x4080b2
0x039060: MOV SCRATCH, ESI
0x039090: ADD SCRATCH, 0x00001c
0x0390a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0390c0: PUSH SCRATCH
0x0390d8: X86 add eax, edi
0x0390f0: X86 push edi
0x039120: MOV SCRATCH, EBP
0x039150: ADD SCRATCH, 0xffffffec
0x039168: MOV DWORD PTR [SCRATCH], EAX
0x039180: X86CALLOUT 0x4080b2
0x039198: MOV SCRATCH, EBX
0x0391c8: ADD SCRATCH, 0x000078
0x0391e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0391f8: PUSH SCRATCH
0x039210: X86 add eax, edi
0x039228: X86 push edi
0x039258: MOV SCRATCH, EBP
0x039288: ADD SCRATCH, 0xfffffff0
0x0392a0: MOV DWORD PTR [SCRATCH], EAX
0x0392b8: X86CALLOUT 0x4080b2
0x0392d0: MOV SCRATCH, EBX
0x039300: ADD SCRATCH, 0x00007c
0x039318: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039330: MOV EBX, SCRATCH
0x039348: X86 add eax, edi
0x039360: X86 add ebx, eax
0x039378: MOV SCRATCH, EBP
0x0393a8: ADD SCRATCH, 0xfffffff8
0x0393c0: MOV DWORD PTR [SCRATCH], EAX
0x0393d8: MOV SCRATCH, EBP
0x039408: ADD SCRATCH, 0x00000c
0x039420: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039438: MOV EAX, SCRATCH
0x039450: X86 xor ecx, ecx
0x039468: X86 cmp eax, 0FFFFh
0x039480: MOV SCRATCH, EBP
0x0394b0: ADD SCRATCH, 0xfffffff4
0x0394c8: MOV DWORD PTR [SCRATCH], ECX
0x0394e0: JNC VM[0x039690] (fallthrough VM[0x0394f8])
0x0394f8: X86 sub eax, dword ptr [esi+10h]
0x039510: MOV SCRATCH, EBP
0x039540: ADD SCRATCH, 0xfffffff0
0x039558: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039570: MOV ECX, SCRATCH
0x039588: MOV SCRATCH, EAX
0x0395b8: SHL SCRATCH, 0x000002
0x0395d0: ADD SCRATCH, ECX
0x0395e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039600: PUSH SCRATCH
0x039618: X86 push edi
0x039648: X86CALLOUT 0x4080b2
0x039660: X86 add eax, edi
0x039678: CRASH
0x039690: X86 cmp dword ptr [esi+18h], ecx
0x0396a8: MOV SCRATCH, EBP
0x0396d8: ADD SCRATCH, 0x000008
0x0396f0: MOV DWORD PTR [SCRATCH], ECX
0x039708: JA VM[0x039888] (fallthrough VM[0x039720])
0x039720: MOV SCRATCH, EBP
0x039750: ADD SCRATCH, 0xfffffff4
0x039768: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039780: MOV EAX, SCRATCH
0x039798: X86 pop esi
0x0397b0: X86 pop edi
0x0397c8: X86 pop ebx
0x0397e0: X86 leave 
0x0397f8: X86 ret 8h
0x039810: MOV SCRATCH, EBP
0x039840: ADD SCRATCH, 0x00000c
0x039858: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039870: MOV EAX, SCRATCH
0x039888: MOV SCRATCH, EBP
0x0398b8: ADD SCRATCH, 0x000008
0x0398d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0398e8: MOV ECX, SCRATCH
0x039900: X86 push eax
0x039930: MOV SCRATCH, EBP
0x039960: ADD SCRATCH, 0xffffffe8
0x039978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039990: MOV EAX, SCRATCH
0x0399a8: MOV SCRATCH, ECX
0x0399d8: SHL SCRATCH, 0x000002
0x0399f0: ADD SCRATCH, EAX
0x039a08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039a20: PUSH SCRATCH
0x039a38: X86 push edi
0x039a68: X86CALLOUT 0x4080b2
0x039a80: X86 add eax, edi
0x039a98: X86 push eax
0x039ac8: X86CALLOUT 0x407e15
0x039ae0: X86 test eax, eax
0x039af8: JZ VM[0x039be8] (fallthrough VM[0x039b10])
0x039b10: X86 inc dword ptr [ebp+8h]
0x039b28: MOV SCRATCH, EBP
0x039b58: ADD SCRATCH, 0x000008
0x039b70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039b88: MOV EAX, SCRATCH
0x039ba0: X86 cmp eax, dword ptr [esi+18h]
0x039bb8: JC VM[0x039810] (fallthrough VM[0x039bd0])
0x039bd0: CRASH
0x039be8: MOV SCRATCH, EBP
0x039c18: ADD SCRATCH, 0x000008
0x039c30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039c48: MOV ECX, SCRATCH
0x039c60: MOV SCRATCH, EBP
0x039c90: ADD SCRATCH, 0xffffffec
0x039ca8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039cc0: MOV EAX, SCRATCH
0x039cd8: X86 movzx eax, word ptr [eax+ecx*2]
0x039cf0: MOV SCRATCH, EBP
0x039d20: ADD SCRATCH, 0xfffffff0
0x039d38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039d50: MOV ECX, SCRATCH
0x039d68: MOV SCRATCH, EAX
0x039d98: SHL SCRATCH, 0x000002
0x039db0: ADD SCRATCH, ECX
0x039dc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x039de0: PUSH SCRATCH
0x039df8: X86 push edi
0x039e28: X86CALLOUT 0x4080b2
0x039e40: X86 add eax, edi
0x039e58: X86 cmp eax, dword ptr [ebp+0FFFFFFF8h]
0x039e70: MOV SCRATCH, EBP
0x039ea0: ADD SCRATCH, 0xfffffff4
0x039eb8: MOV DWORD PTR [SCRATCH], EAX
0x039ed0: JBE VM[0x039720] (fallthrough VM[0x039ee8])
0x039ee8: X86 cmp eax, ebx
0x039f00: JNC VM[0x039720] (fallthrough VM[0x039f18])
0x039f18: X86 mov edi, eax
0x039f48: X86 mov al, byte ptr [edi]
0x039f60: MOV SCRATCH, EBP
0x039f90: ADD SCRATCH, 0xfffffee4
0x039fa8: MOV EDX, SCRATCH
0x039fc0: X86 xor esi, esi
0x039fd8: X86 mov ecx, edi
0x03a008: X86 sub edx, edi
0x03a020: X86 mov byte ptr [edx+ecx], al
0x03a038: X86 inc esi
0x03a050: X86 inc ecx
0x03a068: X86 mov al, byte ptr [ecx]
0x03a080: X86 cmp al, 2Eh
0x03a098: JZ VM[0x03a0e0] (fallthrough VM[0x03a0b0])
0x03a0b0: X86 cmp esi, 104h
0x03a0c8: JC VM[0x03a020] (fallthrough VM[0x03a0e0])
0x03a0e0: MOV SCRATCH, EBP
0x03a110: ADD SCRATCH, 0xfffffff8
0x03a128: MOV EAX, SCRATCH
0x03a140: X86 push eax
0x03a170: MOV SCRATCH, 0x000104
0x03a188: PUSH SCRATCH
0x03a1a0: MOV SCRATCH, EBP
0x03a1d0: ADD SCRATCH, 0xfffffee4
0x03a1e8: MOV EAX, SCRATCH
0x03a200: X86 push eax
0x03a230: X86 mov byte ptr [ebp+0FFFFFFF8h], 2Eh
0x03a248: X86 mov byte ptr [ebp+0FFFFFFF9h], 64h
0x03a260: X86 mov byte ptr [ebp+0FFFFFFFAh], 6Ch
0x03a278: X86 mov byte ptr [ebp+0FFFFFFFBh], 6Ch
0x03a290: X86 mov byte ptr [ebp+0FFFFFFFCh], 0h
0x03a2a8: X86CALLOUT 0x408150
0x03a2c0: MOV SCRATCH, EBP
0x03a2f0: ADD SCRATCH, 0xfffffcdc
0x03a308: MOV EAX, SCRATCH
0x03a320: X86 push eax
0x03a350: MOV SCRATCH, EBP
0x03a380: ADD SCRATCH, 0xfffffee4
0x03a398: MOV EAX, SCRATCH
0x03a3b0: X86 push eax
0x03a3e0: X86CALLOUT 0x40811c
0x03a3f8: MOV SCRATCH, EDI
0x03a428: ADD SCRATCH, ESI
0x03a440: ADD SCRATCH, 0x000001
0x03a458: MOV EAX, SCRATCH
0x03a470: X86 push eax
0x03a4a0: MOV SCRATCH, EBP
0x03a4d0: ADD SCRATCH, 0xfffffcdc
0x03a4e8: MOV EAX, SCRATCH
0x03a500: X86 push eax
0x03a530: X86CALLOUT 0x404747
0x03a548: X86 push eax
0x03a578: X86CALLOUT 0x4081c0
0x03a590: CRASH
0x03a5a8: MOV SCRATCH, EBP
0x03a5d8: ADD SCRATCH, 0x000008
0x03a5f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a608: MOV EDI, SCRATCH
0x03a620: MOV SCRATCH, EDI
0x03a650: ADD SCRATCH, 0x00003c
0x03a668: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a680: MOV EBX, SCRATCH
0x03a698: X86 add ebx, edi
0x03a6b0: MOV SCRATCH, EBX
0x03a6e0: ADD SCRATCH, 0x000078
0x03a6f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a710: MOV EAX, SCRATCH
0x03a728: X86 test eax, eax
0x03a740: JZ VM[0x03b148] (fallthrough VM[0x03a758])
0x03a758: X86 push esi
0x03a788: X86 push eax
0x03a7b8: X86 push edi
0x03a7e8: X86CALLOUT 0x4080b2
0x03a800: MOV SCRATCH, EBX
0x03a830: ADD SCRATCH, 0x000078
0x03a848: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a860: PUSH SCRATCH
0x03a878: X86 mov esi, eax
0x03a8a8: X86 push edi
0x03a8d8: X86 add esi, edi
0x03a8f0: X86CALLOUT 0x4080b2
0x03a908: MOV SCRATCH, ESI
0x03a938: ADD SCRATCH, 0x000020
0x03a950: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a968: PUSH SCRATCH
0x03a980: MOV SCRATCH, EBX
0x03a9b0: ADD SCRATCH, 0x00007c
0x03a9c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03a9e0: MOV EBX, SCRATCH
0x03a9f8: X86 add eax, edi
0x03aa10: X86 push edi
0x03aa40: MOV SCRATCH, EBP
0x03aa70: ADD SCRATCH, 0xfffffff8
0x03aa88: MOV DWORD PTR [SCRATCH], EAX
0x03aaa0: X86 add ebx, eax
0x03aab8: X86CALLOUT 0x4080b2
0x03aad0: MOV SCRATCH, ESI
0x03ab00: ADD SCRATCH, 0x000024
0x03ab18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ab30: PUSH SCRATCH
0x03ab48: X86 add eax, edi
0x03ab60: X86 push edi
0x03ab90: MOV SCRATCH, EBP
0x03abc0: ADD SCRATCH, 0xffffffec
0x03abd8: MOV DWORD PTR [SCRATCH], EAX
0x03abf0: X86CALLOUT 0x4080b2
0x03ac08: MOV SCRATCH, ESI
0x03ac38: ADD SCRATCH, 0x00001c
0x03ac50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ac68: PUSH SCRATCH
0x03ac80: X86 add eax, edi
0x03ac98: X86 push edi
0x03acc8: MOV SCRATCH, EBP
0x03acf8: ADD SCRATCH, 0xfffffff0
0x03ad10: MOV DWORD PTR [SCRATCH], EAX
0x03ad28: X86CALLOUT 0x4080b2
0x03ad40: X86 and dword ptr [ebp+8h], 0h
0x03ad58: X86 add eax, edi
0x03ad70: X86 cmp dword ptr [esi+18h], 0h
0x03ad88: MOV SCRATCH, EBP
0x03adb8: ADD SCRATCH, 0xfffffff4
0x03add0: MOV DWORD PTR [SCRATCH], EAX
0x03ade8: JBE VM[0x03b118] (fallthrough VM[0x03ae00])
0x03ae00: MOV SCRATCH, EBP
0x03ae30: ADD SCRATCH, 0xffffffec
0x03ae48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ae60: MOV EAX, SCRATCH
0x03ae78: MOV SCRATCH, EBP
0x03aea8: ADD SCRATCH, 0x000008
0x03aec0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03aed8: MOV ECX, SCRATCH
0x03aef0: MOV SCRATCH, ECX
0x03af20: SHL SCRATCH, 0x000002
0x03af38: ADD SCRATCH, EAX
0x03af50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03af68: PUSH SCRATCH
0x03af80: X86 push edi
0x03afb0: X86CALLOUT 0x4080b2
0x03afc8: X86 add eax, edi
0x03afe0: X86 push eax
0x03b010: X86CALLOUT 0x407f0f
0x03b028: X86 cmp eax, dword ptr [ebp+0Ch]
0x03b040: JZ VM[0x03b1a8] (fallthrough VM[0x03b058])
0x03b058: X86 inc dword ptr [ebp+8h]
0x03b070: MOV SCRATCH, EBP
0x03b0a0: ADD SCRATCH, 0x000008
0x03b0b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03b0d0: MOV EAX, SCRATCH
0x03b0e8: X86 cmp eax, dword ptr [esi+18h]
0x03b100: JC VM[0x03ae00] (fallthrough VM[0x03b118])
0x03b118: X86 xor eax, eax
0x03b130: X86 pop esi
0x03b148: X86 pop edi
0x03b160: X86 pop ebx
0x03b178: X86 leave 
0x03b190: X86 ret 8h
0x03b1a8: MOV SCRATCH, EBP
0x03b1d8: ADD SCRATCH, 0x000008
0x03b1f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03b208: MOV ECX, SCRATCH
0x03b220: MOV SCRATCH, EBP
0x03b250: ADD SCRATCH, 0xfffffff0
0x03b268: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03b280: MOV EAX, SCRATCH
0x03b298: X86 movzx eax, word ptr [eax+ecx*2]
0x03b2b0: MOV SCRATCH, EBP
0x03b2e0: ADD SCRATCH, 0xfffffff4
0x03b2f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03b310: MOV ECX, SCRATCH
0x03b328: MOV SCRATCH, EAX
0x03b358: SHL SCRATCH, 0x000002
0x03b370: ADD SCRATCH, ECX
0x03b388: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03b3a0: PUSH SCRATCH
0x03b3b8: X86 push edi
0x03b3e8: X86CALLOUT 0x4080b2
0x03b400: X86 mov esi, eax
0x03b430: X86 add esi, edi
0x03b448: X86 cmp esi, dword ptr [ebp+0FFFFFFF8h]
0x03b460: JC VM[0x03bb20] (fallthrough VM[0x03b478])
0x03b478: X86 cmp esi, ebx
0x03b490: JNC VM[0x03bb20] (fallthrough VM[0x03b4a8])
0x03b4a8: X86 mov al, byte ptr [esi]
0x03b4c0: MOV SCRATCH, EBP
0x03b4f0: ADD SCRATCH, 0xfffffee8
0x03b508: MOV EDX, SCRATCH
0x03b520: X86 xor edi, edi
0x03b538: X86 mov ecx, esi
0x03b568: X86 sub edx, esi
0x03b580: X86 mov ebx, 104h
0x03b598: X86 mov byte ptr [edx+ecx], al
0x03b5b0: X86 inc edi
0x03b5c8: X86 inc ecx
0x03b5e0: X86 mov al, byte ptr [ecx]
0x03b5f8: X86 cmp al, 2Eh
0x03b610: JZ VM[0x03b658] (fallthrough VM[0x03b628])
0x03b628: X86 cmp edi, ebx
0x03b640: JC VM[0x03b598] (fallthrough VM[0x03b658])
0x03b658: MOV SCRATCH, EBP
0x03b688: ADD SCRATCH, 0xfffffff8
0x03b6a0: MOV EAX, SCRATCH
0x03b6b8: X86 push eax
0x03b6e8: X86 push ebx
0x03b718: MOV SCRATCH, EBP
0x03b748: ADD SCRATCH, 0xfffffee8
0x03b760: MOV EAX, SCRATCH
0x03b778: X86 push eax
0x03b7a8: X86 mov byte ptr [ebp+0FFFFFFF8h], 2Eh
0x03b7c0: X86 mov byte ptr [ebp+0FFFFFFF9h], 64h
0x03b7d8: X86 mov byte ptr [ebp+0FFFFFFFAh], 6Ch
0x03b7f0: X86 mov byte ptr [ebp+0FFFFFFFBh], 6Ch
0x03b808: X86 mov byte ptr [ebp+0FFFFFFFCh], 0h
0x03b820: X86CALLOUT 0x408150
0x03b838: MOV SCRATCH, EBP
0x03b868: ADD SCRATCH, 0xfffffce0
0x03b880: MOV EAX, SCRATCH
0x03b898: X86 push eax
0x03b8c8: MOV SCRATCH, EBP
0x03b8f8: ADD SCRATCH, 0xfffffee8
0x03b910: MOV EAX, SCRATCH
0x03b928: X86 push eax
0x03b958: X86CALLOUT 0x40811c
0x03b970: MOV SCRATCH, EDI
0x03b9a0: ADD SCRATCH, ESI
0x03b9b8: ADD SCRATCH, 0x000001
0x03b9d0: MOV EAX, SCRATCH
0x03b9e8: X86 push eax
0x03ba18: MOV SCRATCH, EBP
0x03ba48: ADD SCRATCH, 0xfffffce0
0x03ba60: MOV EAX, SCRATCH
0x03ba78: X86 push eax
0x03baa8: X86CALLOUT 0x404747
0x03bac0: X86 push eax
0x03baf0: X86CALLOUT 0x4081c0
0x03bb08: CRASH
0x03bb20: X86 mov eax, esi
0x03bb50: CRASH
0x03bb68: MOV SCRATCH, EBP
0x03bb98: ADD SCRATCH, 0x000008
0x03bbb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03bbc8: MOV ESI, SCRATCH
0x03bbe0: X86 mov eax, esi
0x03bc10: MOV SCRATCH, EAX
0x03bc40: ADD SCRATCH, 0x000001
0x03bc58: MOV EDX, SCRATCH
0x03bc70: X86 mov cl, byte ptr [eax]
0x03bc88: X86 inc eax
0x03bca0: X86 test cl, cl
0x03bcb8: JNZ VM[0x03bc70] (fallthrough VM[0x03bcd0])
0x03bcd0: X86 sub eax, edx
0x03bce8: MOV SCRATCH, EAX
0x03bd18: ADD SCRATCH, EAX
0x03bd30: ADD SCRATCH, 0x000002
0x03bd48: MOV EAX, SCRATCH
0x03bd60: X86 push eax
0x03bd90: MOV SCRATCH, 0x41ff38
0x03bdc0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03bdd8: MOV EAX, SCRATCH
0x03bdf0: MOV SCRATCH, 0x000040
0x03be08: PUSH SCRATCH
0x03be20: X86JUMPOUT call dword ptr [eax+8Ch]
0x03be38: X86 mov ecx, esi
0x03be68: MOV SCRATCH, ECX
0x03be98: ADD SCRATCH, 0x000001
0x03beb0: MOV EDX, SCRATCH
0x03bec8: X86 push ebx
0x03bef8: X86 mov bl, byte ptr [ecx]
0x03bf10: X86 inc ecx
0x03bf28: X86 test bl, bl
0x03bf40: JNZ VM[0x03bef8] (fallthrough VM[0x03bf58])
0x03bf58: X86 sub ecx, edx
0x03bf70: MOV SCRATCH, ECX
0x03bfa0: ADD SCRATCH, 0x000001
0x03bfb8: MOV EDX, SCRATCH
0x03bfd0: X86 xor ecx, ecx
0x03bfe8: X86 test edx, edx
0x03c000: X86 pop ebx
0x03c018: JBE VM[0x03c0f0] (fallthrough VM[0x03c030])
0x03c030: X86 push edi
0x03c060: X86 movsx di, byte ptr [ecx+esi]
0x03c078: X86 mov word ptr [eax+ecx*2], di
0x03c090: X86 inc ecx
0x03c0a8: X86 cmp ecx, edx
0x03c0c0: JC VM[0x03c060] (fallthrough VM[0x03c0d8])
0x03c0d8: X86 pop edi
0x03c0f0: X86 pop esi
0x03c108: X86 pop ebp
0x03c120: X86 ret 4h
0x03c138: MOV SCRATCH, 0x41ff38
0x03c168: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c180: MOV EAX, SCRATCH
0x03c198: X86 pop ebp
0x03c1b0: X86 jmp dword ptr [eax+90h]
0x03c1c8: MOV SCRATCH, EBP
0x03c1f8: ADD SCRATCH, 0x000008
0x03c210: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c228: MOV EAX, SCRATCH
0x03c240: X86 movzx edx, word ptr [eax+0Ch]
0x03c258: X86 movzx ecx, word ptr [eax+0Eh]
0x03c270: MOV SCRATCH, EDX
0x03c2a0: SHL SCRATCH, 0x000003
0x03c2b8: ADD SCRATCH, EAX
0x03c2d0: ADD SCRATCH, 0x000010
0x03c2e8: MOV EAX, SCRATCH
0x03c300: CRASH
0x03c318: MOV SCRATCH, EAX
0x03c348: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c360: MOV EDX, SCRATCH
0x03c378: X86 cmp edx, dword ptr [ebp+0Ch]
0x03c390: JZ VM[0x03c420] (fallthrough VM[0x03c3a8])
0x03c3a8: X86 dec ecx
0x03c3c0: X86 add eax, 8h
0x03c3d8: X86 test ecx, ecx
0x03c3f0: JNZ VM[0x03c318] (fallthrough VM[0x03c408])
0x03c408: X86 xor eax, eax
0x03c420: X86 pop ebp
0x03c438: X86 ret 8h
0x03c450: MOV SCRATCH, EBP
0x03c480: ADD SCRATCH, 0x00000c
0x03c498: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c4b0: PUSH SCRATCH
0x03c4c8: X86CALLOUT 0x4084b2
0x03c4e0: MOV SCRATCH, EBP
0x03c510: ADD SCRATCH, 0x000008
0x03c528: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c540: MOV ECX, SCRATCH
0x03c558: MOV SCRATCH, EBP
0x03c588: ADD SCRATCH, 0x00000c
0x03c5a0: MOV DWORD PTR [SCRATCH], EAX
0x03c5b8: X86 movzx eax, word ptr [ecx+0Ch]
0x03c5d0: MOV SCRATCH, ECX
0x03c600: ADD SCRATCH, 0x000010
0x03c618: MOV EBX, SCRATCH
0x03c630: CRASH
0x03c648: MOV SCRATCH, EBX
0x03c678: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c690: MOV EDX, SCRATCH
0x03c6a8: MOV SCRATCH, EBP
0x03c6d8: ADD SCRATCH, 0x00000c
0x03c6f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c708: MOV ESI, SCRATCH
0x03c720: X86 and edx, 7FFFFFFFh
0x03c738: X86 add edx, dword ptr [ebp+10h]
0x03c750: X86 movzx ecx, word ptr [edx]
0x03c768: X86 add ecx, ecx
0x03c780: MOV SCRATCH, EDX
0x03c7b0: ADD SCRATCH, 0x000002
0x03c7c8: MOV EDI, SCRATCH
0x03c7e0: X86 xor edx, edx
0x03c7f8: X86 [rep] cmpsb byte ptr [esi], byte ptr es:[edi]
0x03c810: JZ VM[0x03c8a0] (fallthrough VM[0x03c828])
0x03c828: X86 dec eax
0x03c840: X86 add ebx, 8h
0x03c858: X86 test eax, eax
0x03c870: JNZ VM[0x03c648] (fallthrough VM[0x03c888])
0x03c888: X86 xor ebx, ebx
0x03c8a0: MOV SCRATCH, EBP
0x03c8d0: ADD SCRATCH, 0x00000c
0x03c8e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03c900: PUSH SCRATCH
0x03c918: X86CALLOUT 0x40851c
0x03c930: X86 pop edi
0x03c948: X86 pop esi
0x03c960: X86 mov eax, ebx
0x03c990: X86 pop ebx
0x03c9a8: X86 pop ebp
0x03c9c0: X86 ret 0Ch
0x03c9d8: MOV SCRATCH, EBP
0x03ca08: ADD SCRATCH, 0x000008
0x03ca20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ca38: MOV ECX, SCRATCH
0x03ca50: MOV SCRATCH, ECX
0x03ca80: ADD SCRATCH, 0x00003c
0x03ca98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03cab0: MOV EAX, SCRATCH
0x03cac8: X86 add eax, ecx
0x03cae0: MOV SCRATCH, EAX
0x03cb10: ADD SCRATCH, 0x000088
0x03cb28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03cb40: MOV EAX, SCRATCH
0x03cb58: X86 test eax, eax
0x03cb70: JZ VM[0x03d398] (fallthrough VM[0x03cb88])
0x03cb88: X86 push esi
0x03cbb8: X86 push edi
0x03cbe8: X86 mov edi, 0FFFFh
0x03cc00: X86 cmp dword ptr [ebp+0Ch], edi
0x03cc18: MOV SCRATCH, ECX
0x03cc48: ADD SCRATCH, EAX
0x03cc60: MOV ESI, SCRATCH
0x03cc78: JBE VM[0x03cd98] (fallthrough VM[0x03cc90])
0x03cc90: X86 push esi
0x03ccc0: MOV SCRATCH, EBP
0x03ccf0: ADD SCRATCH, 0x00000c
0x03cd08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03cd20: PUSH SCRATCH
0x03cd38: X86 push esi
0x03cd68: X86CALLOUT 0x40857e
0x03cd80: CRASH
0x03cd98: MOV SCRATCH, EBP
0x03cdc8: ADD SCRATCH, 0x00000c
0x03cde0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03cdf8: PUSH SCRATCH
0x03ce10: X86 push esi
0x03ce40: X86CALLOUT 0x408540
0x03ce58: X86 test eax, eax
0x03ce70: JZ VM[0x03d368] (fallthrough VM[0x03ce88])
0x03ce88: MOV SCRATCH, EAX
0x03ceb8: ADD SCRATCH, 0x000004
0x03ced0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03cee8: MOV EAX, SCRATCH
0x03cf00: X86 push ebx
0x03cf30: X86 mov ebx, 7FFFFFFFh
0x03cf48: X86 and eax, ebx
0x03cf60: X86 add eax, esi
0x03cf78: X86 cmp dword ptr [ebp+10h], edi
0x03cf90: JBE VM[0x03d0b0] (fallthrough VM[0x03cfa8])
0x03cfa8: X86 push esi
0x03cfd8: MOV SCRATCH, EBP
0x03d008: ADD SCRATCH, 0x000010
0x03d020: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d038: PUSH SCRATCH
0x03d050: X86 push eax
0x03d080: X86CALLOUT 0x40857e
0x03d098: CRASH
0x03d0b0: MOV SCRATCH, EBP
0x03d0e0: ADD SCRATCH, 0x000010
0x03d0f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d110: PUSH SCRATCH
0x03d128: X86 push eax
0x03d158: X86CALLOUT 0x408540
0x03d170: X86 test eax, eax
0x03d188: JZ VM[0x03d350] (fallthrough VM[0x03d1a0])
0x03d1a0: MOV SCRATCH, EAX
0x03d1d0: ADD SCRATCH, 0x000004
0x03d1e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d200: MOV EAX, SCRATCH
0x03d218: X86 and eax, ebx
0x03d230: MOV SCRATCH, ESI
0x03d260: ADD SCRATCH, EAX
0x03d278: ADD SCRATCH, 0x000014
0x03d290: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d2a8: MOV EAX, SCRATCH
0x03d2c0: MOV SCRATCH, ESI
0x03d2f0: ADD SCRATCH, EAX
0x03d308: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d320: MOV EAX, SCRATCH
0x03d338: X86 add eax, dword ptr [ebp+8h]
0x03d350: X86 pop ebx
0x03d368: X86 pop edi
0x03d380: X86 pop esi
0x03d398: X86 pop ebp
0x03d3b0: X86 ret 0Ch
0x03d3c8: MOV SCRATCH, EBP
0x03d3f8: ADD SCRATCH, 0x000008
0x03d410: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d428: MOV ECX, SCRATCH
0x03d440: MOV SCRATCH, ECX
0x03d470: ADD SCRATCH, 0x00003c
0x03d488: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d4a0: MOV EAX, SCRATCH
0x03d4b8: X86 add eax, ecx
0x03d4d0: MOV SCRATCH, EAX
0x03d500: ADD SCRATCH, 0x000088
0x03d518: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d530: MOV EAX, SCRATCH
0x03d548: X86 test eax, eax
0x03d560: JZ VM[0x03dd88] (fallthrough VM[0x03d578])
0x03d578: X86 push esi
0x03d5a8: X86 push edi
0x03d5d8: X86 mov edi, 0FFFFh
0x03d5f0: X86 cmp dword ptr [ebp+0Ch], edi
0x03d608: MOV SCRATCH, ECX
0x03d638: ADD SCRATCH, EAX
0x03d650: MOV ESI, SCRATCH
0x03d668: JBE VM[0x03d788] (fallthrough VM[0x03d680])
0x03d680: X86 push esi
0x03d6b0: MOV SCRATCH, EBP
0x03d6e0: ADD SCRATCH, 0x00000c
0x03d6f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d710: PUSH SCRATCH
0x03d728: X86 push esi
0x03d758: X86CALLOUT 0x40857e
0x03d770: CRASH
0x03d788: MOV SCRATCH, EBP
0x03d7b8: ADD SCRATCH, 0x00000c
0x03d7d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d7e8: PUSH SCRATCH
0x03d800: X86 push esi
0x03d830: X86CALLOUT 0x408540
0x03d848: X86 test eax, eax
0x03d860: JZ VM[0x03dd58] (fallthrough VM[0x03d878])
0x03d878: MOV SCRATCH, EAX
0x03d8a8: ADD SCRATCH, 0x000004
0x03d8c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03d8d8: MOV EAX, SCRATCH
0x03d8f0: X86 push ebx
0x03d920: X86 mov ebx, 7FFFFFFFh
0x03d938: X86 and eax, ebx
0x03d950: X86 add eax, esi
0x03d968: X86 cmp dword ptr [ebp+10h], edi
0x03d980: JBE VM[0x03daa0] (fallthrough VM[0x03d998])
0x03d998: X86 push esi
0x03d9c8: MOV SCRATCH, EBP
0x03d9f8: ADD SCRATCH, 0x000010
0x03da10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03da28: PUSH SCRATCH
0x03da40: X86 push eax
0x03da70: X86CALLOUT 0x40857e
0x03da88: CRASH
0x03daa0: MOV SCRATCH, EBP
0x03dad0: ADD SCRATCH, 0x000010
0x03dae8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03db00: PUSH SCRATCH
0x03db18: X86 push eax
0x03db48: X86CALLOUT 0x408540
0x03db60: X86 test eax, eax
0x03db78: JZ VM[0x03dd40] (fallthrough VM[0x03db90])
0x03db90: MOV SCRATCH, EAX
0x03dbc0: ADD SCRATCH, 0x000004
0x03dbd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03dbf0: MOV EAX, SCRATCH
0x03dc08: X86 and eax, ebx
0x03dc20: MOV SCRATCH, ESI
0x03dc50: ADD SCRATCH, EAX
0x03dc68: ADD SCRATCH, 0x000014
0x03dc80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03dc98: MOV EAX, SCRATCH
0x03dcb0: MOV SCRATCH, ESI
0x03dce0: ADD SCRATCH, EAX
0x03dcf8: ADD SCRATCH, 0x000004
0x03dd10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03dd28: MOV EAX, SCRATCH
0x03dd40: X86 pop ebx
0x03dd58: X86 pop edi
0x03dd70: X86 pop esi
0x03dd88: X86 pop ebp
0x03dda0: X86 ret 0Ch
0x03ddb8: X86 mov eax, dword ptr fs:[30h]
0x03ddd0: MOV SCRATCH, EAX
0x03de00: ADD SCRATCH, 0x000008
0x03de18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03de30: MOV ESI, SCRATCH
0x03de48: MOV SCRATCH, ESI
0x03de78: ADD SCRATCH, 0x00003c
0x03de90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03dea8: MOV EAX, SCRATCH
0x03dec0: MOV SCRATCH, ESI
0x03def0: ADD SCRATCH, EAX
0x03df08: ADD SCRATCH, 0x000050
0x03df20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03df38: MOV EAX, SCRATCH
0x03df50: X86 mov ebx, dword ptr fs:[20h]
0x03df68: X86 add eax, esi
0x03df80: MOV SCRATCH, EBP
0x03dfb0: ADD SCRATCH, 0xffffffe4
0x03dfc8: MOV DWORD PTR [SCRATCH], EAX
0x03dfe0: X86 mov eax, dword ptr fs:[24h]
0x03dff8: MOV SCRATCH, EBP
0x03e028: ADD SCRATCH, 0xffffffe8
0x03e040: MOV DWORD PTR [SCRATCH], EAX
0x03e058: MOV SCRATCH, 0x420360
0x03e088: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e0a0: MOV EAX, SCRATCH
0x03e0b8: MOV SCRATCH, EAX
0x03e0e8: ADD SCRATCH, 0x00003c
0x03e100: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e118: MOV EDI, SCRATCH
0x03e130: X86 add edi, eax
0x03e148: X86CALLOUT 0x406a02
0x03e160: X86 cmp dword ptr [eax+44h], ebx
0x03e178: MOV SCRATCH, EBP
0x03e1a8: ADD SCRATCH, 0xffffffe0
0x03e1c0: MOV DWORD PTR [SCRATCH], EAX
0x03e1d8: MOV SCRATCH, EBP
0x03e208: ADD SCRATCH, 0xfffffffc
0x03e220: MOV DWORD PTR [SCRATCH], EAX
0x03e238: JZ VM[0x03e2f8] (fallthrough VM[0x03e250])
0x03e250: X86 add eax, dword ptr [eax]
0x03e268: X86 cmp dword ptr [eax+44h], ebx
0x03e280: JNZ VM[0x03e250] (fallthrough VM[0x03e298])
0x03e298: MOV SCRATCH, EBP
0x03e2c8: ADD SCRATCH, 0xfffffffc
0x03e2e0: MOV DWORD PTR [SCRATCH], EAX
0x03e2f8: X86 and dword ptr [ebp+0FFFFFFF0h], 0h
0x03e310: X86 cmp dword ptr [eax+4h], 0h
0x03e328: JBE VM[0x03ed60] (fallthrough VM[0x03e340])
0x03e340: MOV SCRATCH, EAX
0x03e370: ADD SCRATCH, 0x0000dc
0x03e388: MOV ECX, SCRATCH
0x03e3a0: MOV SCRATCH, EBP
0x03e3d0: ADD SCRATCH, 0xfffffff4
0x03e3e8: MOV DWORD PTR [SCRATCH], ECX
0x03e400: MOV SCRATCH, EBP
0x03e430: ADD SCRATCH, 0xfffffff4
0x03e448: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e460: MOV ECX, SCRATCH
0x03e478: MOV SCRATCH, ECX
0x03e4a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e4c0: MOV ECX, SCRATCH
0x03e4d8: X86 cmp ecx, dword ptr [ebp+0FFFFFFE8h]
0x03e4f0: JZ VM[0x03ec88] (fallthrough VM[0x03e508])
0x03e508: X86 push ecx
0x03e538: MOV SCRATCH, 0x000000
0x03e550: PUSH SCRATCH
0x03e568: MOV SCRATCH, 0x1f03ff
0x03e580: PUSH SCRATCH
0x03e598: X86CALLOUT 0x408acc
0x03e5b0: X86 mov ebx, eax
0x03e5e0: X86 test ebx, ebx
0x03e5f8: JZ VM[0x03ec10] (fallthrough VM[0x03e610])
0x03e610: MOV SCRATCH, EBP
0x03e640: ADD SCRATCH, 0xffffffec
0x03e658: MOV EAX, SCRATCH
0x03e670: X86 push eax
0x03e6a0: MOV SCRATCH, 0x000004
0x03e6b8: PUSH SCRATCH
0x03e6d0: MOV SCRATCH, EBP
0x03e700: ADD SCRATCH, 0xfffffff8
0x03e718: MOV EAX, SCRATCH
0x03e730: X86 push eax
0x03e760: MOV SCRATCH, 0x41ff34
0x03e790: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e7a8: MOV EAX, SCRATCH
0x03e7c0: MOV SCRATCH, 0x000009
0x03e7d8: PUSH SCRATCH
0x03e7f0: X86 push ebx
0x03e820: X86JUMPOUT call dword ptr [eax+4Ch]
0x03e838: X86 test eax, eax
0x03e850: JNZ VM[0x03ea90] (fallthrough VM[0x03e868])
0x03e868: MOV SCRATCH, EBP
0x03e898: ADD SCRATCH, 0xfffffff8
0x03e8b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e8c8: MOV ECX, SCRATCH
0x03e8e0: MOV SCRATCH, 0x420360
0x03e910: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e928: MOV EAX, SCRATCH
0x03e940: X86 cmp ecx, eax
0x03e958: JC VM[0x03ea30] (fallthrough VM[0x03e970])
0x03e970: MOV SCRATCH, EDI
0x03e9a0: ADD SCRATCH, 0x000050
0x03e9b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03e9d0: MOV EDX, SCRATCH
0x03e9e8: X86 add edx, eax
0x03ea00: X86 cmp ecx, edx
0x03ea18: JC VM[0x03eb68] (fallthrough VM[0x03ea30])
0x03ea30: X86 cmp ecx, esi
0x03ea48: JC VM[0x03ea90] (fallthrough VM[0x03ea60])
0x03ea60: X86 cmp ecx, dword ptr [ebp+0FFFFFFE4h]
0x03ea78: JC VM[0x03eb68] (fallthrough VM[0x03ea90])
0x03ea90: MOV SCRATCH, 0x41ff34
0x03eac0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ead8: MOV EAX, SCRATCH
0x03eaf0: MOV SCRATCH, 0x000000
0x03eb08: PUSH SCRATCH
0x03eb20: X86 push ebx
0x03eb50: X86JUMPOUT call dword ptr [eax+38h]
0x03eb68: MOV SCRATCH, 0x41ff34
0x03eb98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ebb0: MOV EAX, SCRATCH
0x03ebc8: X86 push ebx
0x03ebf8: X86JUMPOUT call dword ptr [eax+3Ch]
0x03ec10: MOV SCRATCH, EBP
0x03ec40: ADD SCRATCH, 0xfffffffc
0x03ec58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ec70: MOV EAX, SCRATCH
0x03ec88: X86 inc dword ptr [ebp+0FFFFFFF0h]
0x03eca0: MOV SCRATCH, EBP
0x03ecd0: ADD SCRATCH, 0xfffffff0
0x03ece8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ed00: MOV ECX, SCRATCH
0x03ed18: X86 add dword ptr [ebp+0FFFFFFF4h], 40h
0x03ed30: X86 cmp ecx, dword ptr [eax+4h]
0x03ed48: JC VM[0x03e400] (fallthrough VM[0x03ed60])
0x03ed60: MOV SCRATCH, EBP
0x03ed90: ADD SCRATCH, 0xffffffe0
0x03eda8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03edc0: PUSH SCRATCH
0x03edd8: X86CALLOUT 0x408e07
0x03edf0: X86 pop edi
0x03ee08: X86 pop esi
0x03ee20: X86 pop ebx
0x03ee38: X86 leave 
0x03ee50: X86 ret 
0x03ee68: MOV SCRATCH, EBP
0x03ee98: ADD SCRATCH, 0x000014
0x03eeb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03eec8: PUSH SCRATCH
0x03eee0: MOV SCRATCH, EBP
0x03ef10: ADD SCRATCH, 0x000008
0x03ef28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ef40: MOV EAX, SCRATCH
0x03ef58: MOV SCRATCH, EBP
0x03ef88: ADD SCRATCH, 0x000010
0x03efa0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03efb8: PUSH SCRATCH
0x03efd0: MOV SCRATCH, EBP
0x03f000: ADD SCRATCH, 0xfffffffc
0x03f018: MOV DWORD PTR [SCRATCH], EAX
0x03f030: MOV SCRATCH, EBP
0x03f060: ADD SCRATCH, 0x00000c
0x03f078: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f090: MOV EAX, SCRATCH
0x03f0a8: MOV SCRATCH, EBP
0x03f0d8: ADD SCRATCH, 0xfffffff8
0x03f0f0: MOV DWORD PTR [SCRATCH], EAX
0x03f108: MOV SCRATCH, EBP
0x03f138: ADD SCRATCH, 0xfffffff8
0x03f150: MOV EAX, SCRATCH
0x03f168: X86 push eax
0x03f198: MOV SCRATCH, 0x000000
0x03f1b0: PUSH SCRATCH
0x03f1c8: MOV SCRATCH, EBP
0x03f1f8: ADD SCRATCH, 0xfffffffc
0x03f210: MOV EAX, SCRATCH
0x03f228: X86 push eax
0x03f258: MOV SCRATCH, 0x41ff34
0x03f288: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f2a0: MOV EAX, SCRATCH
0x03f2b8: MOV SCRATCH, 0xffffffff
0x03f2d0: PUSH SCRATCH
0x03f2e8: X86JUMPOUT call dword ptr [eax+10h]
0x03f300: MOV SCRATCH, EBP
0x03f330: ADD SCRATCH, 0xfffffffc
0x03f348: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f360: MOV EAX, SCRATCH
0x03f378: X86 leave 
0x03f390: X86 ret 10h
0x03f3a8: MOV SCRATCH, EBP
0x03f3d8: ADD SCRATCH, 0x000018
0x03f3f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f408: PUSH SCRATCH
0x03f420: MOV SCRATCH, EBP
0x03f450: ADD SCRATCH, 0x000010
0x03f468: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f480: MOV EAX, SCRATCH
0x03f498: MOV SCRATCH, EBP
0x03f4c8: ADD SCRATCH, 0x000014
0x03f4e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f4f8: PUSH SCRATCH
0x03f510: MOV SCRATCH, EBP
0x03f540: ADD SCRATCH, 0xfffffff8
0x03f558: MOV DWORD PTR [SCRATCH], EAX
0x03f570: MOV SCRATCH, EBP
0x03f5a0: ADD SCRATCH, 0x00000c
0x03f5b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f5d0: MOV EAX, SCRATCH
0x03f5e8: MOV SCRATCH, EBP
0x03f618: ADD SCRATCH, 0xfffffffc
0x03f630: MOV DWORD PTR [SCRATCH], EAX
0x03f648: MOV SCRATCH, EBP
0x03f678: ADD SCRATCH, 0xfffffff8
0x03f690: MOV EAX, SCRATCH
0x03f6a8: X86 push eax
0x03f6d8: MOV SCRATCH, 0x000000
0x03f6f0: PUSH SCRATCH
0x03f708: MOV SCRATCH, EBP
0x03f738: ADD SCRATCH, 0xfffffffc
0x03f750: MOV EAX, SCRATCH
0x03f768: X86 push eax
0x03f798: MOV SCRATCH, EBP
0x03f7c8: ADD SCRATCH, 0x000008
0x03f7e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f7f8: PUSH SCRATCH
0x03f810: MOV SCRATCH, 0x41ff34
0x03f840: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f858: MOV EAX, SCRATCH
0x03f870: X86JUMPOUT call dword ptr [eax+10h]
0x03f888: MOV SCRATCH, EBP
0x03f8b8: ADD SCRATCH, 0xfffffffc
0x03f8d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f8e8: MOV EAX, SCRATCH
0x03f900: X86 leave 
0x03f918: X86 ret 14h
0x03f930: MOV SCRATCH, EBP
0x03f960: ADD SCRATCH, 0x000010
0x03f978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03f990: PUSH SCRATCH
0x03f9a8: MOV SCRATCH, EBP
0x03f9d8: ADD SCRATCH, 0x00000c
0x03f9f0: MOV EAX, SCRATCH
0x03fa08: X86 push eax
0x03fa38: MOV SCRATCH, EBP
0x03fa68: ADD SCRATCH, 0x000008
0x03fa80: MOV EAX, SCRATCH
0x03fa98: X86 push eax
0x03fac8: MOV SCRATCH, 0x41ff34
0x03faf8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fb10: MOV EAX, SCRATCH
0x03fb28: MOV SCRATCH, 0xffffffff
0x03fb40: PUSH SCRATCH
0x03fb58: X86JUMPOUT call dword ptr [eax+14h]
0x03fb70: X86 neg eax
0x03fb88: X86 sbb eax, eax
0x03fba0: X86 inc eax
0x03fbb8: X86 pop ebp
0x03fbd0: X86 ret 0Ch
0x03fbe8: MOV SCRATCH, EBP
0x03fc18: ADD SCRATCH, 0x00000c
0x03fc30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fc48: PUSH SCRATCH
0x03fc60: MOV SCRATCH, 0x41ff34
0x03fc90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fca8: MOV EAX, SCRATCH
0x03fcc0: MOV SCRATCH, EBP
0x03fcf0: ADD SCRATCH, 0x000008
0x03fd08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fd20: PUSH SCRATCH
0x03fd38: X86JUMPOUT call dword ptr [eax+18h]
0x03fd50: X86 neg eax
0x03fd68: X86 sbb eax, eax
0x03fd80: X86 inc eax
0x03fd98: X86 pop ebp
0x03fdb0: X86 ret 8h
0x03fdc8: MOV SCRATCH, EBP
0x03fdf8: ADD SCRATCH, 0x00000c
0x03fe10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fe28: PUSH SCRATCH
0x03fe40: MOV SCRATCH, 0x41ff34
0x03fe70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03fe88: MOV EAX, SCRATCH
0x03fea0: MOV SCRATCH, EBP
0x03fed0: ADD SCRATCH, 0x000008
0x03fee8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x03ff00: PUSH SCRATCH
0x03ff18: X86JUMPOUT call dword ptr [eax+1Ch]
0x03ff30: X86 neg eax
0x03ff48: X86 sbb eax, eax
0x03ff60: X86 inc eax
0x03ff78: X86 pop ebp
0x03ff90: X86 ret 8h
0x03ffa8: X86 mov esi, 208h
0x03ffc0: X86 push esi
0x03fff0: X86 xor ebx, ebx
0x040008: MOV SCRATCH, EBP
0x040038: ADD SCRATCH, 0xfffffdcc
0x040050: MOV EAX, SCRATCH
0x040068: X86 push ebx
0x040098: X86 push eax
0x0400c8: X86CALLOUT 0x40ae80
0x0400e0: X86 push esi
0x040110: MOV SCRATCH, EBP
0x040140: ADD SCRATCH, 0xfffff9bc
0x040158: MOV EAX, SCRATCH
0x040170: X86 push ebx
0x0401a0: X86 push eax
0x0401d0: X86CALLOUT 0x40ae80
0x0401e8: X86 push esi
0x040218: MOV SCRATCH, EBP
0x040248: ADD SCRATCH, 0xfffffbc4
0x040260: MOV EAX, SCRATCH
0x040278: X86 push ebx
0x0402a8: X86 push eax
0x0402d8: X86CALLOUT 0x40ae80
0x0402f0: MOV SCRATCH, EBP
0x040320: ADD SCRATCH, 0x000008
0x040338: MOV SCRATCH, DWORD PTR [SCRATCH]
0x040350: MOV EDI, SCRATCH
0x040368: X86 add esp, 24h
0x040380: X86 cmp word ptr [edi], 5Ch
0x040398: JNZ VM[0x0403e0] (fallthrough VM[0x0403b0])
0x0403b0: X86 cmp word ptr [edi+2h], 5Ch
0x0403c8: JZ VM[0x0406e0] (fallthrough VM[0x0403e0])
0x0403e0: X86 mov esi, 104h
0x0403f8: X86 push esi
0x040428: MOV SCRATCH, EBP
0x040458: ADD SCRATCH, 0xfffffbc4
0x040470: MOV EAX, SCRATCH
0x040488: X86 push eax
0x0404b8: X86CALLOUT 0x40171c
0x0404d0: X86 push eax
0x040500: MOV SCRATCH, EBP
0x040530: ADD SCRATCH, 0xfffffdcc
0x040548: MOV EAX, SCRATCH
0x040560: X86 push eax
0x040590: X86JUMPOUT call dword ptr [401110h]
0x0405a8: X86 push esi
0x0405d8: MOV SCRATCH, EBP
0x040608: ADD SCRATCH, 0xfffffdcc
0x040620: MOV EAX, SCRATCH
0x040638: X86 push edi
0x040668: X86 push eax
0x040698: X86JUMPOUT call dword ptr [401114h]
0x0406b0: X86 add esp, 18h
0x0406c8: CRASH
0x0406e0: MOV SCRATCH, 0x41ff38
0x040710: MOV SCRATCH, DWORD PTR [SCRATCH]
0x040728: MOV EAX, SCRATCH
0x040740: X86JUMPOUT call dword ptr [eax+74h]
0x040758: X86 and eax, 0FFFFh
0x040770: X86 mov esi, 104h
0x040788: X86 cmp eax, 5h
0x0407a0: X86 push esi
0x0407d0: MOV SCRATCH, EBP
0x040800: ADD SCRATCH, 0xfffffbc4
0x040818: MOV EAX, SCRATCH
0x040830: X86 push eax
0x040860: JNZ VM[0x0408a8] (fallthrough VM[0x040878])
0x040878: X86CALLOUT 0x4017b5
0x040890: CRASH
0x0408a8: X86CALLOUT 0x401765
0x0408c0: X86 push eax
0x0408f0: MOV SCRATCH, EBP
0x040920: ADD SCRATCH, 0xfffffdcc
0x040938: MOV EAX, SCRATCH
0x040950: X86 push eax
0x040980: X86JUMPOUT call dword ptr [401110h]
0x040998: X86 add esp, 0Ch
0x0409b0: X86 push esi
0x0409e0: MOV SCRATCH, EBP
0x040a10: ADD SCRATCH, 0xfffffdcc
0x040a28: MOV EAX, SCRATCH
0x040a40: X86 push edi
0x040a70: X86 push eax
0x040aa0: X86JUMPOUT call dword ptr [401114h]
0x040ab8: X86 add esp, 0Ch
0x040ad0: X86 xor eax, eax
0x040ae8: MOV SCRATCH, EBP
0x040b18: ADD SCRATCH, 0xfffff9bc
0x040b30: MOV EDX, SCRATCH
0x040b48: X86 movzx ecx, word ptr [ebp+eax*2+0FFFFFDCCh]
0x040b60: X86 cmp cx, 5Ch
0x040b78: JNZ VM[0x040c20] (fallthrough VM[0x040b90])
0x040b90: X86 cmp eax, ebx
0x040ba8: JZ VM[0x040c20] (fallthrough VM[0x040bc0])
0x040bc0: X86 cmp word ptr [ebp+eax*2+0FFFFFDCAh], cx
0x040bd8: JNZ VM[0x040c20] (fallthrough VM[0x040bf0])
0x040bf0: X86 inc eax
0x040c08: CRASH
0x040c20: X86 mov word ptr [edx], cx
0x040c38: X86 inc eax
0x040c50: X86 inc edx
0x040c68: X86 inc edx
0x040c80: X86 cmp word ptr [ebp+eax*2+0FFFFFDCCh], bx
0x040c98: JNZ VM[0x040b48] (fallthrough VM[0x040cb0])
0x040cb0: MOV SCRATCH, EBP
0x040ce0: ADD SCRATCH, 0xfffff9bc
0x040cf8: MOV EAX, SCRATCH
0x040d10: X86 push eax
0x040d40: MOV SCRATCH, EBP
0x040d70: ADD SCRATCH, 0xfffffff4
0x040d88: MOV EAX, SCRATCH
0x040da0: X86 push eax
0x040dd0: MOV SCRATCH, 0x41ff34
0x040e00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x040e18: MOV EAX, SCRATCH
0x040e30: X86JUMPOUT call dword ptr [eax+24h]
0x040e48: MOV SCRATCH, EBP
0x040e78: ADD SCRATCH, 0xfffffff4
0x040e90: MOV EAX, SCRATCH
0x040ea8: MOV SCRATCH, EBP
0x040ed8: ADD SCRATCH, 0xffffffe4
0x040ef0: MOV DWORD PTR [SCRATCH], EAX
0x040f08: MOV SCRATCH, EBP
0x040f38: ADD SCRATCH, 0x000018
0x040f50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x040f68: MOV EAX, SCRATCH
0x040f80: X86 dec eax
0x040f98: X86 dec eax
0x040fb0: X86 mov dword ptr [ebp+0FFFFFFDCh], 18h
0x040fc8: MOV SCRATCH, EBP
0x040ff8: ADD SCRATCH, 0xffffffe0
0x041010: MOV DWORD PTR [SCRATCH], EBX
0x041028: X86 mov dword ptr [ebp+0FFFFFFE8h], 40h
0x041040: MOV SCRATCH, EBP
0x041070: ADD SCRATCH, 0xffffffec
0x041088: MOV DWORD PTR [SCRATCH], EBX
0x0410a0: MOV SCRATCH, EBP
0x0410d0: ADD SCRATCH, 0xfffffff0
0x0410e8: MOV DWORD PTR [SCRATCH], EBX
0x041100: JZ VM[0x041178] (fallthrough VM[0x041118])
0x041118: X86 dec eax
0x041130: JNZ VM[0x041178] (fallthrough VM[0x041148])
0x041148: X86 inc eax
0x041160: CRASH
0x041178: X86 xor eax, eax
0x041190: X86 push ebx
0x0411c0: X86 push ebx
0x0411f0: MOV SCRATCH, 0x000060
0x041208: PUSH SCRATCH
0x041220: X86 push eax
0x041250: MOV SCRATCH, EBP
0x041280: ADD SCRATCH, 0x000010
0x041298: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0412b0: PUSH SCRATCH
0x0412c8: MOV SCRATCH, EBP
0x0412f8: ADD SCRATCH, 0xffffffd4
0x041310: MOV EAX, SCRATCH
0x041328: MOV SCRATCH, EBP
0x041358: ADD SCRATCH, 0x00001c
0x041370: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041388: PUSH SCRATCH
0x0413a0: X86 push ebx
0x0413d0: X86 push eax
0x041400: MOV SCRATCH, EBP
0x041430: ADD SCRATCH, 0xffffffdc
0x041448: MOV EAX, SCRATCH
0x041460: X86 push eax
0x041490: MOV SCRATCH, EBP
0x0414c0: ADD SCRATCH, 0x00000c
0x0414d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0414f0: MOV EAX, SCRATCH
0x041508: X86 or eax, 100080h
0x041520: X86 push eax
0x041550: MOV SCRATCH, EBP
0x041580: ADD SCRATCH, 0xfffffffc
0x041598: MOV EAX, SCRATCH
0x0415b0: X86 push eax
0x0415e0: MOV SCRATCH, 0x41ff34
0x041610: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041628: MOV EAX, SCRATCH
0x041640: X86JUMPOUT call dword ptr [eax+20h]
0x041658: X86 test eax, eax
0x041670: X86 pop edi
0x041688: X86 pop esi
0x0416a0: X86 pop ebx
0x0416b8: JZ VM[0x041700] (fallthrough VM[0x0416d0])
0x0416d0: X86 or eax, 0FFFFFFFFh
0x0416e8: CRASH
0x041700: MOV SCRATCH, EBP
0x041730: ADD SCRATCH, 0xfffffffc
0x041748: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041760: MOV EAX, SCRATCH
0x041778: X86 leave 
0x041790: X86 ret 1Ch
0x0417a8: MOV SCRATCH, EBP
0x0417d8: ADD SCRATCH, 0x000010
0x0417f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041808: MOV ECX, SCRATCH
0x041820: X86 xor eax, eax
0x041838: MOV SCRATCH, EBP
0x041868: ADD SCRATCH, 0xffffffe0
0x041880: MOV DWORD PTR [SCRATCH], EAX
0x041898: MOV SCRATCH, EBP
0x0418c8: ADD SCRATCH, 0xffffffe8
0x0418e0: MOV DWORD PTR [SCRATCH], EAX
0x0418f8: MOV SCRATCH, EBP
0x041928: ADD SCRATCH, 0xffffffe4
0x041940: MOV DWORD PTR [SCRATCH], EAX
0x041958: MOV SCRATCH, EBP
0x041988: ADD SCRATCH, 0xffffffec
0x0419a0: MOV DWORD PTR [SCRATCH], EAX
0x0419b8: MOV SCRATCH, EBP
0x0419e8: ADD SCRATCH, 0xfffffff0
0x041a00: MOV DWORD PTR [SCRATCH], EAX
0x041a18: MOV SCRATCH, EBP
0x041a48: ADD SCRATCH, 0xfffffff4
0x041a60: MOV DWORD PTR [SCRATCH], EAX
0x041a78: MOV SCRATCH, EBP
0x041aa8: ADD SCRATCH, 0xfffffff4
0x041ac0: MOV EAX, SCRATCH
0x041ad8: X86 push eax
0x041b08: MOV SCRATCH, EBP
0x041b38: ADD SCRATCH, 0xffffffdc
0x041b50: MOV EAX, SCRATCH
0x041b68: X86 push eax
0x041b98: MOV SCRATCH, EBP
0x041bc8: ADD SCRATCH, 0x000008
0x041be0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041bf8: PUSH SCRATCH
0x041c10: MOV SCRATCH, EBP
0x041c40: ADD SCRATCH, 0xfffffffc
0x041c58: MOV EAX, SCRATCH
0x041c70: X86 push eax
0x041ca0: MOV SCRATCH, 0x41ff34
0x041cd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x041ce8: MOV EAX, SCRATCH
0x041d00: X86 mov dword ptr [ebp+0FFFFFFDCh], 18h
0x041d18: MOV SCRATCH, EBP
0x041d48: ADD SCRATCH, 0xfffffff8
0x041d60: MOV DWORD PTR [SCRATCH], ECX
0x041d78: X86JUMPOUT call dword ptr [eax+34h]
0x041d90: X86 neg eax
0x041da8: X86 sbb eax, eax
0x041dc0: X86 not eax
0x041dd8: X86 and eax, dword ptr [ebp+0FFFFFFFCh]
0x041df0: X86 leave 
0x041e08: X86 ret 0Ch
0x041e20: X86 xor eax, eax
0x041e38: MOV SCRATCH, EBP
0x041e68: ADD SCRATCH, 0xffffffe0
0x041e80: MOV DWORD PTR [SCRATCH], EAX
0x041e98: MOV SCRATCH, EBP
0x041ec8: ADD SCRATCH, 0xffffffe8
0x041ee0: MOV DWORD PTR [SCRATCH], EAX
0x041ef8: MOV SCRATCH, EBP
0x041f28: ADD SCRATCH, 0xffffffe4
0x041f40: MOV DWORD PTR [SCRATCH], EAX
0x041f58: MOV SCRATCH, EBP
0x041f88: ADD SCRATCH, 0xffffffec
0x041fa0: MOV DWORD PTR [SCRATCH], EAX
0x041fb8: MOV SCRATCH, EBP
0x041fe8: ADD SCRATCH, 0xfffffff0
0x042000: MOV DWORD PTR [SCRATCH], EAX
0x042018: MOV SCRATCH, EBP
0x042048: ADD SCRATCH, 0xfffffff8
0x042060: MOV DWORD PTR [SCRATCH], EAX
0x042078: MOV SCRATCH, EBP
0x0420a8: ADD SCRATCH, 0x000010
0x0420c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0420d8: MOV EAX, SCRATCH
0x0420f0: MOV SCRATCH, EBP
0x042120: ADD SCRATCH, 0xfffffff4
0x042138: MOV DWORD PTR [SCRATCH], EAX
0x042150: MOV SCRATCH, EBP
0x042180: ADD SCRATCH, 0xfffffff4
0x042198: MOV EAX, SCRATCH
0x0421b0: X86 push eax
0x0421e0: MOV SCRATCH, EBP
0x042210: ADD SCRATCH, 0xffffffdc
0x042228: MOV EAX, SCRATCH
0x042240: X86 push eax
0x042270: MOV SCRATCH, EBP
0x0422a0: ADD SCRATCH, 0x000008
0x0422b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0422d0: PUSH SCRATCH
0x0422e8: MOV SCRATCH, EBP
0x042318: ADD SCRATCH, 0xfffffffc
0x042330: MOV EAX, SCRATCH
0x042348: X86 push eax
0x042378: MOV SCRATCH, 0x41ff34
0x0423a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0423c0: MOV EAX, SCRATCH
0x0423d8: X86 mov dword ptr [ebp+0FFFFFFDCh], 18h
0x0423f0: X86JUMPOUT call dword ptr [eax+50h]
0x042408: X86 neg eax
0x042420: X86 sbb eax, eax
0x042438: X86 not eax
0x042450: X86 and eax, dword ptr [ebp+0FFFFFFFCh]
0x042468: X86 leave 
0x042480: X86 ret 0Ch
0x042498: MOV SCRATCH, EBP
0x0424c8: ADD SCRATCH, 0x000020
0x0424e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0424f8: PUSH SCRATCH
0x042510: MOV SCRATCH, 0x41ff38
0x042540: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042558: MOV EAX, SCRATCH
0x042570: MOV SCRATCH, EBP
0x0425a0: ADD SCRATCH, 0x00001c
0x0425b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0425d0: PUSH SCRATCH
0x0425e8: MOV SCRATCH, EBP
0x042618: ADD SCRATCH, 0x000018
0x042630: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042648: PUSH SCRATCH
0x042660: MOV SCRATCH, EBP
0x042690: ADD SCRATCH, 0x000014
0x0426a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0426c0: PUSH SCRATCH
0x0426d8: MOV SCRATCH, EBP
0x042708: ADD SCRATCH, 0x000010
0x042720: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042738: PUSH SCRATCH
0x042750: MOV SCRATCH, EBP
0x042780: ADD SCRATCH, 0x00000c
0x042798: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0427b0: PUSH SCRATCH
0x0427c8: MOV SCRATCH, EBP
0x0427f8: ADD SCRATCH, 0x000008
0x042810: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042828: PUSH SCRATCH
0x042840: X86JUMPOUT call dword ptr [eax+4h]
0x042858: X86 mov esi, eax
0x042888: X86 test esi, esi
0x0428a0: JZ VM[0x042a20] (fallthrough VM[0x0428b8])
0x0428b8: MOV SCRATCH, 0x41ff34
0x0428e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042900: MOV EAX, SCRATCH
0x042918: MOV SCRATCH, 0x000000
0x042930: PUSH SCRATCH
0x042948: MOV SCRATCH, 0x000000
0x042960: PUSH SCRATCH
0x042978: MOV SCRATCH, 0x000011
0x042990: PUSH SCRATCH
0x0429a8: X86 push esi
0x0429d8: X86JUMPOUT call dword ptr [eax+8h]
0x0429f0: X86 mov eax, esi
0x042a20: X86 pop esi
0x042a38: X86 pop ebp
0x042a50: X86 ret 1Ch
0x042a68: MOV SCRATCH, EBP
0x042a98: ADD SCRATCH, 0x000008
0x042ab0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042ac8: PUSH SCRATCH
0x042ae0: MOV SCRATCH, 0x41ff34
0x042b10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042b28: MOV EAX, SCRATCH
0x042b40: MOV SCRATCH, 0x000000
0x042b58: PUSH SCRATCH
0x042b70: X86JUMPOUT call dword ptr [eax+44h]
0x042b88: MOV SCRATCH, EBP
0x042bb8: ADD SCRATCH, 0x000008
0x042bd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042be8: PUSH SCRATCH
0x042c00: MOV SCRATCH, 0x41ff34
0x042c30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042c48: MOV EAX, SCRATCH
0x042c60: MOV SCRATCH, 0xffffffff
0x042c78: PUSH SCRATCH
0x042c90: X86JUMPOUT call dword ptr [eax+44h]
0x042ca8: X86 pop ebp
0x042cc0: X86 ret 4h
0x042cd8: MOV SCRATCH, EBP
0x042d08: ADD SCRATCH, 0x000018
0x042d20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042d38: PUSH SCRATCH
0x042d50: MOV SCRATCH, EBP
0x042d80: ADD SCRATCH, 0x000010
0x042d98: MOV EAX, SCRATCH
0x042db0: MOV SCRATCH, EBP
0x042de0: ADD SCRATCH, 0x000014
0x042df8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042e10: PUSH SCRATCH
0x042e28: X86 push eax
0x042e58: MOV SCRATCH, EBP
0x042e88: ADD SCRATCH, 0x00000c
0x042ea0: MOV EAX, SCRATCH
0x042eb8: X86 push eax
0x042ee8: MOV SCRATCH, EBP
0x042f18: ADD SCRATCH, 0x000008
0x042f30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042f48: PUSH SCRATCH
0x042f60: MOV SCRATCH, 0x41ff34
0x042f90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x042fa8: MOV EAX, SCRATCH
0x042fc0: X86JUMPOUT call dword ptr [eax+48h]
0x042fd8: X86 neg eax
0x042ff0: X86 sbb eax, eax
0x043008: X86 inc eax
0x043020: X86 pop ebp
0x043038: X86 ret 14h
0x043050: MOV SCRATCH, EBP
0x043080: ADD SCRATCH, 0x000018
0x043098: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0430b0: MOV EAX, SCRATCH
0x0430c8: X86 test eax, eax
0x0430e0: JZ VM[0x043380] (fallthrough VM[0x0430f8])
0x0430f8: MOV SCRATCH, EAX
0x043128: ADD SCRATCH, 0x000008
0x043140: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043158: MOV EDX, SCRATCH
0x043170: MOV SCRATCH, EAX
0x0431a0: ADD SCRATCH, 0x000010
0x0431b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0431d0: MOV ECX, SCRATCH
0x0431e8: MOV SCRATCH, EAX
0x043218: ADD SCRATCH, 0x00000c
0x043230: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043248: MOV EAX, SCRATCH
0x043260: MOV SCRATCH, EBP
0x043290: ADD SCRATCH, 0xfffffff8
0x0432a8: MOV DWORD PTR [SCRATCH], EDX
0x0432c0: MOV SCRATCH, EBP
0x0432f0: ADD SCRATCH, 0xfffffffc
0x043308: MOV DWORD PTR [SCRATCH], EAX
0x043320: MOV SCRATCH, EBP
0x043350: ADD SCRATCH, 0xfffffff8
0x043368: MOV EDX, SCRATCH
0x043380: MOV SCRATCH, 0x000000
0x043398: PUSH SCRATCH
0x0433b0: X86 push edx
0x0433e0: MOV SCRATCH, EBP
0x043410: ADD SCRATCH, 0x000010
0x043428: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043440: PUSH SCRATCH
0x043458: MOV SCRATCH, EBP
0x043488: ADD SCRATCH, 0xfffffff0
0x0434a0: MOV EAX, SCRATCH
0x0434b8: MOV SCRATCH, EBP
0x0434e8: ADD SCRATCH, 0x00000c
0x043500: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043518: PUSH SCRATCH
0x043530: X86 push eax
0x043560: MOV SCRATCH, 0x41ff34
0x043590: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0435a8: MOV EAX, SCRATCH
0x0435c0: MOV SCRATCH, 0x000000
0x0435d8: PUSH SCRATCH
0x0435f0: MOV SCRATCH, 0x000000
0x043608: PUSH SCRATCH
0x043620: X86 push ecx
0x043650: MOV SCRATCH, EBP
0x043680: ADD SCRATCH, 0x000008
0x043698: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0436b0: PUSH SCRATCH
0x0436c8: X86JUMPOUT call dword ptr [eax+54h]
0x0436e0: X86 test eax, eax
0x0436f8: JZ VM[0x043740] (fallthrough VM[0x043710])
0x043710: X86 xor eax, eax
0x043728: CRASH
0x043740: MOV SCRATCH, EBP
0x043770: ADD SCRATCH, 0x000014
0x043788: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0437a0: MOV EAX, SCRATCH
0x0437b8: X86 test eax, eax
0x0437d0: JZ VM[0x0438a8] (fallthrough VM[0x0437e8])
0x0437e8: MOV SCRATCH, EBP
0x043818: ADD SCRATCH, 0xfffffff4
0x043830: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043848: MOV ECX, SCRATCH
0x043860: MOV SCRATCH, EAX
0x043890: MOV DWORD PTR [SCRATCH], ECX
0x0438a8: X86 xor eax, eax
0x0438c0: X86 inc eax
0x0438d8: X86 leave 
0x0438f0: X86 ret 14h
0x043908: MOV SCRATCH, 0x000005
0x043920: PUSH SCRATCH
0x043938: MOV SCRATCH, 0x000018
0x043950: PUSH SCRATCH
0x043968: MOV SCRATCH, EBP
0x043998: ADD SCRATCH, 0xffffffe0
0x0439b0: MOV EAX, SCRATCH
0x0439c8: X86 push eax
0x0439f8: MOV SCRATCH, EBP
0x043a28: ADD SCRATCH, 0xfffffff8
0x043a40: MOV EAX, SCRATCH
0x043a58: X86 push eax
0x043a88: MOV SCRATCH, EBP
0x043ab8: ADD SCRATCH, 0x000008
0x043ad0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043ae8: PUSH SCRATCH
0x043b00: MOV SCRATCH, 0x41ff34
0x043b30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043b48: MOV EAX, SCRATCH
0x043b60: X86JUMPOUT call dword ptr [eax+5Ch]
0x043b78: X86 test eax, eax
0x043b90: JZ VM[0x043bd8] (fallthrough VM[0x043ba8])
0x043ba8: X86 or eax, 0FFFFFFFFh
0x043bc0: CRASH
0x043bd8: MOV SCRATCH, EBP
0x043c08: ADD SCRATCH, 0x00000c
0x043c20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043c38: MOV EAX, SCRATCH
0x043c50: X86 test eax, eax
0x043c68: JZ VM[0x043d40] (fallthrough VM[0x043c80])
0x043c80: MOV SCRATCH, EBP
0x043cb0: ADD SCRATCH, 0xffffffec
0x043cc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043ce0: MOV ECX, SCRATCH
0x043cf8: MOV SCRATCH, EAX
0x043d28: MOV DWORD PTR [SCRATCH], ECX
0x043d40: MOV SCRATCH, EBP
0x043d70: ADD SCRATCH, 0xffffffe8
0x043d88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043da0: MOV EAX, SCRATCH
0x043db8: X86 leave 
0x043dd0: X86 ret 8h
0x043de8: X86 mov eax, dword ptr fs:[30h]
0x043e00: MOV SCRATCH, EAX
0x043e30: ADD SCRATCH, 0x000018
0x043e48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043e60: MOV EAX, SCRATCH
0x043e78: X86 ret 
0x043e90: MOV SCRATCH, EBP
0x043ec0: ADD SCRATCH, 0x000008
0x043ed8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043ef0: PUSH SCRATCH
0x043f08: MOV SCRATCH, 0x41ff34
0x043f38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x043f50: MOV ECX, SCRATCH
0x043f68: MOV SCRATCH, 0x000008
0x043f80: PUSH SCRATCH
0x043f98: X86 add ecx, 60h
0x043fb0: X86CALLOUT 0x408d0c
0x043fc8: X86 push eax
0x043ff8: X86JUMPOUT call dword ptr [ecx]
0x044010: X86 pop ebp
0x044028: X86 ret 4h
0x044040: MOV SCRATCH, EBP
0x044070: ADD SCRATCH, 0x000008
0x044088: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0440a0: PUSH SCRATCH
0x0440b8: MOV SCRATCH, 0x41ff34
0x0440e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044100: MOV ECX, SCRATCH
0x044118: MOV SCRATCH, 0x000000
0x044130: PUSH SCRATCH
0x044148: X86 add ecx, 64h
0x044160: X86CALLOUT 0x408d0c
0x044178: X86 push eax
0x0441a8: X86JUMPOUT call dword ptr [ecx]
0x0441c0: X86 pop ebp
0x0441d8: X86 ret 4h
0x0441f0: MOV SCRATCH, 0x000003
0x044208: PUSH SCRATCH
0x044220: MOV SCRATCH, EBP
0x044250: ADD SCRATCH, 0x000008
0x044268: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044280: PUSH SCRATCH
0x044298: X86CALLOUT 0x4081c0
0x0442b0: MOV SCRATCH, 0x41ff38
0x0442e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0442f8: MOV ECX, SCRATCH
0x044310: MOV SCRATCH, 0x000104
0x044328: PUSH SCRATCH
0x044340: X86 push eax
0x044370: MOV SCRATCH, 0x000000
0x044388: PUSH SCRATCH
0x0443a0: MOV SCRATCH, ECX
0x0443d0: ADD SCRATCH, 0x000048
0x0443e8: MOV ESI, SCRATCH
0x044400: X86JUMPOUT call dword ptr [ecx+78h]
0x044418: X86 push eax
0x044448: X86JUMPOUT call dword ptr [esi]
0x044460: X86 pop esi
0x044478: X86 pop ebp
0x044490: X86 ret 4h
0x0444a8: MOV SCRATCH, 0x008000
0x0444c0: PUSH SCRATCH
0x0444d8: MOV SCRATCH, EBP
0x044508: ADD SCRATCH, 0xfffffffc
0x044520: MOV EAX, SCRATCH
0x044538: X86 push eax
0x044568: MOV SCRATCH, EBP
0x044598: ADD SCRATCH, 0x00000c
0x0445b0: MOV EAX, SCRATCH
0x0445c8: X86 push eax
0x0445f8: MOV SCRATCH, EBP
0x044628: ADD SCRATCH, 0x000008
0x044640: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044658: PUSH SCRATCH
0x044670: MOV SCRATCH, 0x41ff34
0x0446a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0446b8: MOV EAX, SCRATCH
0x0446d0: X86JUMPOUT call dword ptr [eax+14h]
0x0446e8: X86 leave 
0x044700: X86 ret 8h
0x044718: MOV SCRATCH, 0x008000
0x044730: PUSH SCRATCH
0x044748: MOV SCRATCH, EBP
0x044778: ADD SCRATCH, 0xfffffffc
0x044790: MOV EAX, SCRATCH
0x0447a8: X86 push eax
0x0447d8: MOV SCRATCH, EBP
0x044808: ADD SCRATCH, 0x000008
0x044820: MOV EAX, SCRATCH
0x044838: X86 push eax
0x044868: MOV SCRATCH, 0x41ff34
0x044898: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0448b0: MOV EAX, SCRATCH
0x0448c8: MOV SCRATCH, 0xffffffff
0x0448e0: PUSH SCRATCH
0x0448f8: X86JUMPOUT call dword ptr [eax+14h]
0x044910: X86 leave 
0x044928: X86 ret 4h
0x044940: MOV SCRATCH, 0x000004
0x044958: PUSH SCRATCH
0x044970: X86 mov edi, 1000h
0x044988: X86 push edi
0x0449b8: X86 mov esi, 10000h
0x0449d0: X86 push esi
0x044a00: MOV SCRATCH, 0x000000
0x044a18: PUSH SCRATCH
0x044a30: X86 mov ebx, esi
0x044a60: X86CALLOUT 0x408810
0x044a78: MOV SCRATCH, EBP
0x044aa8: ADD SCRATCH, 0xfffffff8
0x044ac0: MOV ECX, SCRATCH
0x044ad8: X86 push ecx
0x044b08: X86 push esi
0x044b38: CRASH
0x044b50: MOV SCRATCH, EBP
0x044b80: ADD SCRATCH, 0xfffffffc
0x044b98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044bb0: PUSH SCRATCH
0x044bc8: X86CALLOUT 0x408e07
0x044be0: MOV SCRATCH, 0x000004
0x044bf8: PUSH SCRATCH
0x044c10: X86 push edi
0x044c40: X86 add ebx, esi
0x044c58: X86 push ebx
0x044c88: MOV SCRATCH, 0x000000
0x044ca0: PUSH SCRATCH
0x044cb8: X86CALLOUT 0x408810
0x044cd0: MOV SCRATCH, EBP
0x044d00: ADD SCRATCH, 0xfffffff8
0x044d18: MOV ECX, SCRATCH
0x044d30: X86 push ecx
0x044d60: X86 push ebx
0x044d90: X86 push eax
0x044dc0: MOV SCRATCH, EBP
0x044df0: ADD SCRATCH, 0xfffffffc
0x044e08: MOV DWORD PTR [SCRATCH], EAX
0x044e20: MOV SCRATCH, 0x41ff34
0x044e50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044e68: MOV EAX, SCRATCH
0x044e80: MOV SCRATCH, 0x000005
0x044e98: PUSH SCRATCH
0x044eb0: X86JUMPOUT call dword ptr [eax]
0x044ec8: X86 test eax, eax
0x044ee0: JNZ VM[0x044b50] (fallthrough VM[0x044ef8])
0x044ef8: MOV SCRATCH, EBP
0x044f28: ADD SCRATCH, 0xfffffffc
0x044f40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044f58: MOV EAX, SCRATCH
0x044f70: MOV SCRATCH, EBP
0x044fa0: ADD SCRATCH, 0x000008
0x044fb8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x044fd0: MOV EDX, SCRATCH
0x044fe8: CRASH
0x045000: MOV SCRATCH, EAX
0x045030: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045048: MOV ECX, SCRATCH
0x045060: X86 test ecx, ecx
0x045078: JZ VM[0x045570] (fallthrough VM[0x045090])
0x045090: X86 add eax, ecx
0x0450a8: X86 cmp dword ptr [eax+44h], edx
0x0450c0: JNZ VM[0x045000] (fallthrough VM[0x0450d8])
0x0450d8: MOV SCRATCH, EAX
0x045108: ADD SCRATCH, 0x000004
0x045120: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045138: MOV EBX, SCRATCH
0x045150: X86 test ebx, ebx
0x045168: JZ VM[0x045570] (fallthrough VM[0x045180])
0x045180: MOV SCRATCH, EAX
0x0451b0: ADD SCRATCH, 0x0000dc
0x0451c8: MOV ESI, SCRATCH
0x0451e0: MOV SCRATCH, ESI
0x045210: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045228: PUSH SCRATCH
0x045240: MOV SCRATCH, 0x41ff38
0x045270: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045288: MOV EAX, SCRATCH
0x0452a0: MOV SCRATCH, 0x000000
0x0452b8: PUSH SCRATCH
0x0452d0: MOV SCRATCH, 0x000002
0x0452e8: PUSH SCRATCH
0x045300: X86JUMPOUT call dword ptr [eax+24h]
0x045318: X86 mov edi, eax
0x045348: X86 test edi, edi
0x045360: JZ VM[0x045528] (fallthrough VM[0x045378])
0x045378: X86 cmp dword ptr [ebp+0Ch], 0h
0x045390: MOV SCRATCH, 0x41ff38
0x0453c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0453d8: MOV EAX, SCRATCH
0x0453f0: X86 push edi
0x045420: JZ VM[0x045468] (fallthrough VM[0x045438])
0x045438: X86JUMPOUT call dword ptr [eax+2Ch]
0x045450: CRASH
0x045468: X86JUMPOUT call dword ptr [eax+28h]
0x045480: MOV SCRATCH, 0x41ff34
0x0454b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0454c8: MOV EAX, SCRATCH
0x0454e0: X86 push edi
0x045510: X86JUMPOUT call dword ptr [eax+3Ch]
0x045528: X86 add esi, 40h
0x045540: X86 dec ebx
0x045558: JNZ VM[0x0451e0] (fallthrough VM[0x045570])
0x045570: MOV SCRATCH, EBP
0x0455a0: ADD SCRATCH, 0xfffffffc
0x0455b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0455d0: PUSH SCRATCH
0x0455e8: X86CALLOUT 0x408e07
0x045600: X86 pop edi
0x045618: X86 pop esi
0x045630: X86 xor eax, eax
0x045648: X86 pop ebx
0x045660: X86 leave 
0x045678: X86 ret 8h
0x045690: MOV SCRATCH, 0x000014
0x0456a8: PUSH SCRATCH
0x0456c0: X86 pop edi
0x0456d8: MOV SCRATCH, 0x000000
0x0456f0: PUSH SCRATCH
0x045708: MOV SCRATCH, 0x000000
0x045720: PUSH SCRATCH
0x045738: MOV SCRATCH, 0x000400
0x045750: PUSH SCRATCH
0x045768: MOV SCRATCH, 0x00ffff
0x045780: PUSH SCRATCH
0x045798: X86JUMPOUT call dword ptr [401088h]
0x0457b0: MOV SCRATCH, 0x41ff38
0x0457e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0457f8: MOV EAX, SCRATCH
0x045810: MOV SCRATCH, 0x000000
0x045828: PUSH SCRATCH
0x045840: X86JUMPOUT call dword ptr [eax+38h]
0x045858: X86 dec edi
0x045870: JNZ VM[0x0456d8] (fallthrough VM[0x045888])
0x045888: X86 pop edi
0x0458a0: X86 ret 
0x0458b8: X86 xor esi, esi
0x0458d0: MOV SCRATCH, 0x000208
0x0458e8: PUSH SCRATCH
0x045900: MOV SCRATCH, EBP
0x045930: ADD SCRATCH, 0xfffffdcc
0x045948: MOV EAX, SCRATCH
0x045960: X86 push esi
0x045990: X86 push eax
0x0459c0: MOV SCRATCH, EBP
0x0459f0: ADD SCRATCH, 0xfffffff8
0x045a08: MOV DWORD PTR [SCRATCH], ESI
0x045a20: X86CALLOUT 0x40ae80
0x045a38: MOV SCRATCH, 0x41ff38
0x045a68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045a80: MOV EDI, SCRATCH
0x045a98: X86 add esp, 0Ch
0x045ab0: MOV SCRATCH, EBP
0x045ae0: ADD SCRATCH, 0xfffffdcc
0x045af8: MOV EAX, SCRATCH
0x045b10: X86 push eax
0x045b40: X86 add edi, 78h
0x045b58: X86CALLOUT 0x40146e
0x045b70: X86 push eax
0x045ba0: X86JUMPOUT call dword ptr [edi]
0x045bb8: X86 mov edi, eax
0x045be8: MOV SCRATCH, 0xa4163ebc
0x045c00: PUSH SCRATCH
0x045c18: X86 push edi
0x045c48: X86CALLOUT 0x407ff5
0x045c60: MOV SCRATCH, 0x9eee4b80
0x045c78: PUSH SCRATCH
0x045c90: X86 push edi
0x045cc0: MOV SCRATCH, EBP
0x045cf0: ADD SCRATCH, 0xffffffd8
0x045d08: MOV DWORD PTR [SCRATCH], EAX
0x045d20: X86CALLOUT 0x407ff5
0x045d38: MOV SCRATCH, 0x90483ff6
0x045d50: PUSH SCRATCH
0x045d68: X86 push edi
0x045d98: MOV SCRATCH, EBP
0x045dc8: ADD SCRATCH, 0xffffffdc
0x045de0: MOV DWORD PTR [SCRATCH], EAX
0x045df8: X86CALLOUT 0x407ff5
0x045e10: MOV SCRATCH, EBP
0x045e40: ADD SCRATCH, 0x000010
0x045e58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x045e70: MOV EBX, SCRATCH
0x045e88: X86 push esi
0x045eb8: MOV SCRATCH, 0x8000000
0x045ed0: PUSH SCRATCH
0x045ee8: MOV SCRATCH, 0x000040
0x045f00: PUSH SCRATCH
0x045f18: MOV SCRATCH, EBP
0x045f48: ADD SCRATCH, 0xffffffd4
0x045f60: MOV DWORD PTR [SCRATCH], EAX
0x045f78: MOV SCRATCH, EBP
0x045fa8: ADD SCRATCH, 0xffffffe0
0x045fc0: MOV EAX, SCRATCH
0x045fd8: X86 push eax
0x046008: X86 push esi
0x046038: X86 mov edi, 0F001Fh
0x046050: X86 push edi
0x046080: MOV SCRATCH, EBP
0x0460b0: ADD SCRATCH, 0xfffffffc
0x0460c8: MOV EAX, SCRATCH
0x0460e0: X86 push eax
0x046110: MOV SCRATCH, EBP
0x046140: ADD SCRATCH, 0xffffffe0
0x046158: MOV DWORD PTR [SCRATCH], EBX
0x046170: MOV SCRATCH, EBP
0x0461a0: ADD SCRATCH, 0xffffffe4
0x0461b8: MOV DWORD PTR [SCRATCH], ESI
0x0461d0: X86JUMPOUT call dword ptr [ebp+0FFFFFFDCh]
0x0461e8: X86 test eax, eax
0x046200: JNZ VM[0x047358] (fallthrough VM[0x046218])
0x046218: MOV SCRATCH, 0x41ff38
0x046248: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046260: MOV EAX, SCRATCH
0x046278: X86 push ebx
0x0462a8: X86 push esi
0x0462d8: X86 push esi
0x046308: X86 push edi
0x046338: MOV SCRATCH, EBP
0x046368: ADD SCRATCH, 0xfffffffc
0x046380: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046398: PUSH SCRATCH
0x0463b0: X86JUMPOUT call dword ptr [eax+70h]
0x0463c8: X86 mov edi, eax
0x0463f8: X86 cmp edi, esi
0x046410: JZ VM[0x047268] (fallthrough VM[0x046428])
0x046428: X86 push ebx
0x046458: MOV SCRATCH, EBP
0x046488: ADD SCRATCH, 0x00000c
0x0464a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0464b8: PUSH SCRATCH
0x0464d0: X86 push edi
0x046500: X86CALLOUT 0x40ae74
0x046518: X86 add esp, 0Ch
0x046530: X86 push edi
0x046560: MOV SCRATCH, 0xffffffff
0x046578: PUSH SCRATCH
0x046590: X86JUMPOUT call dword ptr [ebp+0FFFFFFD4h]
0x0465a8: MOV SCRATCH, 0x000002
0x0465c0: PUSH SCRATCH
0x0465d8: X86 push esi
0x046608: X86 push esi
0x046638: MOV SCRATCH, EBP
0x046668: ADD SCRATCH, 0xfffffff0
0x046680: MOV EAX, SCRATCH
0x046698: X86 push eax
0x0466c8: MOV SCRATCH, EBP
0x0466f8: ADD SCRATCH, 0x000008
0x046710: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046728: PUSH SCRATCH
0x046740: MOV SCRATCH, 0x41ff38
0x046770: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046788: MOV EAX, SCRATCH
0x0467a0: MOV SCRATCH, EBP
0x0467d0: ADD SCRATCH, 0xfffffffc
0x0467e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046800: PUSH SCRATCH
0x046818: MOV SCRATCH, 0xffffffff
0x046830: PUSH SCRATCH
0x046848: X86JUMPOUT call dword ptr [eax+30h]
0x046860: X86 test eax, eax
0x046878: JZ VM[0x047268] (fallthrough VM[0x046890])
0x046890: MOV SCRATCH, EBP
0x0468c0: ADD SCRATCH, 0x000014
0x0468d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0468f0: MOV EAX, SCRATCH
0x046908: MOV SCRATCH, 0x000040
0x046920: PUSH SCRATCH
0x046938: X86 push esi
0x046968: MOV SCRATCH, 0x000001
0x046980: PUSH SCRATCH
0x046998: MOV SCRATCH, EBP
0x0469c8: ADD SCRATCH, 0xfffffff8
0x0469e0: MOV DWORD PTR [SCRATCH], EAX
0x0469f8: MOV SCRATCH, EBP
0x046a28: ADD SCRATCH, 0xfffffff4
0x046a40: MOV EAX, SCRATCH
0x046a58: X86 push eax
0x046a88: MOV SCRATCH, EBP
0x046ab8: ADD SCRATCH, 0xffffffe8
0x046ad0: MOV EAX, SCRATCH
0x046ae8: X86 push eax
0x046b18: X86 push esi
0x046b48: X86 push esi
0x046b78: MOV SCRATCH, EBP
0x046ba8: ADD SCRATCH, 0xfffffff8
0x046bc0: MOV EAX, SCRATCH
0x046bd8: X86 push eax
0x046c08: MOV SCRATCH, EBP
0x046c38: ADD SCRATCH, 0x000008
0x046c50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046c68: PUSH SCRATCH
0x046c80: MOV SCRATCH, EBP
0x046cb0: ADD SCRATCH, 0xffffffe8
0x046cc8: MOV DWORD PTR [SCRATCH], ESI
0x046ce0: MOV SCRATCH, EBP
0x046d10: ADD SCRATCH, 0xfffffffc
0x046d28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046d40: PUSH SCRATCH
0x046d58: MOV SCRATCH, EBP
0x046d88: ADD SCRATCH, 0xffffffec
0x046da0: MOV DWORD PTR [SCRATCH], ESI
0x046db8: MOV SCRATCH, EBP
0x046de8: ADD SCRATCH, 0xfffffff4
0x046e00: MOV DWORD PTR [SCRATCH], EBX
0x046e18: X86JUMPOUT call dword ptr [ebp+0FFFFFFD8h]
0x046e30: X86 test eax, eax
0x046e48: JZ VM[0x046ec0] (fallthrough VM[0x046e60])
0x046e60: MOV SCRATCH, EBP
0x046e90: ADD SCRATCH, 0xfffffff8
0x046ea8: MOV DWORD PTR [SCRATCH], ESI
0x046ec0: MOV SCRATCH, EBP
0x046ef0: ADD SCRATCH, 0xfffffffc
0x046f08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046f20: PUSH SCRATCH
0x046f38: MOV SCRATCH, 0x41ff34
0x046f68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x046f80: MOV EAX, SCRATCH
0x046f98: X86JUMPOUT call dword ptr [eax+3Ch]
0x046fb0: MOV SCRATCH, 0x000003
0x046fc8: PUSH SCRATCH
0x046fe0: X86 push esi
0x047010: X86 push esi
0x047040: MOV SCRATCH, EBP
0x047070: ADD SCRATCH, 0xfffffffc
0x047088: MOV EAX, SCRATCH
0x0470a0: X86 push eax
0x0470d0: MOV SCRATCH, 0x41ff38
0x047100: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047118: MOV EAX, SCRATCH
0x047130: MOV SCRATCH, 0xffffffff
0x047148: PUSH SCRATCH
0x047160: MOV SCRATCH, EBP
0x047190: ADD SCRATCH, 0xfffffff0
0x0471a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0471c0: PUSH SCRATCH
0x0471d8: MOV SCRATCH, EBP
0x047208: ADD SCRATCH, 0x000008
0x047220: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047238: PUSH SCRATCH
0x047250: X86JUMPOUT call dword ptr [eax+30h]
0x047268: MOV SCRATCH, EBP
0x047298: ADD SCRATCH, 0xfffffffc
0x0472b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0472c8: PUSH SCRATCH
0x0472e0: MOV SCRATCH, 0x41ff34
0x047310: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047328: MOV EAX, SCRATCH
0x047340: X86JUMPOUT call dword ptr [eax+3Ch]
0x047358: MOV SCRATCH, EBP
0x047388: ADD SCRATCH, 0xfffffff8
0x0473a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0473b8: MOV EAX, SCRATCH
0x0473d0: X86 pop edi
0x0473e8: X86 pop esi
0x047400: X86 pop ebx
0x047418: X86 leave 
0x047430: X86 ret 10h
0x047448: MOV SCRATCH, EBP
0x047478: ADD SCRATCH, 0x000008
0x047490: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0474a8: PUSH SCRATCH
0x0474c0: MOV SCRATCH, 0x41ff38
0x0474f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047508: MOV EAX, SCRATCH
0x047520: X86 xor esi, esi
0x047538: X86 push esi
0x047568: MOV SCRATCH, 0x000400
0x047580: PUSH SCRATCH
0x047598: X86JUMPOUT call dword ptr [eax]
0x0475b0: X86 cmp eax, esi
0x0475c8: MOV SCRATCH, EBP
0x0475f8: ADD SCRATCH, 0xfffffffc
0x047610: MOV DWORD PTR [SCRATCH], EAX
0x047628: JNZ VM[0x047670] (fallthrough VM[0x047640])
0x047640: X86 xor eax, eax
0x047658: CRASH
0x047670: MOV SCRATCH, 0x000001
0x047688: PUSH SCRATCH
0x0476a0: X86 push esi
0x0476d0: MOV SCRATCH, 0x1f0fff
0x0476e8: PUSH SCRATCH
0x047700: MOV SCRATCH, EBP
0x047730: ADD SCRATCH, 0xfffffffc
0x047748: MOV ECX, SCRATCH
0x047760: X86 push ecx
0x047790: MOV SCRATCH, 0xffffffff
0x0477a8: PUSH SCRATCH
0x0477c0: X86 push eax
0x0477f0: MOV SCRATCH, 0x41ff38
0x047820: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047838: MOV EAX, SCRATCH
0x047850: MOV SCRATCH, 0xffffffff
0x047868: PUSH SCRATCH
0x047880: X86JUMPOUT call dword ptr [eax+30h]
0x047898: X86 test eax, eax
0x0478b0: JZ VM[0x047640] (fallthrough VM[0x0478c8])
0x0478c8: X86 push ebx
0x0478f8: X86 push edi
0x047928: MOV SCRATCH, 0x000208
0x047940: PUSH SCRATCH
0x047958: MOV SCRATCH, EBP
0x047988: ADD SCRATCH, 0xfffffddc
0x0479a0: MOV EAX, SCRATCH
0x0479b8: X86 push esi
0x0479e8: X86 push eax
0x047a18: X86CALLOUT 0x40ae80
0x047a30: MOV SCRATCH, 0x41ff38
0x047a60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047a78: MOV EDI, SCRATCH
0x047a90: X86 add esp, 0Ch
0x047aa8: MOV SCRATCH, EBP
0x047ad8: ADD SCRATCH, 0xfffffddc
0x047af0: MOV EAX, SCRATCH
0x047b08: X86 push eax
0x047b38: X86 add edi, 6Ch
0x047b50: X86CALLOUT 0x4014be
0x047b68: X86 push eax
0x047b98: X86JUMPOUT call dword ptr [edi]
0x047bb0: X86 mov ebx, eax
0x047be0: X86 mov eax, dword ptr fs:[30h]
0x047bf8: MOV SCRATCH, EAX
0x047c28: ADD SCRATCH, 0x00002c
0x047c40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047c58: MOV EDI, SCRATCH
0x047c70: MOV SCRATCH, 0x90483ff6
0x047c88: PUSH SCRATCH
0x047ca0: MOV SCRATCH, 0x420344
0x047cd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047ce8: PUSH SCRATCH
0x047d00: X86 sub edi, ebx
0x047d18: X86 add edi, 8h
0x047d30: X86CALLOUT 0x408360
0x047d48: MOV SCRATCH, 0x1c2211da
0x047d60: PUSH SCRATCH
0x047d78: MOV SCRATCH, 0x420344
0x047da8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047dc0: PUSH SCRATCH
0x047dd8: MOV SCRATCH, EBP
0x047e08: ADD SCRATCH, 0xfffffff8
0x047e20: MOV DWORD PTR [SCRATCH], EAX
0x047e38: X86CALLOUT 0x408360
0x047e50: MOV SCRATCH, 0x4cf489e5
0x047e68: PUSH SCRATCH
0x047e80: MOV SCRATCH, 0x420344
0x047eb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x047ec8: PUSH SCRATCH
0x047ee0: X86 mov esi, eax
0x047f10: X86CALLOUT 0x408360
0x047f28: X86 test esi, esi
0x047f40: MOV SCRATCH, EBP
0x047f70: ADD SCRATCH, 0xffffffec
0x047f88: MOV DWORD PTR [SCRATCH], EAX
0x047fa0: JZ VM[0x048060] (fallthrough VM[0x047fb8])
0x047fb8: MOV SCRATCH, EBP
0x047fe8: ADD SCRATCH, 0xfffffffc
0x048000: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048018: PUSH SCRATCH
0x048030: X86JUMPOUT call esi
0x048048: CRASH
0x048060: MOV SCRATCH, 0x000001
0x048078: PUSH SCRATCH
0x048090: MOV SCRATCH, EBP
0x0480c0: ADD SCRATCH, 0x000008
0x0480d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0480f0: PUSH SCRATCH
0x048108: X86CALLOUT 0x408e3f
0x048120: MOV SCRATCH, EBX
0x048150: ADD SCRATCH, 0x00003c
0x048168: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048180: MOV ESI, SCRATCH
0x048198: MOV SCRATCH, 0x000004
0x0481b0: PUSH SCRATCH
0x0481c8: X86 add esi, ebx
0x0481e0: MOV SCRATCH, ESI
0x048210: ADD SCRATCH, 0x000050
0x048228: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048240: MOV EAX, SCRATCH
0x048258: MOV SCRATCH, 0x001000
0x048270: PUSH SCRATCH
0x048288: X86 push eax
0x0482b8: MOV SCRATCH, 0x000000
0x0482d0: PUSH SCRATCH
0x0482e8: MOV SCRATCH, EBP
0x048318: ADD SCRATCH, 0xffffffe4
0x048330: MOV DWORD PTR [SCRATCH], EAX
0x048348: X86CALLOUT 0x408810
0x048360: MOV SCRATCH, 0x000000
0x048378: PUSH SCRATCH
0x048390: MOV SCRATCH, ESI
0x0483c0: ADD SCRATCH, 0x000050
0x0483d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0483f0: PUSH SCRATCH
0x048408: MOV SCRATCH, EBP
0x048438: ADD SCRATCH, 0xfffffff0
0x048450: MOV DWORD PTR [SCRATCH], EAX
0x048468: X86 push eax
0x048498: MOV SCRATCH, 0x41ff38
0x0484c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0484e0: MOV EAX, SCRATCH
0x0484f8: X86 push ebx
0x048528: MOV SCRATCH, EBP
0x048558: ADD SCRATCH, 0xfffffffc
0x048570: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048588: PUSH SCRATCH
0x0485a0: X86JUMPOUT call dword ptr [eax+0Ch]
0x0485b8: MOV SCRATCH, EBP
0x0485e8: ADD SCRATCH, 0x00000c
0x048600: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048618: PUSH SCRATCH
0x048630: X86CALLOUT 0x408d8f
0x048648: MOV SCRATCH, 0x000000
0x048660: PUSH SCRATCH
0x048678: MOV SCRATCH, EBP
0x0486a8: ADD SCRATCH, 0x000010
0x0486c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0486d8: PUSH SCRATCH
0x0486f0: MOV SCRATCH, EBP
0x048720: ADD SCRATCH, 0x00000c
0x048738: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048750: PUSH SCRATCH
0x048768: MOV SCRATCH, EBP
0x048798: ADD SCRATCH, 0xfffffffc
0x0487b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0487c8: PUSH SCRATCH
0x0487e0: X86CALLOUT 0x408f4b
0x0487f8: X86 test eax, eax
0x048810: MOV SCRATCH, EBP
0x048840: ADD SCRATCH, 0x000010
0x048858: MOV DWORD PTR [SCRATCH], EAX
0x048870: JZ VM[0x049a70] (fallthrough VM[0x048888])
0x048888: MOV SCRATCH, EBP
0x0488b8: ADD SCRATCH, 0xfffffff4
0x0488d0: MOV EAX, SCRATCH
0x0488e8: X86 push eax
0x048918: X86CALLOUT 0x401340
0x048930: MOV SCRATCH, 0x000208
0x048948: PUSH SCRATCH
0x048960: X86 mov esi, eax
0x048990: MOV SCRATCH, EBP
0x0489c0: ADD SCRATCH, 0xfffffddc
0x0489d8: MOV EAX, SCRATCH
0x0489f0: MOV SCRATCH, 0x000000
0x048a08: PUSH SCRATCH
0x048a20: X86 push eax
0x048a50: X86CALLOUT 0x40ae80
0x048a68: MOV SCRATCH, 0x41ff38
0x048a98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048ab0: MOV EAX, SCRATCH
0x048ac8: X86 add eax, 78h
0x048ae0: MOV SCRATCH, EBP
0x048b10: ADD SCRATCH, 0xffffffe8
0x048b28: MOV DWORD PTR [SCRATCH], EAX
0x048b40: X86 add esp, 0Ch
0x048b58: MOV SCRATCH, EBP
0x048b88: ADD SCRATCH, 0xfffffddc
0x048ba0: MOV EAX, SCRATCH
0x048bb8: X86 push eax
0x048be8: X86CALLOUT 0x401617
0x048c00: X86 push eax
0x048c30: MOV SCRATCH, EBP
0x048c60: ADD SCRATCH, 0xffffffe8
0x048c78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048c90: MOV EAX, SCRATCH
0x048ca8: X86JUMPOUT call dword ptr [eax]
0x048cc0: X86 and dword ptr [esi], 0h
0x048cd8: MOV SCRATCH, EBX
0x048d08: ADD SCRATCH, EDI
0x048d20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048d38: MOV EAX, SCRATCH
0x048d50: MOV SCRATCH, 0x000001
0x048d68: PUSH SCRATCH
0x048d80: MOV SCRATCH, EBP
0x048db0: ADD SCRATCH, 0x00000c
0x048dc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048de0: PUSH SCRATCH
0x048df8: MOV SCRATCH, ESI
0x048e28: ADD SCRATCH, 0x000004
0x048e40: MOV DWORD PTR [SCRATCH], EAX
0x048e58: MOV SCRATCH, EBP
0x048e88: ADD SCRATCH, 0x000010
0x048ea0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x048eb8: MOV EAX, SCRATCH
0x048ed0: MOV SCRATCH, ESI
0x048f00: ADD SCRATCH, 0x000008
0x048f18: MOV DWORD PTR [SCRATCH], EDI
0x048f30: MOV SCRATCH, ESI
0x048f60: ADD SCRATCH, 0x00000c
0x048f78: MOV DWORD PTR [SCRATCH], EBX
0x048f90: MOV SCRATCH, ESI
0x048fc0: ADD SCRATCH, 0x000010
0x048fd8: MOV DWORD PTR [SCRATCH], EAX
0x048ff0: X86CALLOUT 0x4081c0
0x049008: MOV SCRATCH, EBP
0x049038: ADD SCRATCH, 0x000010
0x049050: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049068: MOV ECX, SCRATCH
0x049080: X86 sub ecx, dword ptr [ebp+0Ch]
0x049098: X86 add eax, ecx
0x0490b0: MOV SCRATCH, EBP
0x0490e0: ADD SCRATCH, 0x000014
0x0490f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049110: MOV ECX, SCRATCH
0x049128: MOV SCRATCH, ESI
0x049158: ADD SCRATCH, 0x000014
0x049170: MOV DWORD PTR [SCRATCH], EAX
0x049188: X86 xor eax, eax
0x0491a0: X86 push eax
0x0491d0: MOV SCRATCH, ESI
0x049200: ADD SCRATCH, 0x000018
0x049218: MOV DWORD PTR [SCRATCH], EAX
0x049230: MOV SCRATCH, ESI
0x049260: ADD SCRATCH, 0x00001c
0x049278: MOV DWORD PTR [SCRATCH], EAX
0x049290: MOV SCRATCH, ESI
0x0492c0: ADD SCRATCH, 0x000020
0x0492d8: MOV DWORD PTR [SCRATCH], ECX
0x0492f0: MOV SCRATCH, EBP
0x049320: ADD SCRATCH, 0xfffffff4
0x049338: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049350: PUSH SCRATCH
0x049368: X86 push esi
0x049398: MOV SCRATCH, EBP
0x0493c8: ADD SCRATCH, 0xfffffffc
0x0493e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0493f8: PUSH SCRATCH
0x049410: X86CALLOUT 0x408f4b
0x049428: X86 mov esi, eax
0x049458: X86 test esi, esi
0x049470: JNZ VM[0x049680] (fallthrough VM[0x049488])
0x049488: MOV SCRATCH, EBP
0x0494b8: ADD SCRATCH, 0x000010
0x0494d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0494e8: PUSH SCRATCH
0x049500: MOV SCRATCH, EBP
0x049530: ADD SCRATCH, 0xfffffffc
0x049548: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049560: PUSH SCRATCH
0x049578: X86JUMPOUT call dword ptr [ebp+0FFFFFFF8h]
0x049590: MOV SCRATCH, EBP
0x0495c0: ADD SCRATCH, 0xfffffffc
0x0495d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0495f0: PUSH SCRATCH
0x049608: MOV SCRATCH, 0x41ff34
0x049638: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049650: MOV EAX, SCRATCH
0x049668: X86JUMPOUT call dword ptr [eax+3Ch]
0x049680: MOV SCRATCH, EBP
0x0496b0: ADD SCRATCH, 0xfffffff0
0x0496c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0496e0: MOV ECX, SCRATCH
0x0496f8: MOV SCRATCH, ESI
0x049728: ADD SCRATCH, 0x000024
0x049740: MOV EAX, SCRATCH
0x049758: X86 push ebx
0x049788: MOV SCRATCH, EDI
0x0497b8: ADD SCRATCH, ECX
0x0497d0: MOV DWORD PTR [SCRATCH], EAX
0x0497e8: MOV SCRATCH, EBP
0x049818: ADD SCRATCH, 0xfffffffc
0x049830: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049848: PUSH SCRATCH
0x049860: X86JUMPOUT call dword ptr [ebp+0FFFFFFF8h]
0x049878: X86 test eax, eax
0x049890: JZ VM[0x049b90] (fallthrough VM[0x0498a8])
0x0498a8: MOV SCRATCH, EBP
0x0498d8: ADD SCRATCH, 0x000010
0x0498f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049908: PUSH SCRATCH
0x049920: MOV SCRATCH, EBP
0x049950: ADD SCRATCH, 0xfffffffc
0x049968: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049980: PUSH SCRATCH
0x049998: X86JUMPOUT call dword ptr [ebp+0FFFFFFF8h]
0x0499b0: X86 push esi
0x0499e0: MOV SCRATCH, EBP
0x049a10: ADD SCRATCH, 0xfffffffc
0x049a28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049a40: PUSH SCRATCH
0x049a58: X86JUMPOUT call dword ptr [ebp+0FFFFFFF8h]
0x049a70: MOV SCRATCH, EBP
0x049aa0: ADD SCRATCH, 0xfffffffc
0x049ab8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049ad0: PUSH SCRATCH
0x049ae8: MOV SCRATCH, 0x41ff34
0x049b18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049b30: MOV EAX, SCRATCH
0x049b48: X86JUMPOUT call dword ptr [eax+3Ch]
0x049b60: X86 xor eax, eax
0x049b78: CRASH
0x049b90: X86 push ebx
0x049bc0: MOV SCRATCH, EBP
0x049bf0: ADD SCRATCH, 0xffffffe4
0x049c08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049c20: PUSH SCRATCH
0x049c38: MOV SCRATCH, EBP
0x049c68: ADD SCRATCH, 0xfffffff0
0x049c80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049c98: PUSH SCRATCH
0x049cb0: MOV SCRATCH, EBP
0x049ce0: ADD SCRATCH, 0xfffffffc
0x049cf8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049d10: PUSH SCRATCH
0x049d28: X86CALLOUT 0x408f4b
0x049d40: X86 cmp dword ptr [ebp+0FFFFFFECh], 0h
0x049d58: JZ VM[0x049e18] (fallthrough VM[0x049d70])
0x049d70: MOV SCRATCH, EBP
0x049da0: ADD SCRATCH, 0xfffffffc
0x049db8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049dd0: PUSH SCRATCH
0x049de8: X86JUMPOUT call dword ptr [ebp+0FFFFFFECh]
0x049e00: CRASH
0x049e18: MOV SCRATCH, 0x000000
0x049e30: PUSH SCRATCH
0x049e48: MOV SCRATCH, EBP
0x049e78: ADD SCRATCH, 0x000008
0x049e90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x049ea8: PUSH SCRATCH
0x049ec0: X86CALLOUT 0x408e3f
0x049ed8: X86CALLOUT 0x408f0f
0x049ef0: X86 xor eax, eax
0x049f08: X86 inc eax
0x049f20: X86 pop edi
0x049f38: X86 pop ebx
0x049f50: X86 pop esi
0x049f68: X86 leave 
0x049f80: X86 ret 10h
0x049f98: X86JUMPOUT call dword ptr [401058h]
0x049fb0: X86 cmp dword ptr [ebp+8h], eax
0x049fc8: JNZ VM[0x04a028] (fallthrough VM[0x049fe0])
0x049fe0: X86 or dword ptr [ebp+0FFFFFFFCh], 0FFFFFFFFh
0x049ff8: X86 xor ebx, ebx
0x04a010: CRASH
0x04a028: MOV SCRATCH, EBP
0x04a058: ADD SCRATCH, 0x000008
0x04a070: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a088: PUSH SCRATCH
0x04a0a0: MOV SCRATCH, 0x41ff38
0x04a0d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a0e8: MOV EAX, SCRATCH
0x04a100: X86 xor ebx, ebx
0x04a118: X86 push ebx
0x04a148: MOV SCRATCH, 0x000400
0x04a160: PUSH SCRATCH
0x04a178: X86JUMPOUT call dword ptr [eax]
0x04a190: X86 cmp eax, ebx
0x04a1a8: MOV SCRATCH, EBP
0x04a1d8: ADD SCRATCH, 0xfffffffc
0x04a1f0: MOV DWORD PTR [SCRATCH], EAX
0x04a208: JNZ VM[0x04a250] (fallthrough VM[0x04a220])
0x04a220: X86 xor eax, eax
0x04a238: CRASH
0x04a250: MOV SCRATCH, 0x000001
0x04a268: PUSH SCRATCH
0x04a280: X86 push ebx
0x04a2b0: MOV SCRATCH, 0x1f0fff
0x04a2c8: PUSH SCRATCH
0x04a2e0: MOV SCRATCH, EBP
0x04a310: ADD SCRATCH, 0xfffffffc
0x04a328: MOV ECX, SCRATCH
0x04a340: X86 push ecx
0x04a370: MOV SCRATCH, 0xffffffff
0x04a388: PUSH SCRATCH
0x04a3a0: X86 push eax
0x04a3d0: MOV SCRATCH, 0x41ff38
0x04a400: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a418: MOV EAX, SCRATCH
0x04a430: MOV SCRATCH, 0xffffffff
0x04a448: PUSH SCRATCH
0x04a460: X86JUMPOUT call dword ptr [eax+30h]
0x04a478: X86 test eax, eax
0x04a490: JZ VM[0x04a220] (fallthrough VM[0x04a4a8])
0x04a4a8: MOV SCRATCH, EBP
0x04a4d8: ADD SCRATCH, 0xffffffe0
0x04a4f0: MOV EAX, SCRATCH
0x04a508: X86 push eax
0x04a538: MOV SCRATCH, 0x000018
0x04a550: PUSH SCRATCH
0x04a568: MOV SCRATCH, EBP
0x04a598: ADD SCRATCH, 0xffffffc8
0x04a5b0: MOV EAX, SCRATCH
0x04a5c8: X86 push eax
0x04a5f8: MOV SCRATCH, 0x41ff34
0x04a628: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a640: MOV EAX, SCRATCH
0x04a658: X86 push ebx
0x04a688: MOV SCRATCH, EBP
0x04a6b8: ADD SCRATCH, 0xfffffffc
0x04a6d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a6e8: PUSH SCRATCH
0x04a700: X86JUMPOUT call dword ptr [eax+4h]
0x04a718: X86 test eax, eax
0x04a730: JNZ VM[0x04a220] (fallthrough VM[0x04a748])
0x04a748: X86 push esi
0x04a778: X86 push edi
0x04a7a8: X86 mov edi, 208h
0x04a7c0: X86 push edi
0x04a7f0: MOV SCRATCH, EBP
0x04a820: ADD SCRATCH, 0xfffffdc0
0x04a838: MOV EAX, SCRATCH
0x04a850: X86 push ebx
0x04a880: X86 push eax
0x04a8b0: X86CALLOUT 0x40ae80
0x04a8c8: MOV SCRATCH, 0x41ff38
0x04a8f8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04a910: MOV ESI, SCRATCH
0x04a928: X86 add esp, 0Ch
0x04a940: MOV SCRATCH, EBP
0x04a970: ADD SCRATCH, 0xfffffdc0
0x04a988: MOV EAX, SCRATCH
0x04a9a0: X86 push eax
0x04a9d0: X86 add esi, 6Ch
0x04a9e8: X86CALLOUT 0x4014be
0x04aa00: X86 push eax
0x04aa30: X86JUMPOUT call dword ptr [esi]
0x04aa48: X86 mov edx, dword ptr fs:[30h]
0x04aa60: MOV SCRATCH, EAX
0x04aa90: ADD SCRATCH, 0x00003c
0x04aaa8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04aac0: MOV ECX, SCRATCH
0x04aad8: MOV SCRATCH, EBP
0x04ab08: ADD SCRATCH, 0xfffffff8
0x04ab20: MOV DWORD PTR [SCRATCH], EDX
0x04ab38: MOV SCRATCH, EDX
0x04ab68: ADD SCRATCH, 0x00002c
0x04ab80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ab98: MOV EDX, SCRATCH
0x04abb0: MOV SCRATCH, EBP
0x04abe0: ADD SCRATCH, 0xfffffff8
0x04abf8: MOV DWORD PTR [SCRATCH], EDX
0x04ac10: MOV SCRATCH, EDX
0x04ac40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ac58: MOV ESI, SCRATCH
0x04ac70: X86 add ecx, eax
0x04ac88: X86 cmp esi, eax
0x04aca0: MOV SCRATCH, EBP
0x04acd0: ADD SCRATCH, 0x000008
0x04ace8: MOV DWORD PTR [SCRATCH], EBX
0x04ad00: JC VM[0x04ae98] (fallthrough VM[0x04ad18])
0x04ad18: MOV SCRATCH, ECX
0x04ad48: ADD SCRATCH, 0x000050
0x04ad60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ad78: MOV ECX, SCRATCH
0x04ad90: X86 add ecx, eax
0x04ada8: X86 cmp esi, ecx
0x04adc0: JA VM[0x04ae98] (fallthrough VM[0x04add8])
0x04add8: X86 add dword ptr [ebp+8h], 4h
0x04adf0: X86 add edx, 4h
0x04ae08: MOV SCRATCH, EDX
0x04ae38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ae50: MOV ESI, SCRATCH
0x04ae68: X86 cmp esi, eax
0x04ae80: JNC VM[0x04ada8] (fallthrough VM[0x04ae98])
0x04ae98: MOV SCRATCH, EBP
0x04aec8: ADD SCRATCH, 0x000008
0x04aee0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04aef8: PUSH SCRATCH
0x04af10: X86CALLOUT 0x408d2b
0x04af28: X86 push ebx
0x04af58: MOV SCRATCH, EBP
0x04af88: ADD SCRATCH, 0xffffffe4
0x04afa0: MOV DWORD PTR [SCRATCH], EAX
0x04afb8: MOV SCRATCH, 0x000004
0x04afd0: PUSH SCRATCH
0x04afe8: MOV SCRATCH, EBP
0x04b018: ADD SCRATCH, 0xfffffff8
0x04b030: MOV EAX, SCRATCH
0x04b048: X86 push eax
0x04b078: MOV SCRATCH, EBP
0x04b0a8: ADD SCRATCH, 0xffffffcc
0x04b0c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b0d8: MOV EAX, SCRATCH
0x04b0f0: X86 add eax, 2Ch
0x04b108: X86 push eax
0x04b138: MOV SCRATCH, EBP
0x04b168: ADD SCRATCH, 0xfffffffc
0x04b180: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b198: PUSH SCRATCH
0x04b1b0: MOV SCRATCH, 0x41ff38
0x04b1e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b1f8: MOV EAX, SCRATCH
0x04b210: X86JUMPOUT call dword ptr [eax+0Ch]
0x04b228: MOV SCRATCH, 0x41ff38
0x04b258: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b270: MOV EAX, SCRATCH
0x04b288: X86 push ebx
0x04b2b8: MOV SCRATCH, EBP
0x04b2e8: ADD SCRATCH, 0x000008
0x04b300: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b318: PUSH SCRATCH
0x04b330: MOV SCRATCH, EBP
0x04b360: ADD SCRATCH, 0xffffffe4
0x04b378: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b390: PUSH SCRATCH
0x04b3a8: MOV SCRATCH, EBP
0x04b3d8: ADD SCRATCH, 0xfffffff8
0x04b3f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b408: PUSH SCRATCH
0x04b420: MOV SCRATCH, EBP
0x04b450: ADD SCRATCH, 0xfffffffc
0x04b468: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b480: PUSH SCRATCH
0x04b498: X86JUMPOUT call dword ptr [eax+0Ch]
0x04b4b0: MOV SCRATCH, EBP
0x04b4e0: ADD SCRATCH, 0xfffffff4
0x04b4f8: MOV EAX, SCRATCH
0x04b510: X86 push eax
0x04b540: X86CALLOUT 0x401340
0x04b558: MOV SCRATCH, 0x000004
0x04b570: PUSH SCRATCH
0x04b588: X86 mov ebx, 1000h
0x04b5a0: X86 push ebx
0x04b5d0: MOV SCRATCH, EBP
0x04b600: ADD SCRATCH, 0x000010
0x04b618: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b630: PUSH SCRATCH
0x04b648: X86 mov esi, eax
0x04b678: MOV SCRATCH, 0x000000
0x04b690: PUSH SCRATCH
0x04b6a8: MOV SCRATCH, EBP
0x04b6d8: ADD SCRATCH, 0xfffffffc
0x04b6f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b708: PUSH SCRATCH
0x04b720: X86CALLOUT 0x408857
0x04b738: MOV SCRATCH, EBP
0x04b768: ADD SCRATCH, 0x00000c
0x04b780: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b798: PUSH SCRATCH
0x04b7b0: MOV SCRATCH, EBP
0x04b7e0: ADD SCRATCH, 0xfffffff0
0x04b7f8: MOV DWORD PTR [SCRATCH], EAX
0x04b810: X86CALLOUT 0x408d8f
0x04b828: MOV SCRATCH, 0x41ff38
0x04b858: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b870: MOV EAX, SCRATCH
0x04b888: MOV SCRATCH, 0x000000
0x04b8a0: PUSH SCRATCH
0x04b8b8: MOV SCRATCH, EBP
0x04b8e8: ADD SCRATCH, 0x000010
0x04b900: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b918: PUSH SCRATCH
0x04b930: MOV SCRATCH, EBP
0x04b960: ADD SCRATCH, 0x00000c
0x04b978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04b990: PUSH SCRATCH
0x04b9a8: MOV SCRATCH, EBP
0x04b9d8: ADD SCRATCH, 0xfffffff0
0x04b9f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ba08: PUSH SCRATCH
0x04ba20: MOV SCRATCH, EBP
0x04ba50: ADD SCRATCH, 0xfffffffc
0x04ba68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ba80: PUSH SCRATCH
0x04ba98: X86JUMPOUT call dword ptr [eax+8h]
0x04bab0: MOV SCRATCH, EBP
0x04bae0: ADD SCRATCH, 0xffffffe8
0x04baf8: MOV EAX, SCRATCH
0x04bb10: X86 push eax
0x04bb40: MOV SCRATCH, 0x41ff38
0x04bb70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04bb88: MOV EAX, SCRATCH
0x04bba0: MOV SCRATCH, 0x000040
0x04bbb8: PUSH SCRATCH
0x04bbd0: MOV SCRATCH, EBP
0x04bc00: ADD SCRATCH, 0x000010
0x04bc18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04bc30: PUSH SCRATCH
0x04bc48: MOV SCRATCH, EBP
0x04bc78: ADD SCRATCH, 0xfffffff0
0x04bc90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04bca8: PUSH SCRATCH
0x04bcc0: MOV SCRATCH, EBP
0x04bcf0: ADD SCRATCH, 0xfffffffc
0x04bd08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04bd20: PUSH SCRATCH
0x04bd38: X86JUMPOUT call dword ptr [eax+10h]
0x04bd50: X86 push edi
0x04bd80: MOV SCRATCH, EBP
0x04bdb0: ADD SCRATCH, 0xfffffdc0
0x04bdc8: MOV EAX, SCRATCH
0x04bde0: MOV SCRATCH, 0x000000
0x04bdf8: PUSH SCRATCH
0x04be10: X86 push eax
0x04be40: X86CALLOUT 0x40ae80
0x04be58: MOV SCRATCH, 0x41ff38
0x04be88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04bea0: MOV EDI, SCRATCH
0x04beb8: X86 add esp, 0Ch
0x04bed0: MOV SCRATCH, EBP
0x04bf00: ADD SCRATCH, 0xfffffdc0
0x04bf18: MOV EAX, SCRATCH
0x04bf30: X86 push eax
0x04bf60: X86 add edi, 78h
0x04bf78: X86CALLOUT 0x401617
0x04bf90: X86 push eax
0x04bfc0: X86JUMPOUT call dword ptr [edi]
0x04bfd8: X86 xor eax, eax
0x04bff0: MOV SCRATCH, 0x000009
0x04c008: PUSH SCRATCH
0x04c020: X86 pop ecx
0x04c038: X86 mov edi, esi
0x04c068: X86 [rep] stosd dword ptr es:[edi]
0x04c080: X86 and dword ptr [esi], eax
0x04c098: MOV SCRATCH, EBP
0x04c0c8: ADD SCRATCH, 0xffffffe4
0x04c0e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c0f8: MOV EDI, SCRATCH
0x04c110: MOV SCRATCH, EDI
0x04c140: ADD SCRATCH, 0x000008
0x04c158: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c170: MOV EAX, SCRATCH
0x04c188: MOV SCRATCH, ESI
0x04c1b8: ADD SCRATCH, 0x000004
0x04c1d0: MOV DWORD PTR [SCRATCH], EAX
0x04c1e8: MOV SCRATCH, EBP
0x04c218: ADD SCRATCH, 0xfffffff0
0x04c230: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c248: MOV EAX, SCRATCH
0x04c260: MOV SCRATCH, ESI
0x04c290: ADD SCRATCH, 0x000010
0x04c2a8: MOV DWORD PTR [SCRATCH], EAX
0x04c2c0: X86 xor eax, eax
0x04c2d8: X86 inc eax
0x04c2f0: X86 push eax
0x04c320: MOV SCRATCH, EBP
0x04c350: ADD SCRATCH, 0x00000c
0x04c368: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c380: PUSH SCRATCH
0x04c398: MOV SCRATCH, ESI
0x04c3c8: ADD SCRATCH, 0x000018
0x04c3e0: MOV DWORD PTR [SCRATCH], EAX
0x04c3f8: X86CALLOUT 0x4081c0
0x04c410: MOV SCRATCH, EBP
0x04c440: ADD SCRATCH, 0xfffffff0
0x04c458: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c470: MOV ECX, SCRATCH
0x04c488: X86 sub ecx, dword ptr [ebp+0Ch]
0x04c4a0: X86 add eax, ecx
0x04c4b8: MOV SCRATCH, ESI
0x04c4e8: ADD SCRATCH, 0x000014
0x04c500: MOV DWORD PTR [SCRATCH], EAX
0x04c518: MOV SCRATCH, EBP
0x04c548: ADD SCRATCH, 0xfffffff8
0x04c560: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c578: MOV EAX, SCRATCH
0x04c590: MOV SCRATCH, 0x000004
0x04c5a8: PUSH SCRATCH
0x04c5c0: MOV SCRATCH, ESI
0x04c5f0: ADD SCRATCH, 0x00001c
0x04c608: MOV DWORD PTR [SCRATCH], EAX
0x04c620: MOV SCRATCH, EBP
0x04c650: ADD SCRATCH, 0x000014
0x04c668: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c680: MOV EAX, SCRATCH
0x04c698: X86 push ebx
0x04c6c8: MOV SCRATCH, ESI
0x04c6f8: ADD SCRATCH, 0x000020
0x04c710: MOV DWORD PTR [SCRATCH], EAX
0x04c728: MOV SCRATCH, EBP
0x04c758: ADD SCRATCH, 0xfffffff4
0x04c770: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c788: PUSH SCRATCH
0x04c7a0: MOV SCRATCH, 0x000000
0x04c7b8: PUSH SCRATCH
0x04c7d0: MOV SCRATCH, EBP
0x04c800: ADD SCRATCH, 0xfffffffc
0x04c818: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c830: PUSH SCRATCH
0x04c848: X86CALLOUT 0x408857
0x04c860: MOV SCRATCH, 0x000000
0x04c878: PUSH SCRATCH
0x04c890: MOV SCRATCH, EBP
0x04c8c0: ADD SCRATCH, 0xfffffff4
0x04c8d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04c8f0: PUSH SCRATCH
0x04c908: MOV SCRATCH, EBP
0x04c938: ADD SCRATCH, 0x00000c
0x04c950: MOV DWORD PTR [SCRATCH], EAX
0x04c968: X86 push esi
0x04c998: X86 push eax
0x04c9c8: MOV SCRATCH, EBP
0x04c9f8: ADD SCRATCH, 0xfffffffc
0x04ca10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ca28: PUSH SCRATCH
0x04ca40: MOV SCRATCH, 0x41ff38
0x04ca70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ca88: MOV EAX, SCRATCH
0x04caa0: X86JUMPOUT call dword ptr [eax+8h]
0x04cab8: MOV SCRATCH, EBP
0x04cae8: ADD SCRATCH, 0x00000c
0x04cb00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04cb18: MOV ESI, SCRATCH
0x04cb30: MOV SCRATCH, EBP
0x04cb60: ADD SCRATCH, 0xffffffe8
0x04cb78: MOV EAX, SCRATCH
0x04cb90: X86 push eax
0x04cbc0: MOV SCRATCH, 0x41ff38
0x04cbf0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04cc08: MOV EAX, SCRATCH
0x04cc20: MOV SCRATCH, 0x000040
0x04cc38: PUSH SCRATCH
0x04cc50: MOV SCRATCH, EBP
0x04cc80: ADD SCRATCH, 0xfffffff4
0x04cc98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ccb0: PUSH SCRATCH
0x04ccc8: X86 push esi
0x04ccf8: MOV SCRATCH, EBP
0x04cd28: ADD SCRATCH, 0xfffffffc
0x04cd40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04cd58: PUSH SCRATCH
0x04cd70: X86JUMPOUT call dword ptr [eax+10h]
0x04cd88: MOV SCRATCH, 0x000004
0x04cda0: PUSH SCRATCH
0x04cdb8: X86 push ebx
0x04cde8: MOV SCRATCH, EBP
0x04ce18: ADD SCRATCH, 0x000008
0x04ce30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ce48: PUSH SCRATCH
0x04ce60: X86 xor ebx, ebx
0x04ce78: X86 push ebx
0x04cea8: MOV SCRATCH, EBP
0x04ced8: ADD SCRATCH, 0xfffffffc
0x04cef0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04cf08: PUSH SCRATCH
0x04cf20: X86CALLOUT 0x408857
0x04cf38: X86 push ebx
0x04cf68: MOV SCRATCH, EBP
0x04cf98: ADD SCRATCH, 0x000008
0x04cfb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04cfc8: PUSH SCRATCH
0x04cfe0: MOV SCRATCH, EBP
0x04d010: ADD SCRATCH, 0xffffffec
0x04d028: MOV DWORD PTR [SCRATCH], EAX
0x04d040: X86 push edi
0x04d070: X86 add esi, 24h
0x04d088: MOV SCRATCH, EDI
0x04d0b8: ADD SCRATCH, 0x000008
0x04d0d0: MOV DWORD PTR [SCRATCH], ESI
0x04d0e8: MOV SCRATCH, EBP
0x04d118: ADD SCRATCH, 0xffffffec
0x04d130: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d148: PUSH SCRATCH
0x04d160: MOV SCRATCH, 0x41ff38
0x04d190: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d1a8: MOV EAX, SCRATCH
0x04d1c0: MOV SCRATCH, EBP
0x04d1f0: ADD SCRATCH, 0xfffffffc
0x04d208: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d220: PUSH SCRATCH
0x04d238: X86JUMPOUT call dword ptr [eax+8h]
0x04d250: X86 push ebx
0x04d280: MOV SCRATCH, 0x000004
0x04d298: PUSH SCRATCH
0x04d2b0: MOV SCRATCH, EBP
0x04d2e0: ADD SCRATCH, 0xffffffec
0x04d2f8: MOV EAX, SCRATCH
0x04d310: X86 push eax
0x04d340: MOV SCRATCH, EBP
0x04d370: ADD SCRATCH, 0xffffffcc
0x04d388: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d3a0: MOV EAX, SCRATCH
0x04d3b8: X86 add eax, 2Ch
0x04d3d0: X86 push eax
0x04d400: MOV SCRATCH, EBP
0x04d430: ADD SCRATCH, 0xfffffffc
0x04d448: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d460: PUSH SCRATCH
0x04d478: MOV SCRATCH, 0x41ff38
0x04d4a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d4c0: MOV EAX, SCRATCH
0x04d4d8: X86JUMPOUT call dword ptr [eax+8h]
0x04d4f0: X86 push edi
0x04d520: X86CALLOUT 0x408d5d
0x04d538: X86CALLOUT 0x408f0f
0x04d550: MOV SCRATCH, EBP
0x04d580: ADD SCRATCH, 0xfffffff0
0x04d598: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d5b0: MOV EAX, SCRATCH
0x04d5c8: X86 pop edi
0x04d5e0: X86 pop esi
0x04d5f8: X86 pop ebx
0x04d610: X86 leave 
0x04d628: X86 ret 10h
0x04d640: X86JUMPOUT call dword ptr [401058h]
0x04d658: X86 xor esi, esi
0x04d670: X86 cmp dword ptr [ebp+8h], eax
0x04d688: JNZ VM[0x04d6d0] (fallthrough VM[0x04d6a0])
0x04d6a0: X86 or dword ptr [ebp+0FFFFFFFCh], 0FFFFFFFFh
0x04d6b8: CRASH
0x04d6d0: MOV SCRATCH, EBP
0x04d700: ADD SCRATCH, 0x000008
0x04d718: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d730: PUSH SCRATCH
0x04d748: MOV SCRATCH, 0x41ff38
0x04d778: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04d790: MOV EAX, SCRATCH
0x04d7a8: X86 push esi
0x04d7d8: MOV SCRATCH, 0x000400
0x04d7f0: PUSH SCRATCH
0x04d808: X86JUMPOUT call dword ptr [eax]
0x04d820: X86 cmp eax, esi
0x04d838: MOV SCRATCH, EBP
0x04d868: ADD SCRATCH, 0xfffffffc
0x04d880: MOV DWORD PTR [SCRATCH], EAX
0x04d898: JNZ VM[0x04d8e0] (fallthrough VM[0x04d8b0])
0x04d8b0: X86 xor eax, eax
0x04d8c8: CRASH
0x04d8e0: MOV SCRATCH, 0x000001
0x04d8f8: PUSH SCRATCH
0x04d910: X86 push esi
0x04d940: MOV SCRATCH, 0x1f0fff
0x04d958: PUSH SCRATCH
0x04d970: MOV SCRATCH, EBP
0x04d9a0: ADD SCRATCH, 0xfffffffc
0x04d9b8: MOV ECX, SCRATCH
0x04d9d0: X86 push ecx
0x04da00: MOV SCRATCH, 0xffffffff
0x04da18: PUSH SCRATCH
0x04da30: X86 push eax
0x04da60: MOV SCRATCH, 0x41ff38
0x04da90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04daa8: MOV EAX, SCRATCH
0x04dac0: MOV SCRATCH, 0xffffffff
0x04dad8: PUSH SCRATCH
0x04daf0: X86JUMPOUT call dword ptr [eax+30h]
0x04db08: X86 test eax, eax
0x04db20: JZ VM[0x04d8b0] (fallthrough VM[0x04db38])
0x04db38: X86 cmp dword ptr [ebp+0FFFFFFFCh], esi
0x04db50: JZ VM[0x04d8b0] (fallthrough VM[0x04db68])
0x04db68: X86 push edi
0x04db98: MOV SCRATCH, 0x000040
0x04dbb0: PUSH SCRATCH
0x04dbc8: MOV SCRATCH, 0x001000
0x04dbe0: PUSH SCRATCH
0x04dbf8: MOV SCRATCH, EBP
0x04dc28: ADD SCRATCH, 0x000010
0x04dc40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04dc58: PUSH SCRATCH
0x04dc70: X86 push esi
0x04dca0: MOV SCRATCH, EBP
0x04dcd0: ADD SCRATCH, 0xfffffffc
0x04dce8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04dd00: PUSH SCRATCH
0x04dd18: X86CALLOUT 0x408857
0x04dd30: X86 mov edi, eax
0x04dd60: X86 cmp edi, esi
0x04dd78: JNZ VM[0x04deb0] (fallthrough VM[0x04dd90])
0x04dd90: MOV SCRATCH, EBP
0x04ddc0: ADD SCRATCH, 0xfffffffc
0x04ddd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ddf0: PUSH SCRATCH
0x04de08: MOV SCRATCH, 0x41ff34
0x04de38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04de50: MOV EAX, SCRATCH
0x04de68: X86JUMPOUT call dword ptr [eax+3Ch]
0x04de80: X86 xor eax, eax
0x04de98: CRASH
0x04deb0: X86 push ebx
0x04dee0: MOV SCRATCH, EBP
0x04df10: ADD SCRATCH, 0x00000c
0x04df28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04df40: MOV EBX, SCRATCH
0x04df58: X86 push ebx
0x04df88: X86CALLOUT 0x408d8f
0x04dfa0: MOV SCRATCH, 0x41ff38
0x04dfd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04dfe8: MOV EAX, SCRATCH
0x04e000: X86 push esi
0x04e030: MOV SCRATCH, EBP
0x04e060: ADD SCRATCH, 0x000010
0x04e078: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e090: PUSH SCRATCH
0x04e0a8: X86 push ebx
0x04e0d8: X86 push edi
0x04e108: MOV SCRATCH, EBP
0x04e138: ADD SCRATCH, 0xfffffffc
0x04e150: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e168: PUSH SCRATCH
0x04e180: X86JUMPOUT call dword ptr [eax+8h]
0x04e198: X86 test eax, eax
0x04e1b0: JZ VM[0x04e558] (fallthrough VM[0x04e1c8])
0x04e1c8: MOV SCRATCH, 0x000001
0x04e1e0: PUSH SCRATCH
0x04e1f8: X86 push ebx
0x04e228: X86CALLOUT 0x4081c0
0x04e240: X86 mov ecx, edi
0x04e270: X86 sub ecx, ebx
0x04e288: X86 add eax, ecx
0x04e2a0: MOV SCRATCH, EBP
0x04e2d0: ADD SCRATCH, 0xfffffff4
0x04e2e8: MOV ECX, SCRATCH
0x04e300: X86 push ecx
0x04e330: X86 push esi
0x04e360: MOV SCRATCH, EBP
0x04e390: ADD SCRATCH, 0x000014
0x04e3a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e3c0: PUSH SCRATCH
0x04e3d8: X86 push eax
0x04e408: X86 push esi
0x04e438: X86 push esi
0x04e468: MOV SCRATCH, EBP
0x04e498: ADD SCRATCH, 0xfffffffc
0x04e4b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e4c8: PUSH SCRATCH
0x04e4e0: X86CALLOUT 0x408b8c
0x04e4f8: X86 mov ebx, eax
0x04e528: X86 cmp ebx, esi
0x04e540: JNZ VM[0x04e720] (fallthrough VM[0x04e558])
0x04e558: X86 push edi
0x04e588: MOV SCRATCH, EBP
0x04e5b8: ADD SCRATCH, 0xfffffffc
0x04e5d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e5e8: PUSH SCRATCH
0x04e600: X86CALLOUT 0x408dce
0x04e618: MOV SCRATCH, EBP
0x04e648: ADD SCRATCH, 0xfffffffc
0x04e660: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e678: PUSH SCRATCH
0x04e690: MOV SCRATCH, 0x41ff34
0x04e6c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e6d8: MOV EAX, SCRATCH
0x04e6f0: X86JUMPOUT call dword ptr [eax+3Ch]
0x04e708: CRASH
0x04e720: MOV SCRATCH, 0x41ff38
0x04e750: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e768: MOV EAX, SCRATCH
0x04e780: MOV SCRATCH, 0xffffffff
0x04e798: PUSH SCRATCH
0x04e7b0: X86 push ebx
0x04e7e0: X86JUMPOUT call dword ptr [eax+68h]
0x04e7f8: MOV SCRATCH, EBP
0x04e828: ADD SCRATCH, 0xfffffff8
0x04e840: MOV EAX, SCRATCH
0x04e858: X86 push eax
0x04e888: MOV SCRATCH, 0x41ff38
0x04e8b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e8d0: MOV EAX, SCRATCH
0x04e8e8: X86 push ebx
0x04e918: X86JUMPOUT call dword ptr [eax+60h]
0x04e930: X86 test eax, eax
0x04e948: MOV SCRATCH, 0x41ff34
0x04e978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04e990: MOV EAX, SCRATCH
0x04e9a8: X86 push ebx
0x04e9d8: JNZ VM[0x04eaf8] (fallthrough VM[0x04e9f0])
0x04e9f0: X86JUMPOUT call dword ptr [eax+3Ch]
0x04ea08: X86 push edi
0x04ea38: MOV SCRATCH, EBP
0x04ea68: ADD SCRATCH, 0xfffffffc
0x04ea80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ea98: PUSH SCRATCH
0x04eab0: X86CALLOUT 0x408dce
0x04eac8: X86 xor eax, eax
0x04eae0: CRASH
0x04eaf8: X86JUMPOUT call dword ptr [eax+3Ch]
0x04eb10: X86 push edi
0x04eb40: MOV SCRATCH, EBP
0x04eb70: ADD SCRATCH, 0xfffffffc
0x04eb88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04eba0: PUSH SCRATCH
0x04ebb8: X86CALLOUT 0x408dce
0x04ebd0: MOV SCRATCH, EBP
0x04ec00: ADD SCRATCH, 0xfffffffc
0x04ec18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ec30: PUSH SCRATCH
0x04ec48: MOV SCRATCH, 0x41ff34
0x04ec78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ec90: MOV EAX, SCRATCH
0x04eca8: X86JUMPOUT call dword ptr [eax+3Ch]
0x04ecc0: MOV SCRATCH, EBP
0x04ecf0: ADD SCRATCH, 0xfffffff8
0x04ed08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ed20: MOV EAX, SCRATCH
0x04ed38: X86 pop ebx
0x04ed50: X86 pop edi
0x04ed68: X86 pop esi
0x04ed80: X86 leave 
0x04ed98: X86 ret 10h
0x04edb0: X86 mov esi, 208h
0x04edc8: X86 push esi
0x04edf8: MOV SCRATCH, EBP
0x04ee28: ADD SCRATCH, 0xfffffdf4
0x04ee40: MOV EAX, SCRATCH
0x04ee58: MOV SCRATCH, 0x000000
0x04ee70: PUSH SCRATCH
0x04ee88: X86 push eax
0x04eeb8: X86CALLOUT 0x40ae80
0x04eed0: MOV SCRATCH, 0x41ff38
0x04ef00: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ef18: MOV EDI, SCRATCH
0x04ef30: X86 add esp, 0Ch
0x04ef48: MOV SCRATCH, EBP
0x04ef78: ADD SCRATCH, 0xfffffdf4
0x04ef90: MOV EAX, SCRATCH
0x04efa8: X86 push eax
0x04efd8: X86 add edi, 78h
0x04eff0: X86CALLOUT 0x401617
0x04f008: X86 push eax
0x04f038: X86JUMPOUT call dword ptr [edi]
0x04f050: X86 push esi
0x04f080: X86 mov ebx, eax
0x04f0b0: MOV SCRATCH, EBP
0x04f0e0: ADD SCRATCH, 0xfffffdf4
0x04f0f8: MOV EAX, SCRATCH
0x04f110: MOV SCRATCH, 0x000000
0x04f128: PUSH SCRATCH
0x04f140: X86 push eax
0x04f170: X86CALLOUT 0x40ae80
0x04f188: X86 add esp, 0Ch
0x04f1a0: MOV SCRATCH, EBP
0x04f1d0: ADD SCRATCH, 0x000010
0x04f1e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04f200: PUSH SCRATCH
0x04f218: X86CALLOUT 0x408d8f
0x04f230: MOV SCRATCH, EBP
0x04f260: ADD SCRATCH, 0xfffffffc
0x04f278: MOV EAX, SCRATCH
0x04f290: X86 push eax
0x04f2c0: X86CALLOUT 0x404670
0x04f2d8: MOV SCRATCH, EBP
0x04f308: ADD SCRATCH, 0xfffffffc
0x04f320: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04f338: PUSH SCRATCH
0x04f350: X86 mov esi, eax
0x04f380: MOV SCRATCH, 0x41ff38
0x04f3b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04f3c8: MOV EAX, SCRATCH
0x04f3e0: MOV SCRATCH, 0x000040
0x04f3f8: PUSH SCRATCH
0x04f410: X86JUMPOUT call dword ptr [eax+8Ch]
0x04f428: MOV SCRATCH, EBP
0x04f458: ADD SCRATCH, 0xfffffffc
0x04f470: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04f488: PUSH SCRATCH
0x04f4a0: X86 mov edi, eax
0x04f4d0: X86 push esi
0x04f500: X86 push edi
0x04f530: X86CALLOUT 0x40ae74
0x04f548: MOV SCRATCH, EBP
0x04f578: ADD SCRATCH, 0xfffffffc
0x04f590: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04f5a8: MOV EAX, SCRATCH
0x04f5c0: X86 add esp, 0Ch
0x04f5d8: MOV SCRATCH, 0xdf27514b
0x04f5f0: PUSH SCRATCH
0x04f608: X86 push ebx
0x04f638: MOV SCRATCH, EAX
0x04f668: ADD SCRATCH, EDI
0x04f680: MOV ESI, SCRATCH
0x04f698: X86CALLOUT 0x407ff5
0x04f6b0: MOV SCRATCH, 0x9ce0d4a
0x04f6c8: PUSH SCRATCH
0x04f6e0: X86 push ebx
0x04f710: MOV SCRATCH, ESI
0x04f740: ADD SCRATCH, 0xffffffd8
0x04f758: MOV DWORD PTR [SCRATCH], EAX
0x04f770: X86CALLOUT 0x407ff5
0x04f788: MOV SCRATCH, 0xf7c7ae42
0x04f7a0: PUSH SCRATCH
0x04f7b8: X86 push ebx
0x04f7e8: MOV SCRATCH, ESI
0x04f818: ADD SCRATCH, 0xffffffdc
0x04f830: MOV DWORD PTR [SCRATCH], EAX
0x04f848: X86CALLOUT 0x407ff5
0x04f860: MOV SCRATCH, 0xb09315f4
0x04f878: PUSH SCRATCH
0x04f890: X86 push ebx
0x04f8c0: MOV SCRATCH, ESI
0x04f8f0: ADD SCRATCH, 0xffffffe0
0x04f908: MOV DWORD PTR [SCRATCH], EAX
0x04f920: X86CALLOUT 0x407ff5
0x04f938: MOV SCRATCH, 0x251097cc
0x04f950: PUSH SCRATCH
0x04f968: X86 push ebx
0x04f998: MOV SCRATCH, ESI
0x04f9c8: ADD SCRATCH, 0xffffffe4
0x04f9e0: MOV DWORD PTR [SCRATCH], EAX
0x04f9f8: X86CALLOUT 0x407ff5
0x04fa10: MOV SCRATCH, ESI
0x04fa40: ADD SCRATCH, 0xffffffe8
0x04fa58: MOV DWORD PTR [SCRATCH], EAX
0x04fa70: X86JUMPOUT call dword ptr [401058h]
0x04fa88: MOV SCRATCH, EBP
0x04fab8: ADD SCRATCH, 0x000010
0x04fad0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04fae8: MOV EBX, SCRATCH
0x04fb00: MOV SCRATCH, 0x000001
0x04fb18: PUSH SCRATCH
0x04fb30: X86 push ebx
0x04fb60: MOV SCRATCH, ESI
0x04fb90: ADD SCRATCH, 0xffffffec
0x04fba8: MOV DWORD PTR [SCRATCH], EAX
0x04fbc0: X86CALLOUT 0x4081c0
0x04fbd8: X86 sub eax, ebx
0x04fbf0: MOV SCRATCH, ESI
0x04fc20: ADD SCRATCH, 0xfffffff0
0x04fc38: MOV DWORD PTR [SCRATCH], EAX
0x04fc50: MOV SCRATCH, EBP
0x04fc80: ADD SCRATCH, 0x000014
0x04fc98: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04fcb0: MOV EAX, SCRATCH
0x04fcc8: MOV SCRATCH, ESI
0x04fcf8: ADD SCRATCH, 0xfffffff8
0x04fd10: MOV DWORD PTR [SCRATCH], EAX
0x04fd28: MOV SCRATCH, EBP
0x04fd58: ADD SCRATCH, 0x000018
0x04fd70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04fd88: MOV EAX, SCRATCH
0x04fda0: MOV SCRATCH, 0x000000
0x04fdb8: PUSH SCRATCH
0x04fdd0: MOV SCRATCH, ESI
0x04fe00: ADD SCRATCH, 0xfffffffc
0x04fe18: MOV DWORD PTR [SCRATCH], EAX
0x04fe30: MOV SCRATCH, EBP
0x04fe60: ADD SCRATCH, 0x00001c
0x04fe78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04fe90: MOV EAX, SCRATCH
0x04fea8: MOV SCRATCH, ESI
0x04fed8: ADD SCRATCH, 0xfffffff4
0x04fef0: MOV DWORD PTR [SCRATCH], EBX
0x04ff08: MOV SCRATCH, EBP
0x04ff38: ADD SCRATCH, 0xfffffffc
0x04ff50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x04ff68: PUSH SCRATCH
0x04ff80: X86 push edi
0x04ffb0: X86 inc eax
0x04ffc8: X86 push eax
0x04fff8: MOV SCRATCH, EBP
0x050028: ADD SCRATCH, 0x000008
0x050040: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050058: PUSH SCRATCH
0x050070: MOV SCRATCH, 0x41ff38
0x0500a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0500b8: MOV EAX, SCRATCH
0x0500d0: X86JUMPOUT call dword ptr [eax+8h]
0x0500e8: MOV SCRATCH, EBP
0x050118: ADD SCRATCH, 0xfffffffc
0x050130: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050148: PUSH SCRATCH
0x050160: MOV SCRATCH, 0x000000
0x050178: PUSH SCRATCH
0x050190: X86 push edi
0x0501c0: X86CALLOUT 0x40ae80
0x0501d8: MOV SCRATCH, 0x41ff38
0x050208: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050220: MOV EAX, SCRATCH
0x050238: X86 add esp, 0Ch
0x050250: X86 push edi
0x050280: X86JUMPOUT call dword ptr [eax+90h]
0x050298: X86 pop edi
0x0502b0: X86 xor eax, eax
0x0502c8: X86 pop esi
0x0502e0: X86 inc eax
0x0502f8: X86 pop ebx
0x050310: X86 leave 
0x050328: X86 ret 18h
0x050340: MOV SCRATCH, 0x000208
0x050358: PUSH SCRATCH
0x050370: X86 xor ebx, ebx
0x050388: MOV SCRATCH, EBP
0x0503b8: ADD SCRATCH, 0xfffffaf0
0x0503d0: MOV EAX, SCRATCH
0x0503e8: X86 push ebx
0x050418: X86 push eax
0x050448: X86CALLOUT 0x40ae80
0x050460: MOV SCRATCH, 0x41ff38
0x050490: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0504a8: MOV ESI, SCRATCH
0x0504c0: X86 add esp, 0Ch
0x0504d8: MOV SCRATCH, EBP
0x050508: ADD SCRATCH, 0xfffffaf0
0x050520: MOV EAX, SCRATCH
0x050538: X86 push eax
0x050568: X86 add esi, 78h
0x050580: X86CALLOUT 0x401617
0x050598: X86 push eax
0x0505c8: X86JUMPOUT call dword ptr [esi]
0x0505e0: MOV SCRATCH, EBP
0x050610: ADD SCRATCH, 0x000010
0x050628: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050640: MOV ESI, SCRATCH
0x050658: X86 push esi
0x050688: MOV SCRATCH, EBP
0x0506b8: ADD SCRATCH, 0xffffffdc
0x0506d0: MOV DWORD PTR [SCRATCH], EAX
0x0506e8: X86CALLOUT 0x408d8f
0x050700: X86 push ebx
0x050730: MOV SCRATCH, EBP
0x050760: ADD SCRATCH, 0x000014
0x050778: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050790: PUSH SCRATCH
0x0507a8: X86 push esi
0x0507d8: MOV SCRATCH, EBP
0x050808: ADD SCRATCH, 0x000008
0x050820: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050838: PUSH SCRATCH
0x050850: X86CALLOUT 0x408f4b
0x050868: X86 mov edi, eax
0x050898: MOV SCRATCH, EBP
0x0508c8: ADD SCRATCH, 0x000018
0x0508e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0508f8: MOV EAX, SCRATCH
0x050910: MOV SCRATCH, 0x000001
0x050928: PUSH SCRATCH
0x050940: X86 push esi
0x050970: X86 mov byte ptr [ebp+0FFFFFFE0h], 68h
0x050988: MOV SCRATCH, EBP
0x0509b8: ADD SCRATCH, 0xffffffe1
0x0509d0: MOV DWORD PTR [SCRATCH], EAX
0x0509e8: X86 mov byte ptr [ebp+0FFFFFFE5h], 0B8h
0x050a00: X86CALLOUT 0x4081c0
0x050a18: MOV SCRATCH, 0x251097cc
0x050a30: PUSH SCRATCH
0x050a48: MOV SCRATCH, EBP
0x050a78: ADD SCRATCH, 0xffffffdc
0x050a90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050aa8: PUSH SCRATCH
0x050ac0: X86 sub edi, esi
0x050ad8: X86 add eax, edi
0x050af0: MOV SCRATCH, EBP
0x050b20: ADD SCRATCH, 0xffffffe6
0x050b38: MOV DWORD PTR [SCRATCH], EAX
0x050b50: X86 mov byte ptr [ebp+0FFFFFFEAh], 0FFh
0x050b68: X86 mov byte ptr [ebp+0FFFFFFEBh], 0D0h
0x050b80: X86 mov byte ptr [ebp+0FFFFFFECh], 6Ah
0x050b98: X86 mov byte ptr [ebp+0FFFFFFEDh], bl
0x050bb0: X86 mov byte ptr [ebp+0FFFFFFEEh], 0B8h
0x050bc8: X86CALLOUT 0x407ff5
0x050be0: X86 push ebx
0x050c10: MOV SCRATCH, EBP
0x050c40: ADD SCRATCH, 0xffffffef
0x050c58: MOV DWORD PTR [SCRATCH], EAX
0x050c70: MOV SCRATCH, 0x000015
0x050c88: PUSH SCRATCH
0x050ca0: MOV SCRATCH, EBP
0x050cd0: ADD SCRATCH, 0xffffffe0
0x050ce8: MOV EAX, SCRATCH
0x050d00: X86 push eax
0x050d30: MOV SCRATCH, EBP
0x050d60: ADD SCRATCH, 0x000008
0x050d78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050d90: PUSH SCRATCH
0x050da8: X86 mov byte ptr [ebp+0FFFFFFF3h], 50h
0x050dc0: X86 mov byte ptr [ebp+0FFFFFFF4h], 0C3h
0x050dd8: X86CALLOUT 0x408f4b
0x050df0: MOV SCRATCH, EBP
0x050e20: ADD SCRATCH, 0x00000c
0x050e38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x050e50: MOV EDI, SCRATCH
0x050e68: X86 mov esi, eax
0x050e98: MOV SCRATCH, EBP
0x050ec8: ADD SCRATCH, 0xfffffcf8
0x050ee0: MOV EAX, SCRATCH
0x050ef8: X86 push eax
0x050f28: X86 push edi
0x050f58: MOV SCRATCH, EBP
0x050f88: ADD SCRATCH, 0x000014
0x050fa0: MOV DWORD PTR [SCRATCH], ESI
0x050fb8: X86 mov dword ptr [ebp+0FFFFFCF8h], 10007h
0x050fd0: X86CALLOUT 0x408904
0x050fe8: X86 test eax, eax
0x051000: JZ VM[0x051180] (fallthrough VM[0x051018])
0x051018: MOV SCRATCH, EBP
0x051048: ADD SCRATCH, 0xfffffcf8
0x051060: MOV EAX, SCRATCH
0x051078: X86 push eax
0x0510a8: X86 push edi
0x0510d8: MOV SCRATCH, EBP
0x051108: ADD SCRATCH, 0xfffffdb0
0x051120: MOV DWORD PTR [SCRATCH], ESI
0x051138: X86CALLOUT 0x4088d5
0x051150: X86 test eax, eax
0x051168: JNZ VM[0x052860] (fallthrough VM[0x051180])
0x051180: MOV SCRATCH, EBP
0x0511b0: ADD SCRATCH, 0xfffffff8
0x0511c8: MOV EAX, SCRATCH
0x0511e0: X86 push eax
0x051210: MOV SCRATCH, 0x000018
0x051228: PUSH SCRATCH
0x051240: MOV SCRATCH, EBP
0x051270: ADD SCRATCH, 0xffffffc4
0x051288: MOV EAX, SCRATCH
0x0512a0: X86 push eax
0x0512d0: MOV SCRATCH, 0x41ff34
0x051300: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051318: MOV EAX, SCRATCH
0x051330: X86 push ebx
0x051360: MOV SCRATCH, EBP
0x051390: ADD SCRATCH, 0x000008
0x0513a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0513c0: PUSH SCRATCH
0x0513d8: X86JUMPOUT call dword ptr [eax+4h]
0x0513f0: X86 test eax, eax
0x051408: JZ VM[0x051450] (fallthrough VM[0x051420])
0x051420: X86 xor eax, eax
0x051438: CRASH
0x051450: X86 push ebx
0x051480: MOV SCRATCH, 0x000004
0x051498: PUSH SCRATCH
0x0514b0: MOV SCRATCH, EBP
0x0514e0: ADD SCRATCH, 0xfffffffc
0x0514f8: MOV EAX, SCRATCH
0x051510: X86 push eax
0x051540: MOV SCRATCH, EBP
0x051570: ADD SCRATCH, 0xffffffc8
0x051588: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0515a0: MOV EAX, SCRATCH
0x0515b8: X86 add eax, 8h
0x0515d0: X86 push eax
0x051600: MOV SCRATCH, EBP
0x051630: ADD SCRATCH, 0x000008
0x051648: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051660: PUSH SCRATCH
0x051678: MOV SCRATCH, 0x41ff38
0x0516a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0516c0: MOV EAX, SCRATCH
0x0516d8: X86JUMPOUT call dword ptr [eax+0Ch]
0x0516f0: MOV SCRATCH, 0x000004
0x051708: PUSH SCRATCH
0x051720: X86 mov edi, 1000h
0x051738: X86 push edi
0x051768: X86 push edi
0x051798: X86 push ebx
0x0517c8: MOV SCRATCH, 0xffffffff
0x0517e0: PUSH SCRATCH
0x0517f8: X86CALLOUT 0x408857
0x051810: X86 push ebx
0x051840: X86 mov esi, eax
0x051870: MOV SCRATCH, 0x41ff38
0x0518a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0518b8: MOV EAX, SCRATCH
0x0518d0: X86 push edi
0x051900: X86 push esi
0x051930: MOV SCRATCH, EBP
0x051960: ADD SCRATCH, 0xfffffffc
0x051978: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051990: PUSH SCRATCH
0x0519a8: MOV SCRATCH, EBP
0x0519d8: ADD SCRATCH, 0x000010
0x0519f0: MOV DWORD PTR [SCRATCH], ESI
0x051a08: MOV SCRATCH, EBP
0x051a38: ADD SCRATCH, 0x000008
0x051a50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051a68: PUSH SCRATCH
0x051a80: X86JUMPOUT call dword ptr [eax+0Ch]
0x051a98: MOV SCRATCH, ESI
0x051ac8: ADD SCRATCH, 0x00003c
0x051ae0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051af8: MOV ESI, SCRATCH
0x051b10: X86 add esi, dword ptr [ebp+10h]
0x051b28: MOV SCRATCH, 0x000004
0x051b40: PUSH SCRATCH
0x051b58: X86 push edi
0x051b88: MOV SCRATCH, ESI
0x051bb8: ADD SCRATCH, 0x000050
0x051bd0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051be8: PUSH SCRATCH
0x051c00: X86 push ebx
0x051c30: MOV SCRATCH, 0xffffffff
0x051c48: PUSH SCRATCH
0x051c60: X86CALLOUT 0x408857
0x051c78: X86 push ebx
0x051ca8: MOV SCRATCH, ESI
0x051cd8: ADD SCRATCH, 0x000050
0x051cf0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051d08: PUSH SCRATCH
0x051d20: MOV SCRATCH, EBP
0x051d50: ADD SCRATCH, 0x000008
0x051d68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051d80: MOV EBX, SCRATCH
0x051d98: X86 mov edi, eax
0x051dc8: MOV SCRATCH, 0x41ff38
0x051df8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051e10: MOV EAX, SCRATCH
0x051e28: X86 push edi
0x051e58: MOV SCRATCH, EBP
0x051e88: ADD SCRATCH, 0xfffffffc
0x051ea0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051eb8: PUSH SCRATCH
0x051ed0: X86 push ebx
0x051f00: X86JUMPOUT call dword ptr [eax+0Ch]
0x051f18: MOV SCRATCH, ESI
0x051f48: ADD SCRATCH, 0x000028
0x051f60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051f78: MOV EAX, SCRATCH
0x051f90: MOV SCRATCH, EBP
0x051fc0: ADD SCRATCH, 0x000014
0x051fd8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x051ff0: MOV ECX, SCRATCH
0x052008: X86 add eax, edi
0x052020: MOV SCRATCH, 0x90483ff6
0x052038: PUSH SCRATCH
0x052050: X86 mov byte ptr [eax], 68h
0x052068: MOV SCRATCH, EAX
0x052098: ADD SCRATCH, 0x000001
0x0520b0: MOV DWORD PTR [SCRATCH], ECX
0x0520c8: X86 mov byte ptr [eax+5h], 0C3h
0x0520e0: MOV SCRATCH, 0x420344
0x052110: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052128: PUSH SCRATCH
0x052140: X86CALLOUT 0x408360
0x052158: MOV SCRATCH, EBP
0x052188: ADD SCRATCH, 0xfffffffc
0x0521a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0521b8: PUSH SCRATCH
0x0521d0: X86 push ebx
0x052200: X86JUMPOUT call eax
0x052218: MOV SCRATCH, EBP
0x052248: ADD SCRATCH, 0xfffffffc
0x052260: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052278: PUSH SCRATCH
0x052290: MOV SCRATCH, ESI
0x0522c0: ADD SCRATCH, 0x000050
0x0522d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0522f0: PUSH SCRATCH
0x052308: X86 push edi
0x052338: X86 push ebx
0x052368: X86CALLOUT 0x408f4b
0x052380: MOV SCRATCH, EBP
0x0523b0: ADD SCRATCH, 0x000010
0x0523c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0523e0: PUSH SCRATCH
0x0523f8: X86CALLOUT 0x408e07
0x052410: X86 push edi
0x052440: X86CALLOUT 0x408e07
0x052458: MOV SCRATCH, EBP
0x052488: ADD SCRATCH, 0x00000c
0x0524a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0524b8: PUSH SCRATCH
0x0524d0: MOV SCRATCH, 0x41ff38
0x052500: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052518: MOV EAX, SCRATCH
0x052530: X86JUMPOUT call dword ptr [eax+28h]
0x052548: MOV SCRATCH, EBP
0x052578: ADD SCRATCH, 0x00001c
0x052590: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0525a8: PUSH SCRATCH
0x0525c0: MOV SCRATCH, 0x41ff38
0x0525f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052608: MOV EAX, SCRATCH
0x052620: MOV SCRATCH, EBP
0x052650: ADD SCRATCH, 0x00000c
0x052668: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052680: PUSH SCRATCH
0x052698: X86JUMPOUT call dword ptr [eax+68h]
0x0526b0: MOV SCRATCH, 0x41ff34
0x0526e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0526f8: MOV EAX, SCRATCH
0x052710: X86 push ebx
0x052740: X86JUMPOUT call dword ptr [eax+3Ch]
0x052758: MOV SCRATCH, EBP
0x052788: ADD SCRATCH, 0x00000c
0x0527a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0527b8: PUSH SCRATCH
0x0527d0: MOV SCRATCH, 0x41ff34
0x052800: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052818: MOV EAX, SCRATCH
0x052830: X86JUMPOUT call dword ptr [eax+3Ch]
0x052848: CRASH
0x052860: MOV SCRATCH, 0x41ff38
0x052890: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0528a8: MOV EAX, SCRATCH
0x0528c0: X86 push edi
0x0528f0: X86JUMPOUT call dword ptr [eax+28h]
0x052908: MOV SCRATCH, EBP
0x052938: ADD SCRATCH, 0x00001c
0x052950: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052968: PUSH SCRATCH
0x052980: MOV SCRATCH, 0x41ff38
0x0529b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0529c8: MOV EAX, SCRATCH
0x0529e0: X86 push edi
0x052a10: X86JUMPOUT call dword ptr [eax+68h]
0x052a28: X86 xor eax, eax
0x052a40: X86 inc eax
0x052a58: X86 pop edi
0x052a70: X86 pop esi
0x052a88: X86 pop ebx
0x052aa0: X86 leave 
0x052ab8: X86 ret 18h
0x052ad0: MOV SCRATCH, EBP
0x052b00: ADD SCRATCH, 0x00000c
0x052b18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052b30: MOV ESI, SCRATCH
0x052b48: MOV SCRATCH, 0x000208
0x052b60: PUSH SCRATCH
0x052b78: MOV SCRATCH, 0x000000
0x052b90: PUSH SCRATCH
0x052ba8: X86 push esi
0x052bd8: X86CALLOUT 0x40ae80
0x052bf0: MOV SCRATCH, EBP
0x052c20: ADD SCRATCH, 0x000010
0x052c38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052c50: MOV EDI, SCRATCH
0x052c68: X86 push edi
0x052c98: MOV SCRATCH, EBP
0x052cc8: ADD SCRATCH, 0x000008
0x052ce0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052cf8: PUSH SCRATCH
0x052d10: X86 push esi
0x052d40: X86CALLOUT 0x40ae74
0x052d58: X86 add esp, 18h
0x052d70: CRASH
0x052d88: X86 mov al, byte ptr [esi]
0x052da0: X86 mov cl, al
0x052db8: X86 xor cl, bl
0x052dd0: X86 add bl, al
0x052de8: X86 mov byte ptr [esi], cl
0x052e00: X86 dec edi
0x052e18: X86 inc esi
0x052e30: X86 test edi, edi
0x052e48: JNZ VM[0x052d88] (fallthrough VM[0x052e60])
0x052e60: X86 pop edi
0x052e78: X86 pop esi
0x052e90: X86 pop ebx
0x052ea8: X86 pop ebp
0x052ec0: X86 ret 0Ch
0x052ed8: MOV SCRATCH, EBP
0x052f08: ADD SCRATCH, 0x000008
0x052f20: MOV SCRATCH, DWORD PTR [SCRATCH]
0x052f38: MOV EAX, SCRATCH
0x052f50: X86 xor ecx, ecx
0x052f68: X86 cmp dword ptr [ebp+10h], ecx
0x052f80: JBE VM[0x053010] (fallthrough VM[0x052f98])
0x052f98: X86 mov dl, byte ptr [ebp+0Ch]
0x052fb0: X86 mov byte ptr [ecx+eax], dl
0x052fc8: X86 inc ecx
0x052fe0: X86 cmp ecx, dword ptr [ebp+10h]
0x052ff8: JC VM[0x052f98] (fallthrough VM[0x053010])
0x053010: X86 pop ebp
0x053028: X86 ret 
0x053040: X86 xor edi, edi
0x053058: X86 xor eax, eax
0x053070: X86 mov byte ptr [ebp+eax+0FFFFFEF8h], al
0x053088: X86 inc eax
0x0530a0: X86 cmp eax, 100h
0x0530b8: JC VM[0x053070] (fallthrough VM[0x0530d0])
0x0530d0: MOV SCRATCH, EBP
0x053100: ADD SCRATCH, 0xfffffffc
0x053118: MOV DWORD PTR [SCRATCH], EDI
0x053130: MOV SCRATCH, EBP
0x053160: ADD SCRATCH, 0xfffffff8
0x053178: MOV DWORD PTR [SCRATCH], EDI
0x053190: X86 mov eax, 0FFh
0x0531a8: MOV SCRATCH, EBP
0x0531d8: ADD SCRATCH, 0xfffffff8
0x0531f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053208: MOV ESI, SCRATCH
0x053220: MOV SCRATCH, EBP
0x053250: ADD SCRATCH, 0xfffffffc
0x053268: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053280: MOV EBX, SCRATCH
0x053298: MOV SCRATCH, EBP
0x0532c8: ADD SCRATCH, 0x000008
0x0532e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0532f8: MOV ECX, SCRATCH
0x053310: X86 movzx ecx, byte ptr [ebx+ecx]
0x053328: MOV SCRATCH, ESI
0x053358: ADD SCRATCH, EBP
0x053370: ADD SCRATCH, 0xfffffef8
0x053388: MOV ESI, SCRATCH
0x0533a0: X86 mov dl, byte ptr [esi]
0x0533b8: X86 movzx ebx, dl
0x0533d0: X86 add ebx, edi
0x0533e8: X86 add ecx, ebx
0x053400: X86 and ecx, eax
0x053418: X86 inc dword ptr [ebp+0FFFFFFFCh]
0x053430: X86 mov edi, ecx
0x053460: MOV SCRATCH, EBP
0x053490: ADD SCRATCH, 0xfffffffc
0x0534a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0534c0: MOV ECX, SCRATCH
0x0534d8: X86 cmp ecx, dword ptr [ebp+0Ch]
0x0534f0: JC VM[0x053520] (fallthrough VM[0x053508])
0x053508: X86 and dword ptr [ebp+0FFFFFFFCh], 0h
0x053520: X86 inc dword ptr [ebp+0FFFFFFF8h]
0x053538: X86 cmp dword ptr [ebp+0FFFFFFF8h], 100h
0x053550: MOV SCRATCH, EDI
0x053580: ADD SCRATCH, EBP
0x053598: ADD SCRATCH, 0xfffffef8
0x0535b0: MOV ECX, SCRATCH
0x0535c8: X86 mov bl, byte ptr [ecx]
0x0535e0: X86 mov byte ptr [esi], bl
0x0535f8: X86 mov byte ptr [ecx], dl
0x053610: JC VM[0x0531a8] (fallthrough VM[0x053628])
0x053628: MOV SCRATCH, EBP
0x053658: ADD SCRATCH, 0x000010
0x053670: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053688: MOV ECX, SCRATCH
0x0536a0: X86 xor edx, edx
0x0536b8: X86 xor esi, esi
0x0536d0: X86 test ecx, ecx
0x0536e8: JBE VM[0x0539a0] (fallthrough VM[0x053700])
0x053700: MOV SCRATCH, EBP
0x053730: ADD SCRATCH, 0x00000c
0x053748: MOV DWORD PTR [SCRATCH], ECX
0x053760: X86 inc esi
0x053778: X86 and esi, eax
0x053790: MOV SCRATCH, ESI
0x0537c0: ADD SCRATCH, EBP
0x0537d8: ADD SCRATCH, 0xfffffef8
0x0537f0: MOV EDI, SCRATCH
0x053808: X86 movzx ecx, byte ptr [edi]
0x053820: X86 mov byte ptr [ebp+0Bh], cl
0x053838: X86 add ecx, edx
0x053850: X86 and ecx, eax
0x053868: X86 dec dword ptr [ebp+0Ch]
0x053880: X86 mov edx, ecx
0x0538b0: MOV SCRATCH, EDX
0x0538e0: ADD SCRATCH, EBP
0x0538f8: ADD SCRATCH, 0xfffffef8
0x053910: MOV ECX, SCRATCH
0x053928: X86 mov bl, byte ptr [ecx]
0x053940: X86 mov byte ptr [edi], bl
0x053958: X86 mov bl, byte ptr [ebp+0Bh]
0x053970: X86 mov byte ptr [ecx], bl
0x053988: JNZ VM[0x053760] (fallthrough VM[0x0539a0])
0x0539a0: MOV SCRATCH, EBP
0x0539d0: ADD SCRATCH, 0x000014
0x0539e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053a00: MOV ECX, SCRATCH
0x053a18: MOV SCRATCH, EBP
0x053a48: ADD SCRATCH, 0x00000c
0x053a60: MOV DWORD PTR [SCRATCH], ECX
0x053a78: MOV SCRATCH, EBP
0x053aa8: ADD SCRATCH, 0x000018
0x053ac0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053ad8: MOV ECX, SCRATCH
0x053af0: X86 test ecx, ecx
0x053b08: JBE VM[0x053f28] (fallthrough VM[0x053b20])
0x053b20: MOV SCRATCH, EBP
0x053b50: ADD SCRATCH, 0x000010
0x053b68: MOV DWORD PTR [SCRATCH], ECX
0x053b80: X86 inc esi
0x053b98: X86 and esi, eax
0x053bb0: MOV SCRATCH, ESI
0x053be0: ADD SCRATCH, EBP
0x053bf8: ADD SCRATCH, 0xfffffef8
0x053c10: MOV ECX, SCRATCH
0x053c28: X86 movzx ebx, byte ptr [ecx]
0x053c40: X86 mov byte ptr [ebp+0Bh], bl
0x053c58: X86 add ebx, edx
0x053c70: X86 and ebx, eax
0x053c88: X86 mov edx, ebx
0x053cb8: MOV SCRATCH, EDX
0x053ce8: ADD SCRATCH, EBP
0x053d00: ADD SCRATCH, 0xfffffef8
0x053d18: MOV EDI, SCRATCH
0x053d30: X86 mov bl, byte ptr [edi]
0x053d48: X86 mov byte ptr [ecx], bl
0x053d60: X86 movzx ebx, byte ptr [ebp+0Bh]
0x053d78: X86 mov byte ptr [edi], bl
0x053d90: X86 movzx ecx, byte ptr [ecx]
0x053da8: MOV SCRATCH, EBP
0x053dd8: ADD SCRATCH, 0x00000c
0x053df0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x053e08: MOV EDI, SCRATCH
0x053e20: X86 add ecx, ebx
0x053e38: X86 and ecx, eax
0x053e50: X86 mov cl, byte ptr [ebp+ecx+0FFFFFEF8h]
0x053e68: X86 xor byte ptr [edi], cl
0x053e80: X86 inc edi
0x053e98: X86 dec dword ptr [ebp+10h]
0x053eb0: MOV SCRATCH, EBP
0x053ee0: ADD SCRATCH, 0x00000c
0x053ef8: MOV DWORD PTR [SCRATCH], EDI
0x053f10: JNZ VM[0x053b80] (fallthrough VM[0x053f28])
0x053f28: MOV SCRATCH, 0x000100
0x053f40: PUSH SCRATCH
0x053f58: MOV SCRATCH, EBP
0x053f88: ADD SCRATCH, 0xfffffef8
0x053fa0: MOV EAX, SCRATCH
0x053fb8: MOV SCRATCH, 0x000000
0x053fd0: PUSH SCRATCH
0x053fe8: X86 push eax
0x054018: X86CALLOUT 0x409a67
0x054030: X86 add esp, 0Ch
0x054048: X86 pop edi
0x054060: X86 pop esi
0x054078: X86 pop ebx
0x054090: X86 leave 
0x0540a8: X86 ret 14h
0x0540c0: MOV SCRATCH, EBP
0x0540f0: ADD SCRATCH, 0x00000c
0x054108: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054120: PUSH SCRATCH
0x054138: MOV SCRATCH, EBP
0x054168: ADD SCRATCH, 0x000008
0x054180: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054198: PUSH SCRATCH
0x0541b0: MOV SCRATCH, 0x000000
0x0541c8: PUSH SCRATCH
0x0541e0: MOV SCRATCH, EBP
0x054210: ADD SCRATCH, 0x000014
0x054228: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054240: PUSH SCRATCH
0x054258: MOV SCRATCH, EBP
0x054288: ADD SCRATCH, 0x000010
0x0542a0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0542b8: PUSH SCRATCH
0x0542d0: X86CALLOUT 0x409a97
0x0542e8: X86 pop ebp
0x054300: X86 ret 10h
0x054318: MOV SCRATCH, EBP
0x054348: ADD SCRATCH, 0x000008
0x054360: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054378: MOV EDX, SCRATCH
0x054390: MOV SCRATCH, EDX
0x0543c0: ADD SCRATCH, 0x00003c
0x0543d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0543f0: MOV EAX, SCRATCH
0x054408: MOV SCRATCH, EBP
0x054438: ADD SCRATCH, 0x00000c
0x054450: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054468: MOV ECX, SCRATCH
0x054480: X86 add eax, edx
0x054498: X86 movzx esi, word ptr [eax+6h]
0x0544b0: X86 sub ecx, edx
0x0544c8: X86 movzx edx, word ptr [eax+14h]
0x0544e0: X86 xor edi, edi
0x0544f8: X86 test esi, esi
0x054510: MOV SCRATCH, EAX
0x054540: ADD SCRATCH, EDX
0x054558: ADD SCRATCH, 0x000018
0x054570: MOV EDX, SCRATCH
0x054588: JBE VM[0x0547e0] (fallthrough VM[0x0545a0])
0x0545a0: MOV SCRATCH, EDX
0x0545d0: ADD SCRATCH, 0x00000c
0x0545e8: MOV EAX, SCRATCH
0x054600: MOV SCRATCH, EAX
0x054630: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054648: MOV EDX, SCRATCH
0x054660: X86 cmp ecx, edx
0x054678: JBE VM[0x054780] (fallthrough VM[0x054690])
0x054690: MOV SCRATCH, EAX
0x0546c0: ADD SCRATCH, 0xfffffffc
0x0546d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0546f0: MOV EBX, SCRATCH
0x054708: X86 add ebx, edx
0x054720: X86 cmp ecx, ebx
0x054738: JNC VM[0x054780] (fallthrough VM[0x054750])
0x054750: X86 test dword ptr [eax+18h], 20000000h
0x054768: JZ VM[0x054870] (fallthrough VM[0x054780])
0x054780: X86 inc edi
0x054798: X86 add eax, 28h
0x0547b0: X86 cmp edi, esi
0x0547c8: JC VM[0x054600] (fallthrough VM[0x0547e0])
0x0547e0: X86 xor eax, eax
0x0547f8: X86 pop edi
0x054810: X86 pop esi
0x054828: X86 pop ebx
0x054840: X86 pop ebp
0x054858: X86 ret 8h
0x054870: X86 xor eax, eax
0x054888: X86 inc eax
0x0548a0: CRASH
0x0548b8: X86 cmp dword ptr [ebp+8h], ebx
0x0548d0: JZ VM[0x0574c8] (fallthrough VM[0x0548e8])
0x0548e8: X86 push esi
0x054918: MOV SCRATCH, 0x000208
0x054930: PUSH SCRATCH
0x054948: MOV SCRATCH, EBP
0x054978: ADD SCRATCH, 0xfffffdd8
0x054990: MOV EAX, SCRATCH
0x0549a8: X86 push ebx
0x0549d8: X86 push eax
0x054a08: X86CALLOUT 0x40ae80
0x054a20: X86 add esp, 0Ch
0x054a38: MOV SCRATCH, 0x000104
0x054a50: PUSH SCRATCH
0x054a68: MOV SCRATCH, EBP
0x054a98: ADD SCRATCH, 0xfffffdd8
0x054ab0: MOV EAX, SCRATCH
0x054ac8: X86 push eax
0x054af8: MOV SCRATCH, EBP
0x054b28: ADD SCRATCH, 0x000008
0x054b40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054b58: PUSH SCRATCH
0x054b70: MOV SCRATCH, 0x41ff38
0x054ba0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x054bb8: MOV EAX, SCRATCH
0x054bd0: X86JUMPOUT call dword ptr [eax+48h]
0x054be8: MOV SCRATCH, EBP
0x054c18: ADD SCRATCH, 0xfffffdd8
0x054c30: MOV EAX, SCRATCH
0x054c48: MOV SCRATCH, 0x00005c
0x054c60: PUSH SCRATCH
0x054c78: X86 push eax
0x054ca8: X86JUMPOUT call dword ptr [4010F4h]
0x054cc0: X86 pop ecx
0x054cd8: X86 pop ecx
0x054cf0: X86 push ebx
0x054d20: X86 push ebx
0x054d50: MOV SCRATCH, 0x000003
0x054d68: PUSH SCRATCH
0x054d80: X86 push ebx
0x054db0: MOV SCRATCH, 0x000001
0x054dc8: PUSH SCRATCH
0x054de0: MOV SCRATCH, 0x80000000
0x054df8: PUSH SCRATCH
0x054e10: MOV SCRATCH, EBP
0x054e40: ADD SCRATCH, 0xfffffdd8
0x054e58: MOV EAX, SCRATCH
0x054e70: X86 push eax
0x054ea0: X86CALLOUT 0x408933
0x054eb8: X86 mov esi, eax
0x054ee8: X86 cmp esi, 0FFFFFFFFh
0x054f00: JZ VM[0x0574b0] (fallthrough VM[0x054f18])
0x054f18: X86 push edi
0x054f48: X86 push ebx
0x054f78: X86 push esi
0x054fa8: X86CALLOUT 0x408cbe
0x054fc0: X86 push eax
0x054ff0: MOV SCRATCH, EBP
0x055020: ADD SCRATCH, 0xfffffff4
0x055038: MOV DWORD PTR [SCRATCH], EAX
0x055050: MOV SCRATCH, 0x41ff38
0x055080: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055098: MOV EAX, SCRATCH
0x0550b0: MOV SCRATCH, 0x000040
0x0550c8: PUSH SCRATCH
0x0550e0: X86JUMPOUT call dword ptr [eax+8Ch]
0x0550f8: X86 push ebx
0x055128: X86 mov edi, eax
0x055158: MOV SCRATCH, EBP
0x055188: ADD SCRATCH, 0xffffffe0
0x0551a0: MOV EAX, SCRATCH
0x0551b8: X86 push eax
0x0551e8: MOV SCRATCH, EBP
0x055218: ADD SCRATCH, 0xfffffff4
0x055230: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055248: PUSH SCRATCH
0x055260: X86 push edi
0x055290: X86 push esi
0x0552c0: X86CALLOUT 0x408c4e
0x0552d8: MOV SCRATCH, 0x41ff34
0x055308: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055320: MOV EAX, SCRATCH
0x055338: X86 push esi
0x055368: X86JUMPOUT call dword ptr [eax+3Ch]
0x055380: MOV SCRATCH, EDI
0x0553b0: ADD SCRATCH, 0x00003c
0x0553c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0553e0: MOV ESI, SCRATCH
0x0553f8: MOV SCRATCH, 0x000040
0x055410: PUSH SCRATCH
0x055428: X86 add esi, edi
0x055440: X86 movzx eax, word ptr [esi+14h]
0x055458: MOV SCRATCH, 0x001000
0x055470: PUSH SCRATCH
0x055488: MOV SCRATCH, ESI
0x0554b8: ADD SCRATCH, 0x000050
0x0554d0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0554e8: PUSH SCRATCH
0x055500: MOV SCRATCH, ESI
0x055530: ADD SCRATCH, EAX
0x055548: ADD SCRATCH, 0x000018
0x055560: MOV EAX, SCRATCH
0x055578: X86 push ebx
0x0555a8: MOV SCRATCH, EBP
0x0555d8: ADD SCRATCH, 0xfffffff4
0x0555f0: MOV DWORD PTR [SCRATCH], EAX
0x055608: X86CALLOUT 0x408810
0x055620: MOV SCRATCH, ESI
0x055650: ADD SCRATCH, 0x000054
0x055668: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055680: PUSH SCRATCH
0x055698: X86 mov ebx, eax
0x0556c8: X86 push edi
0x0556f8: X86 push ebx
0x055728: MOV SCRATCH, EBP
0x055758: ADD SCRATCH, 0xfffffff0
0x055770: MOV DWORD PTR [SCRATCH], EBX
0x055788: X86CALLOUT 0x40ae74
0x0557a0: X86 and dword ptr [ebp+0FFFFFFFCh], 0h
0x0557b8: X86 add esp, 0Ch
0x0557d0: X86 cmp word ptr [esi+6h], 0h
0x0557e8: JBE VM[0x055c08] (fallthrough VM[0x055800])
0x055800: MOV SCRATCH, EBP
0x055830: ADD SCRATCH, 0xfffffff4
0x055848: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055860: MOV EAX, SCRATCH
0x055878: X86 add eax, 14h
0x055890: MOV SCRATCH, EBP
0x0558c0: ADD SCRATCH, 0xfffffff8
0x0558d8: MOV DWORD PTR [SCRATCH], EAX
0x0558f0: CRASH
0x055908: MOV SCRATCH, EBP
0x055938: ADD SCRATCH, 0xfffffff8
0x055950: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055968: MOV EAX, SCRATCH
0x055980: MOV SCRATCH, EAX
0x0559b0: ADD SCRATCH, 0xfffffffc
0x0559c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0559e0: PUSH SCRATCH
0x0559f8: MOV SCRATCH, EAX
0x055a28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055a40: MOV ECX, SCRATCH
0x055a58: MOV SCRATCH, EAX
0x055a88: ADD SCRATCH, 0xfffffff8
0x055aa0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055ab8: MOV EAX, SCRATCH
0x055ad0: X86 add ecx, edi
0x055ae8: X86 push ecx
0x055b18: X86 add eax, ebx
0x055b30: X86 push eax
0x055b60: X86CALLOUT 0x40ae74
0x055b78: X86 movzx eax, word ptr [esi+6h]
0x055b90: X86 add dword ptr [ebp+0FFFFFFF8h], 28h
0x055ba8: X86 add esp, 0Ch
0x055bc0: X86 inc dword ptr [ebp+0FFFFFFFCh]
0x055bd8: X86 cmp dword ptr [ebp+0FFFFFFFCh], eax
0x055bf0: JC VM[0x055908] (fallthrough VM[0x055c08])
0x055c08: MOV SCRATCH, 0x41ff38
0x055c38: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055c50: MOV EAX, SCRATCH
0x055c68: X86 push edi
0x055c98: X86JUMPOUT call dword ptr [eax+90h]
0x055cb0: MOV SCRATCH, EBX
0x055ce0: ADD SCRATCH, 0x00003c
0x055cf8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055d10: MOV EAX, SCRATCH
0x055d28: X86 add eax, ebx
0x055d40: MOV SCRATCH, EAX
0x055d70: ADD SCRATCH, 0x0000a0
0x055d88: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055da0: MOV ECX, SCRATCH
0x055db8: X86 test ecx, ecx
0x055dd0: JZ VM[0x056610] (fallthrough VM[0x055de8])
0x055de8: MOV SCRATCH, EBP
0x055e18: ADD SCRATCH, 0x000008
0x055e30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055e48: MOV EDX, SCRATCH
0x055e60: MOV SCRATCH, EAX
0x055e90: ADD SCRATCH, 0x0000a4
0x055ea8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x055ec0: MOV ESI, SCRATCH
0x055ed8: X86 sub edx, dword ptr [eax+34h]
0x055ef0: X86 add ecx, ebx
0x055f08: X86 test esi, esi
0x055f20: MOV SCRATCH, EBP
0x055f50: ADD SCRATCH, 0xfffffffc
0x055f68: MOV DWORD PTR [SCRATCH], ESI
0x055f80: MOV SCRATCH, EBP
0x055fb0: ADD SCRATCH, 0xffffffe8
0x055fc8: MOV DWORD PTR [SCRATCH], EDX
0x055fe0: JZ VM[0x056610] (fallthrough VM[0x055ff8])
0x055ff8: MOV SCRATCH, ECX
0x056028: ADD SCRATCH, 0x000004
0x056040: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056058: MOV ESI, SCRATCH
0x056070: MOV SCRATCH, ECX
0x0560a0: ADD SCRATCH, 0x000008
0x0560b8: MOV EDX, SCRATCH
0x0560d0: MOV SCRATCH, EBP
0x056100: ADD SCRATCH, 0xfffffff8
0x056118: MOV DWORD PTR [SCRATCH], EDX
0x056130: MOV SCRATCH, ECX
0x056160: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056178: MOV EDX, SCRATCH
0x056190: X86 sub esi, 8h
0x0561a8: X86 add edx, ebx
0x0561c0: X86 test esi, esi
0x0561d8: JZ VM[0x056538] (fallthrough VM[0x0561f0])
0x0561f0: MOV SCRATCH, EBP
0x056220: ADD SCRATCH, 0xfffffff8
0x056238: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056250: MOV EDI, SCRATCH
0x056268: X86 movzx edi, word ptr [edi]
0x056280: MOV SCRATCH, EBP
0x0562b0: ADD SCRATCH, 0xfffffff4
0x0562c8: MOV DWORD PTR [SCRATCH], EDI
0x0562e0: X86 and di, 0F000h
0x0562f8: X86 cmp di, 3000h
0x056310: JNZ VM[0x0564d8] (fallthrough VM[0x056328])
0x056328: MOV SCRATCH, EBP
0x056358: ADD SCRATCH, 0xfffffff4
0x056370: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056388: MOV EDI, SCRATCH
0x0563a0: MOV SCRATCH, EBP
0x0563d0: ADD SCRATCH, 0xffffffe8
0x0563e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056400: MOV EBX, SCRATCH
0x056418: X86 and edi, 0FFFh
0x056430: X86 add edi, edx
0x056448: X86 add dword ptr [edi], ebx
0x056460: MOV SCRATCH, EBP
0x056490: ADD SCRATCH, 0xfffffff0
0x0564a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0564c0: MOV EBX, SCRATCH
0x0564d8: X86 add dword ptr [ebp+0FFFFFFF8h], 2h
0x0564f0: X86 dec esi
0x056508: X86 dec esi
0x056520: JNZ VM[0x0561f0] (fallthrough VM[0x056538])
0x056538: MOV SCRATCH, ECX
0x056568: ADD SCRATCH, 0x000004
0x056580: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056598: MOV EDX, SCRATCH
0x0565b0: X86 sub dword ptr [ebp+0FFFFFFFCh], edx
0x0565c8: X86 add ecx, edx
0x0565e0: X86 cmp dword ptr [ebp+0FFFFFFFCh], 0h
0x0565f8: JNZ VM[0x055ff8] (fallthrough VM[0x056610])
0x056610: X86 cmp dword ptr [eax+78h], 0h
0x056628: JZ VM[0x057480] (fallthrough VM[0x056640])
0x056640: MOV SCRATCH, EAX
0x056670: ADD SCRATCH, 0x000078
0x056688: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0566a0: MOV EBX, SCRATCH
0x0566b8: X86 add ebx, dword ptr [ebp+0FFFFFFF0h]
0x0566d0: X86 and dword ptr [ebp+0FFFFFFFCh], 0h
0x0566e8: MOV SCRATCH, EBX
0x056718: ADD SCRATCH, 0x000024
0x056730: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056748: MOV ESI, SCRATCH
0x056760: MOV SCRATCH, EBX
0x056790: ADD SCRATCH, 0x00001c
0x0567a8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0567c0: MOV EDI, SCRATCH
0x0567d8: X86 add esi, dword ptr [ebp+0FFFFFFF0h]
0x0567f0: X86 add edi, dword ptr [ebp+0FFFFFFF0h]
0x056808: X86 cmp dword ptr [ebx+18h], 0h
0x056820: MOV SCRATCH, EBP
0x056850: ADD SCRATCH, 0xfffffff4
0x056868: MOV DWORD PTR [SCRATCH], ESI
0x056880: MOV SCRATCH, EBP
0x0568b0: ADD SCRATCH, 0xffffffec
0x0568c8: MOV DWORD PTR [SCRATCH], EDI
0x0568e0: JBE VM[0x057468] (fallthrough VM[0x0568f8])
0x0568f8: MOV SCRATCH, EBP
0x056928: ADD SCRATCH, 0xfffffffc
0x056940: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056958: MOV EAX, SCRATCH
0x056970: X86 movzx eax, word ptr [esi+eax*2]
0x056988: MOV SCRATCH, EAX
0x0569b8: SHL SCRATCH, 0x000002
0x0569d0: ADD SCRATCH, EDI
0x0569e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056a00: MOV EAX, SCRATCH
0x056a18: MOV SCRATCH, EBP
0x056a48: ADD SCRATCH, 0xfffffff0
0x056a60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056a78: MOV ECX, SCRATCH
0x056a90: X86 add ecx, eax
0x056aa8: MOV SCRATCH, EBP
0x056ad8: ADD SCRATCH, 0xffffffe8
0x056af0: MOV DWORD PTR [SCRATCH], ECX
0x056b08: MOV SCRATCH, EBP
0x056b38: ADD SCRATCH, 0x000008
0x056b50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056b68: MOV ECX, SCRATCH
0x056b80: X86 add eax, ecx
0x056b98: X86 push eax
0x056bc8: X86 push ecx
0x056bf8: MOV SCRATCH, EBP
0x056c28: ADD SCRATCH, 0xfffffff8
0x056c40: MOV DWORD PTR [SCRATCH], EAX
0x056c58: X86CALLOUT 0x409bf7
0x056c70: X86 test eax, eax
0x056c88: JNZ VM[0x0573a8] (fallthrough VM[0x056ca0])
0x056ca0: MOV SCRATCH, EBP
0x056cd0: ADD SCRATCH, 0xfffffff8
0x056ce8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056d00: MOV EDI, SCRATCH
0x056d18: MOV SCRATCH, EBP
0x056d48: ADD SCRATCH, 0xffffffe8
0x056d60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056d78: MOV ESI, SCRATCH
0x056d90: MOV SCRATCH, 0x000005
0x056da8: PUSH SCRATCH
0x056dc0: X86 pop ecx
0x056dd8: X86 xor eax, eax
0x056df0: X86 [rep] cmpsw word ptr [esi], word ptr es:[edi]
0x056e08: JZ VM[0x0572b8] (fallthrough VM[0x056e20])
0x056e20: MOV SCRATCH, EBP
0x056e50: ADD SCRATCH, 0xfffffff8
0x056e68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x056e80: MOV EDI, SCRATCH
0x056e98: MOV SCRATCH, EBP
0x056ec8: ADD SCRATCH, 0xffffffe4
0x056ee0: MOV EAX, SCRATCH
0x056ef8: X86 push eax
0x056f28: MOV SCRATCH, 0x000040
0x056f40: PUSH SCRATCH
0x056f58: MOV SCRATCH, 0x00000a
0x056f70: PUSH SCRATCH
0x056f88: X86 push edi
0x056fb8: MOV SCRATCH, 0xffffffff
0x056fd0: PUSH SCRATCH
0x056fe8: X86CALLOUT 0x408c14
0x057000: MOV SCRATCH, EBP
0x057030: ADD SCRATCH, 0xffffffe8
0x057048: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057060: MOV ESI, SCRATCH
0x057078: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x057090: X86 movsd dword ptr [esi], dword ptr es:[edi]
0x0570a8: MOV SCRATCH, EBP
0x0570d8: ADD SCRATCH, 0xffffffe4
0x0570f0: MOV EAX, SCRATCH
0x057108: X86 push eax
0x057138: X86 movsw word ptr [esi], word ptr es:[edi]
0x057150: MOV SCRATCH, EBP
0x057180: ADD SCRATCH, 0xffffffe4
0x057198: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0571b0: PUSH SCRATCH
0x0571c8: MOV SCRATCH, 0x00000a
0x0571e0: PUSH SCRATCH
0x0571f8: MOV SCRATCH, EBP
0x057228: ADD SCRATCH, 0xfffffff8
0x057240: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057258: PUSH SCRATCH
0x057270: MOV SCRATCH, 0xffffffff
0x057288: PUSH SCRATCH
0x0572a0: X86CALLOUT 0x408c14
0x0572b8: MOV SCRATCH, EBP
0x0572e8: ADD SCRATCH, 0xffffffec
0x057300: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057318: MOV EDI, SCRATCH
0x057330: MOV SCRATCH, EBP
0x057360: ADD SCRATCH, 0xfffffff4
0x057378: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057390: MOV ESI, SCRATCH
0x0573a8: X86 inc dword ptr [ebp+0FFFFFFFCh]
0x0573c0: MOV SCRATCH, EBP
0x0573f0: ADD SCRATCH, 0xfffffffc
0x057408: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057420: MOV EAX, SCRATCH
0x057438: X86 cmp eax, dword ptr [ebx+18h]
0x057450: JC VM[0x0568f8] (fallthrough VM[0x057468])
0x057468: X86 mov dword ptr [ebp+0FFFFFFECh], 1h
0x057480: X86 xor ebx, ebx
0x057498: X86 pop edi
0x0574b0: X86 pop esi
0x0574c8: MOV SCRATCH, 0x002000
0x0574e0: PUSH SCRATCH
0x0574f8: X86 push ebx
0x057528: MOV SCRATCH, EBP
0x057558: ADD SCRATCH, 0xfffffff0
0x057570: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057588: PUSH SCRATCH
0x0575a0: X86CALLOUT 0x40889f
0x0575b8: MOV SCRATCH, EBP
0x0575e8: ADD SCRATCH, 0xffffffec
0x057600: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057618: MOV EAX, SCRATCH
0x057630: X86 pop ebx
0x057648: X86 leave 
0x057660: X86 ret 4h
0x057678: X86 mov eax, dword ptr fs:[30h]
0x057690: MOV SCRATCH, EAX
0x0576c0: ADD SCRATCH, 0x00000c
0x0576d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0576f0: MOV EDI, SCRATCH
0x057708: X86 add edi, 0Ch
0x057720: MOV SCRATCH, EDI
0x057750: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057768: MOV ESI, SCRATCH
0x057780: CRASH
0x057798: MOV SCRATCH, ESI
0x0577c8: ADD SCRATCH, 0x000030
0x0577e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0577f8: MOV EAX, SCRATCH
0x057810: X86 test eax, eax
0x057828: JZ VM[0x0578b8] (fallthrough VM[0x057840])
0x057840: X86 push eax
0x057870: X86CALLOUT 0x407f53
0x057888: X86 cmp dword ptr [ebp+8h], eax
0x0578a0: JZ VM[0x0579c0] (fallthrough VM[0x0578b8])
0x0578b8: MOV SCRATCH, ESI
0x0578e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057900: MOV ESI, SCRATCH
0x057918: X86 cmp esi, edi
0x057930: JNZ VM[0x057798] (fallthrough VM[0x057948])
0x057948: X86 xor eax, eax
0x057960: X86 pop edi
0x057978: X86 pop esi
0x057990: X86 pop ebp
0x0579a8: X86 ret 4h
0x0579c0: MOV SCRATCH, ESI
0x0579f0: ADD SCRATCH, 0x000018
0x057a08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057a20: MOV EAX, SCRATCH
0x057a38: CRASH
0x057a50: MOV SCRATCH, EBP
0x057a80: ADD SCRATCH, 0xfffffffc
0x057a98: MOV EAX, SCRATCH
0x057ab0: X86 push eax
0x057ae0: MOV SCRATCH, 0x41ff34
0x057b10: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057b28: MOV EAX, SCRATCH
0x057b40: MOV SCRATCH, 0x2000000
0x057b58: PUSH SCRATCH
0x057b70: MOV SCRATCH, 0xffffffff
0x057b88: PUSH SCRATCH
0x057ba0: X86JUMPOUT call dword ptr [eax+6Ch]
0x057bb8: X86 test eax, eax
0x057bd0: JNZ VM[0x058ad0] (fallthrough VM[0x057be8])
0x057be8: MOV SCRATCH, EBP
0x057c18: ADD SCRATCH, 0xfffffff8
0x057c30: MOV EAX, SCRATCH
0x057c48: X86 push eax
0x057c78: MOV SCRATCH, 0x41ff34
0x057ca8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057cc0: MOV EAX, SCRATCH
0x057cd8: X86 push ebx
0x057d08: X86 push ebx
0x057d38: MOV SCRATCH, 0x000002
0x057d50: PUSH SCRATCH
0x057d68: MOV SCRATCH, EBP
0x057d98: ADD SCRATCH, 0xfffffffc
0x057db0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057dc8: PUSH SCRATCH
0x057de0: X86JUMPOUT call dword ptr [eax+7Ch]
0x057df8: X86 cmp eax, 0C0000023h
0x057e10: JNZ VM[0x058ad0] (fallthrough VM[0x057e28])
0x057e28: MOV SCRATCH, EBP
0x057e58: ADD SCRATCH, 0xfffffff8
0x057e70: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057e88: PUSH SCRATCH
0x057ea0: MOV SCRATCH, 0x41ff38
0x057ed0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x057ee8: MOV EAX, SCRATCH
0x057f00: MOV SCRATCH, 0x000040
0x057f18: PUSH SCRATCH
0x057f30: X86JUMPOUT call dword ptr [eax+8Ch]
0x057f48: X86 mov esi, eax
0x057f78: X86 cmp esi, ebx
0x057f90: JZ VM[0x058ad0] (fallthrough VM[0x057fa8])
0x057fa8: MOV SCRATCH, EBP
0x057fd8: ADD SCRATCH, 0xfffffff8
0x057ff0: MOV EAX, SCRATCH
0x058008: X86 push eax
0x058038: MOV SCRATCH, EBP
0x058068: ADD SCRATCH, 0xfffffff8
0x058080: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058098: PUSH SCRATCH
0x0580b0: MOV SCRATCH, 0x41ff34
0x0580e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0580f8: MOV EAX, SCRATCH
0x058110: X86 push esi
0x058140: MOV SCRATCH, 0x000002
0x058158: PUSH SCRATCH
0x058170: MOV SCRATCH, EBP
0x0581a0: ADD SCRATCH, 0xfffffffc
0x0581b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0581d0: PUSH SCRATCH
0x0581e8: X86JUMPOUT call dword ptr [eax+7Ch]
0x058200: X86 test eax, eax
0x058218: JNZ VM[0x058ad0] (fallthrough VM[0x058230])
0x058230: MOV SCRATCH, EBP
0x058260: ADD SCRATCH, 0xfffffffc
0x058278: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058290: PUSH SCRATCH
0x0582a8: MOV SCRATCH, 0x41ff34
0x0582d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0582f0: MOV EAX, SCRATCH
0x058308: X86JUMPOUT call dword ptr [eax+3Ch]
0x058320: MOV SCRATCH, EBP
0x058350: ADD SCRATCH, 0xfffffff4
0x058368: MOV EAX, SCRATCH
0x058380: X86 push eax
0x0583b0: X86 push ebx
0x0583e0: X86 push ebx
0x058410: X86 push ebx
0x058440: X86 push ebx
0x058470: X86 push ebx
0x0584a0: X86 push ebx
0x0584d0: MOV SCRATCH, 0x000220
0x0584e8: PUSH SCRATCH
0x058500: MOV SCRATCH, 0x000020
0x058518: PUSH SCRATCH
0x058530: MOV SCRATCH, 0x000002
0x058548: PUSH SCRATCH
0x058560: MOV SCRATCH, EBP
0x058590: ADD SCRATCH, 0xffffffe4
0x0585a8: MOV EAX, SCRATCH
0x0585c0: X86 push eax
0x0585f0: MOV SCRATCH, 0x41ff2c
0x058620: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058638: MOV EAX, SCRATCH
0x058650: MOV SCRATCH, EBP
0x058680: ADD SCRATCH, 0xfffffffc
0x058698: MOV DWORD PTR [SCRATCH], EBX
0x0586b0: X86JUMPOUT call dword ptr [eax+8h]
0x0586c8: X86 test eax, eax
0x0586e0: JZ VM[0x058ad0] (fallthrough VM[0x0586f8])
0x0586f8: X86 push edi
0x058728: X86 xor edi, edi
0x058740: X86 cmp dword ptr [esi], ebx
0x058758: JBE VM[0x058ab8] (fallthrough VM[0x058770])
0x058770: MOV SCRATCH, ESI
0x0587a0: ADD SCRATCH, 0x000004
0x0587b8: MOV EAX, SCRATCH
0x0587d0: MOV SCRATCH, EBP
0x058800: ADD SCRATCH, 0xfffffff0
0x058818: MOV DWORD PTR [SCRATCH], EAX
0x058830: MOV SCRATCH, EBP
0x058860: ADD SCRATCH, 0xfffffff0
0x058878: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058890: MOV EAX, SCRATCH
0x0588a8: MOV SCRATCH, EAX
0x0588d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0588f0: PUSH SCRATCH
0x058908: MOV SCRATCH, 0x41ff2c
0x058938: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058950: MOV EAX, SCRATCH
0x058968: MOV SCRATCH, EBP
0x058998: ADD SCRATCH, 0xfffffff4
0x0589b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0589c8: PUSH SCRATCH
0x0589e0: X86JUMPOUT call dword ptr [eax+0Ch]
0x0589f8: X86 test eax, eax
0x058a10: JNZ VM[0x058aa0] (fallthrough VM[0x058a28])
0x058a28: X86 add dword ptr [ebp+0FFFFFFF0h], 8h
0x058a40: X86 inc edi
0x058a58: X86 cmp edi, dword ptr [esi]
0x058a70: JC VM[0x058830] (fallthrough VM[0x058a88])
0x058a88: CRASH
0x058aa0: X86 mov dword ptr [ebp+0FFFFFFECh], 1h
0x058ab8: X86 pop edi
0x058ad0: X86 cmp dword ptr [ebp+0FFFFFFF4h], ebx
0x058ae8: JZ VM[0x058bf0] (fallthrough VM[0x058b00])
0x058b00: MOV SCRATCH, EBP
0x058b30: ADD SCRATCH, 0xfffffff4
0x058b48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058b60: PUSH SCRATCH
0x058b78: MOV SCRATCH, 0x41ff2c
0x058ba8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058bc0: MOV EAX, SCRATCH
0x058bd8: X86JUMPOUT call dword ptr [eax+14h]
0x058bf0: X86 cmp esi, ebx
0x058c08: JZ VM[0x058dd0] (fallthrough VM[0x058c20])
0x058c20: MOV SCRATCH, EBP
0x058c50: ADD SCRATCH, 0xfffffff8
0x058c68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058c80: PUSH SCRATCH
0x058c98: X86 push ebx
0x058cc8: X86 push esi
0x058cf8: X86CALLOUT 0x40ae80
0x058d10: MOV SCRATCH, 0x41ff38
0x058d40: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058d58: MOV EAX, SCRATCH
0x058d70: X86 add esp, 0Ch
0x058d88: X86 push esi
0x058db8: X86JUMPOUT call dword ptr [eax+90h]
0x058dd0: X86 cmp dword ptr [ebp+0FFFFFFFCh], ebx
0x058de8: X86 pop esi
0x058e00: X86 pop ebx
0x058e18: JZ VM[0x058f20] (fallthrough VM[0x058e30])
0x058e30: MOV SCRATCH, EBP
0x058e60: ADD SCRATCH, 0xfffffffc
0x058e78: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058e90: PUSH SCRATCH
0x058ea8: MOV SCRATCH, 0x41ff34
0x058ed8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058ef0: MOV EAX, SCRATCH
0x058f08: X86JUMPOUT call dword ptr [eax+3Ch]
0x058f20: MOV SCRATCH, EBP
0x058f50: ADD SCRATCH, 0xffffffec
0x058f68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x058f80: MOV EAX, SCRATCH
0x058f98: X86 leave 
0x058fb0: X86 ret 
0x058fc8: X86 mov esi, 208h
0x058fe0: X86 push esi
0x059010: MOV SCRATCH, EBP
0x059040: ADD SCRATCH, 0xfffffddc
0x059058: MOV EAX, SCRATCH
0x059070: X86 push ebx
0x0590a0: X86 push eax
0x0590d0: X86CALLOUT 0x40ae80
0x0590e8: X86 push esi
0x059118: MOV SCRATCH, EBP
0x059148: ADD SCRATCH, 0xfffff9cc
0x059160: MOV EAX, SCRATCH
0x059178: X86 push ebx
0x0591a8: X86 push eax
0x0591d8: X86CALLOUT 0x40ae80
0x0591f0: X86 push esi
0x059220: MOV SCRATCH, EBP
0x059250: ADD SCRATCH, 0xfffffbd4
0x059268: MOV EAX, SCRATCH
0x059280: X86 push ebx
0x0592b0: X86 push eax
0x0592e0: X86CALLOUT 0x40ae80
0x0592f8: X86 mov edi, 11Ch
0x059310: X86 push edi
0x059340: MOV SCRATCH, EBP
0x059370: ADD SCRATCH, 0xfffff8b0
0x059388: MOV EAX, SCRATCH
0x0593a0: X86 push ebx
0x0593d0: X86 push eax
0x059400: X86CALLOUT 0x40ae80
0x059418: X86 add esp, 30h
0x059430: MOV SCRATCH, EBP
0x059460: ADD SCRATCH, 0xfffff8b0
0x059478: MOV EAX, SCRATCH
0x059490: X86 push eax
0x0594c0: MOV SCRATCH, 0x41ff34
0x0594f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x059508: MOV EAX, SCRATCH
0x059520: MOV SCRATCH, EBP
0x059550: ADD SCRATCH, 0xfffff8b0
0x059568: MOV DWORD PTR [SCRATCH], EDI
0x059580: X86JUMPOUT call dword ptr [eax+84h]
0x059598: X86 cmp dword ptr [ebp+0FFFFF8B4h], 5h
0x0595b0: JZ VM[0x05b218] (fallthrough VM[0x0595c8])
0x0595c8: MOV SCRATCH, 0x000073
0x0595e0: PUSH SCRATCH
0x0595f8: X86 pop eax
0x059610: MOV SCRATCH, 0x00006f
0x059628: PUSH SCRATCH
0x059640: X86 pop edi
0x059658: MOV SCRATCH, 0x000065
0x059670: PUSH SCRATCH
0x059688: X86 pop ebx
0x0596a0: MOV SCRATCH, 0x00005c
0x0596b8: PUSH SCRATCH
0x0596d0: X86 pop ecx
0x0596e8: MOV SCRATCH, 0x000069
0x059700: PUSH SCRATCH
0x059718: X86 pop edx
0x059730: X86 mov word ptr [ebp+0FFFFFDDCh], ax
0x059748: X86 mov word ptr [ebp+0FFFFFDF8h], ax
0x059760: X86 mov word ptr [ebp+0FFFFFE0Eh], ax
0x059778: X86 mov word ptr [ebp+0FFFFFE26h], ax
0x059790: X86 mov word ptr [ebp+0FFFFFE3Eh], ax
0x0597a8: X86 mov word ptr [ebp+0FFFFFE42h], ax
0x0597c0: X86 mov word ptr [ebp+0FFFFFE46h], ax
0x0597d8: MOV SCRATCH, EBP
0x059808: ADD SCRATCH, 0xfffffffc
0x059820: MOV EAX, SCRATCH
0x059838: X86 push eax
0x059868: MOV SCRATCH, 0x020019
0x059880: PUSH SCRATCH
0x059898: MOV SCRATCH, 0x000000
0x0598b0: PUSH SCRATCH
0x0598c8: MOV SCRATCH, EBP
0x0598f8: ADD SCRATCH, 0xfffffddc
0x059910: MOV EAX, SCRATCH
0x059928: X86 push eax
0x059958: MOV SCRATCH, 0x41ff2c
0x059988: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0599a0: MOV EAX, SCRATCH
0x0599b8: MOV SCRATCH, 0x80000002
0x0599d0: PUSH SCRATCH
0x0599e8: X86 mov word ptr [ebp+0FFFFFDDEh], di
0x059a00: X86 mov word ptr [ebp+0FFFFFDE0h], 66h
0x059a18: X86 mov word ptr [ebp+0FFFFFDE2h], 74h
0x059a30: X86 mov word ptr [ebp+0FFFFFDE4h], 77h
0x059a48: X86 mov word ptr [ebp+0FFFFFDE6h], 61h
0x059a60: X86 mov word ptr [ebp+0FFFFFDE8h], 72h
0x059a78: X86 mov word ptr [ebp+0FFFFFDEAh], bx
0x059a90: X86 mov word ptr [ebp+0FFFFFDECh], cx
0x059aa8: X86 mov word ptr [ebp+0FFFFFDEEh], 6Dh
0x059ac0: X86 mov word ptr [ebp+0FFFFFDF0h], dx
0x059ad8: X86 mov word ptr [ebp+0FFFFFDF2h], 63h
0x059af0: X86 mov word ptr [ebp+0FFFFFDF4h], 72h
0x059b08: X86 mov word ptr [ebp+0FFFFFDF6h], di
0x059b20: X86 mov word ptr [ebp+0FFFFFDFAh], di
0x059b38: X86 mov word ptr [ebp+0FFFFFDFCh], 66h
0x059b50: X86 mov word ptr [ebp+0FFFFFDFEh], 74h
0x059b68: X86 mov word ptr [ebp+0FFFFFE00h], cx
0x059b80: X86 mov word ptr [ebp+0FFFFFE02h], 77h
0x059b98: X86 mov word ptr [ebp+0FFFFFE04h], dx
0x059bb0: X86 mov word ptr [ebp+0FFFFFE06h], 6Eh
0x059bc8: X86 mov word ptr [ebp+0FFFFFE08h], 64h
0x059be0: X86 mov word ptr [ebp+0FFFFFE0Ah], di
0x059bf8: X86 mov word ptr [ebp+0FFFFFE0Ch], 77h
0x059c10: X86 mov word ptr [ebp+0FFFFFE10h], cx
0x059c28: X86 mov word ptr [ebp+0FFFFFE12h], 63h
0x059c40: X86 mov word ptr [ebp+0FFFFFE14h], 75h
0x059c58: X86 mov word ptr [ebp+0FFFFFE16h], 72h
0x059c70: X86 mov word ptr [ebp+0FFFFFE18h], 72h
0x059c88: X86 mov word ptr [ebp+0FFFFFE1Ah], bx
0x059ca0: X86 mov word ptr [ebp+0FFFFFE1Ch], 6Eh
0x059cb8: X86 mov word ptr [ebp+0FFFFFE1Eh], 74h
0x059cd0: X86 mov word ptr [ebp+0FFFFFE20h], 76h
0x059ce8: X86 mov word ptr [ebp+0FFFFFE22h], bx
0x059d00: X86 mov word ptr [ebp+0FFFFFE24h], 72h
0x059d18: X86 mov word ptr [ebp+0FFFFFE28h], dx
0x059d30: X86 mov word ptr [ebp+0FFFFFE2Ah], di
0x059d48: X86 mov word ptr [ebp+0FFFFFE2Ch], 6Eh
0x059d60: X86 mov word ptr [ebp+0FFFFFE2Eh], cx
0x059d78: X86 mov word ptr [ebp+0FFFFFE30h], 70h
0x059d90: X86 mov word ptr [ebp+0FFFFFE32h], di
0x059da8: X86 mov word ptr [ebp+0FFFFFE34h], 6Ch
0x059dc0: X86 mov word ptr [ebp+0FFFFFE36h], dx
0x059dd8: X86 mov word ptr [ebp+0FFFFFE38h], 63h
0x059df0: X86 mov word ptr [ebp+0FFFFFE3Ah], dx
0x059e08: X86 mov word ptr [ebp+0FFFFFE3Ch], bx
0x059e20: X86 mov word ptr [ebp+0FFFFFE40h], cx
0x059e38: X86 mov word ptr [ebp+0FFFFFE44h], 79h
0x059e50: X86 mov word ptr [ebp+0FFFFFE48h], 74h
0x059e68: X86 mov word ptr [ebp+0FFFFFE4Ah], bx
0x059e80: X86 mov word ptr [ebp+0FFFFFE4Ch], 6Dh
0x059e98: X86JUMPOUT call dword ptr [eax+20h]
0x059eb0: X86 push esi
0x059ee0: X86 mov ebx, eax
0x059f10: MOV SCRATCH, 0x000000
0x059f28: PUSH SCRATCH
0x059f40: MOV SCRATCH, EBP
0x059f70: ADD SCRATCH, 0xfffffddc
0x059f88: MOV EAX, SCRATCH
0x059fa0: X86 push eax
0x059fd0: X86CALLOUT 0x40ae80
0x059fe8: X86 add esp, 0Ch
0x05a000: X86 test ebx, ebx
0x05a018: JNZ VM[0x05b1e8] (fallthrough VM[0x05a030])
0x05a030: MOV SCRATCH, 0x000004
0x05a048: PUSH SCRATCH
0x05a060: X86 pop ebx
0x05a078: MOV SCRATCH, EBP
0x05a0a8: ADD SCRATCH, 0xfffffff4
0x05a0c0: MOV EAX, SCRATCH
0x05a0d8: X86 push eax
0x05a108: MOV SCRATCH, EBP
0x05a138: ADD SCRATCH, 0xffffffec
0x05a150: MOV EAX, SCRATCH
0x05a168: X86 push eax
0x05a198: MOV SCRATCH, EBP
0x05a1c8: ADD SCRATCH, 0xfffffff8
0x05a1e0: MOV EAX, SCRATCH
0x05a1f8: X86 push eax
0x05a228: MOV SCRATCH, 0x000000
0x05a240: PUSH SCRATCH
0x05a258: MOV SCRATCH, EBP
0x05a288: ADD SCRATCH, 0xfffff9cc
0x05a2a0: MOV EAX, SCRATCH
0x05a2b8: X86 push eax
0x05a2e8: MOV SCRATCH, EBP
0x05a318: ADD SCRATCH, 0xfffffffc
0x05a330: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05a348: PUSH SCRATCH
0x05a360: MOV SCRATCH, 0x41ff2c
0x05a390: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05a3a8: MOV EAX, SCRATCH
0x05a3c0: MOV SCRATCH, EBP
0x05a3f0: ADD SCRATCH, 0xfffffff8
0x05a408: MOV DWORD PTR [SCRATCH], EBX
0x05a420: MOV SCRATCH, EBP
0x05a450: ADD SCRATCH, 0xfffffff4
0x05a468: MOV DWORD PTR [SCRATCH], EBX
0x05a480: X86 mov word ptr [ebp+0FFFFF9CCh], 45h
0x05a498: X86 mov word ptr [ebp+0FFFFF9CEh], 6Eh
0x05a4b0: X86 mov word ptr [ebp+0FFFFF9D0h], 61h
0x05a4c8: X86 mov word ptr [ebp+0FFFFF9D2h], 62h
0x05a4e0: X86 mov word ptr [ebp+0FFFFF9D4h], 6Ch
0x05a4f8: X86 mov word ptr [ebp+0FFFFF9D6h], 65h
0x05a510: X86 mov word ptr [ebp+0FFFFF9D8h], 4Ch
0x05a528: X86 mov word ptr [ebp+0FFFFF9DAh], 55h
0x05a540: X86 mov word ptr [ebp+0FFFFF9DCh], 41h
0x05a558: X86JUMPOUT call dword ptr [eax+1Ch]
0x05a570: X86 push esi
0x05a5a0: MOV SCRATCH, EBP
0x05a5d0: ADD SCRATCH, 0xffffffe4
0x05a5e8: MOV DWORD PTR [SCRATCH], EAX
0x05a600: MOV SCRATCH, EBP
0x05a630: ADD SCRATCH, 0xfffff9cc
0x05a648: MOV EAX, SCRATCH
0x05a660: MOV SCRATCH, 0x000000
0x05a678: PUSH SCRATCH
0x05a690: X86 push eax
0x05a6c0: X86CALLOUT 0x40ae80
0x05a6d8: X86 xor eax, eax
0x05a6f0: X86 add esp, 0Ch
0x05a708: X86 cmp dword ptr [ebp+0FFFFFFE4h], eax
0x05a720: JZ VM[0x05a840] (fallthrough VM[0x05a738])
0x05a738: MOV SCRATCH, EBP
0x05a768: ADD SCRATCH, 0xfffffffc
0x05a780: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05a798: PUSH SCRATCH
0x05a7b0: MOV SCRATCH, 0x41ff2c
0x05a7e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05a7f8: MOV EAX, SCRATCH
0x05a810: X86JUMPOUT call dword ptr [eax+24h]
0x05a828: CRASH
0x05a840: X86 cmp dword ptr [ebp+0FFFFFFECh], eax
0x05a858: JZ VM[0x05b218] (fallthrough VM[0x05a870])
0x05a870: X86 push esi
0x05a8a0: X86 push eax
0x05a8d0: MOV SCRATCH, EBP
0x05a900: ADD SCRATCH, 0xfffffbd4
0x05a918: MOV EAX, SCRATCH
0x05a930: X86 push eax
0x05a960: MOV SCRATCH, EBP
0x05a990: ADD SCRATCH, 0xfffffff8
0x05a9a8: MOV DWORD PTR [SCRATCH], EBX
0x05a9c0: MOV SCRATCH, EBP
0x05a9f0: ADD SCRATCH, 0xfffffff4
0x05aa08: MOV DWORD PTR [SCRATCH], EBX
0x05aa20: X86CALLOUT 0x40ae80
0x05aa38: X86 add esp, 0Ch
0x05aa50: MOV SCRATCH, EBP
0x05aa80: ADD SCRATCH, 0xfffffff4
0x05aa98: MOV EAX, SCRATCH
0x05aab0: X86 push eax
0x05aae0: MOV SCRATCH, EBP
0x05ab10: ADD SCRATCH, 0xfffffff0
0x05ab28: MOV EAX, SCRATCH
0x05ab40: X86 push eax
0x05ab70: MOV SCRATCH, EBP
0x05aba0: ADD SCRATCH, 0xfffffff8
0x05abb8: MOV EAX, SCRATCH
0x05abd0: X86 push eax
0x05ac00: MOV SCRATCH, 0x000000
0x05ac18: PUSH SCRATCH
0x05ac30: MOV SCRATCH, EBP
0x05ac60: ADD SCRATCH, 0xfffffbd4
0x05ac78: MOV EAX, SCRATCH
0x05ac90: X86 push eax
0x05acc0: MOV SCRATCH, EBP
0x05acf0: ADD SCRATCH, 0xfffffffc
0x05ad08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05ad20: PUSH SCRATCH
0x05ad38: MOV SCRATCH, 0x41ff2c
0x05ad68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05ad80: MOV EAX, SCRATCH
0x05ad98: X86 mov word ptr [ebp+0FFFFFBD4h], 43h
0x05adb0: X86 mov word ptr [ebp+0FFFFFBD6h], di
0x05adc8: X86 mov word ptr [ebp+0FFFFFBD8h], 6Eh
0x05ade0: X86 mov word ptr [ebp+0FFFFFBDAh], 73h
0x05adf8: X86 mov word ptr [ebp+0FFFFFBDCh], 65h
0x05ae10: X86 mov word ptr [ebp+0FFFFFBDEh], 6Eh
0x05ae28: X86 mov word ptr [ebp+0FFFFFBE0h], 74h
0x05ae40: X86 mov word ptr [ebp+0FFFFFBE2h], 50h
0x05ae58: X86 mov word ptr [ebp+0FFFFFBE4h], 72h
0x05ae70: X86 mov word ptr [ebp+0FFFFFBE6h], di
0x05ae88: X86 mov word ptr [ebp+0FFFFFBE8h], 6Dh
0x05aea0: X86 mov word ptr [ebp+0FFFFFBEAh], 70h
0x05aeb8: X86 mov word ptr [ebp+0FFFFFBECh], 74h
0x05aed0: X86 mov word ptr [ebp+0FFFFFBEEh], 42h
0x05aee8: X86 mov word ptr [ebp+0FFFFFBF0h], 65h
0x05af00: X86 mov word ptr [ebp+0FFFFFBF2h], 68h
0x05af18: X86 mov word ptr [ebp+0FFFFFBF4h], 61h
0x05af30: X86 mov word ptr [ebp+0FFFFFBF6h], 76h
0x05af48: X86 mov word ptr [ebp+0FFFFFBF8h], 69h
0x05af60: X86 mov word ptr [ebp+0FFFFFBFAh], di
0x05af78: X86 mov word ptr [ebp+0FFFFFBFCh], 72h
0x05af90: X86 mov word ptr [ebp+0FFFFFBFEh], 41h
0x05afa8: X86 mov word ptr [ebp+0FFFFFC00h], 64h
0x05afc0: X86 mov word ptr [ebp+0FFFFFC02h], 6Dh
0x05afd8: X86 mov word ptr [ebp+0FFFFFC04h], 69h
0x05aff0: X86 mov word ptr [ebp+0FFFFFC06h], 6Eh
0x05b008: X86JUMPOUT call dword ptr [eax+1Ch]
0x05b020: X86 test eax, eax
0x05b038: JNZ VM[0x05a738] (fallthrough VM[0x05b050])
0x05b050: X86 cmp dword ptr [ebp+0FFFFFFF0h], eax
0x05b068: JZ VM[0x05b0b0] (fallthrough VM[0x05b080])
0x05b080: X86 cmp dword ptr [ebp+0FFFFFFF0h], 5h
0x05b098: JNZ VM[0x05b0c8] (fallthrough VM[0x05b0b0])
0x05b0b0: X86 mov dword ptr [ebp+0FFFFFFE8h], 1h
0x05b0c8: MOV SCRATCH, EBP
0x05b0f8: ADD SCRATCH, 0xfffffffc
0x05b110: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05b128: PUSH SCRATCH
0x05b140: MOV SCRATCH, 0x41ff2c
0x05b170: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05b188: MOV EAX, SCRATCH
0x05b1a0: X86JUMPOUT call dword ptr [eax+24h]
0x05b1b8: X86 cmp dword ptr [ebp+0FFFFFFE8h], 1h
0x05b1d0: JZ VM[0x05b218] (fallthrough VM[0x05b1e8])
0x05b1e8: X86 xor eax, eax
0x05b200: CRASH
0x05b218: X86 xor eax, eax
0x05b230: X86 inc eax
0x05b248: X86 pop edi
0x05b260: X86 pop esi
0x05b278: X86 pop ebx
0x05b290: X86 leave 
0x05b2a8: X86 ret 
0x05b2c0: MOV SCRATCH, 0x000044
0x05b2d8: PUSH SCRATCH
0x05b2f0: MOV SCRATCH, EBP
0x05b320: ADD SCRATCH, 0xfffffef4
0x05b338: MOV EAX, SCRATCH
0x05b350: X86 push esi
0x05b380: X86 push eax
0x05b3b0: X86CALLOUT 0x40ae80
0x05b3c8: X86 xor eax, eax
0x05b3e0: MOV SCRATCH, EBP
0x05b410: ADD SCRATCH, 0xffffffbc
0x05b428: MOV EDI, SCRATCH
0x05b440: X86 stosd dword ptr es:[edi]
0x05b458: X86 stosd dword ptr es:[edi]
0x05b470: X86 stosd dword ptr es:[edi]
0x05b488: X86 add esp, 0Ch
0x05b4a0: X86 stosd dword ptr es:[edi]
0x05b4b8: X86CALLOUT 0x40a19a
0x05b4d0: X86 test eax, eax
0x05b4e8: JZ VM[0x060738] (fallthrough VM[0x05b500])
0x05b500: X86CALLOUT 0x409f2b
0x05b518: X86 test eax, eax
0x05b530: JZ VM[0x05b590] (fallthrough VM[0x05b548])
0x05b548: X86CALLOUT 0x40a07c
0x05b560: X86 test eax, eax
0x05b578: JNZ VM[0x060708] (fallthrough VM[0x05b590])
0x05b590: X86 push ebx
0x05b5c0: X86 mov ebx, 208h
0x05b5d8: X86 push ebx
0x05b608: MOV SCRATCH, EBP
0x05b638: ADD SCRATCH, 0xfffffcec
0x05b650: MOV EAX, SCRATCH
0x05b668: X86 push esi
0x05b698: X86 push eax
0x05b6c8: X86CALLOUT 0x40ae80
0x05b6e0: X86 add esp, 0Ch
0x05b6f8: MOV SCRATCH, 0x00006c
0x05b710: PUSH SCRATCH
0x05b728: X86 pop eax
0x05b740: X86 mov word ptr [ebp+0FFFFFCF2h], ax
0x05b758: X86 mov word ptr [ebp+0FFFFFCF4h], ax
0x05b770: X86 mov word ptr [ebp+0FFFFFCFEh], ax
0x05b788: X86 mov word ptr [ebp+0FFFFFD00h], ax
0x05b7a0: MOV SCRATCH, EBP
0x05b7d0: ADD SCRATCH, 0xfffffcec
0x05b7e8: MOV EAX, SCRATCH
0x05b800: X86 push eax
0x05b830: MOV SCRATCH, 0x41ff38
0x05b860: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05b878: MOV EAX, SCRATCH
0x05b890: X86 mov word ptr [ebp+0FFFFFCECh], 73h
0x05b8a8: X86 mov word ptr [ebp+0FFFFFCEEh], 68h
0x05b8c0: X86 mov word ptr [ebp+0FFFFFCF0h], 65h
0x05b8d8: X86 mov word ptr [ebp+0FFFFFCF6h], 33h
0x05b8f0: X86 mov word ptr [ebp+0FFFFFCF8h], 32h
0x05b908: X86 mov word ptr [ebp+0FFFFFCFAh], 2Eh
0x05b920: X86 mov word ptr [ebp+0FFFFFCFCh], 64h
0x05b938: X86JUMPOUT call dword ptr [eax+6Ch]
0x05b950: MOV SCRATCH, 0xbdb9a0c8
0x05b968: PUSH SCRATCH
0x05b980: X86 push eax
0x05b9b0: X86CALLOUT 0x407ff5
0x05b9c8: X86 push ebx
0x05b9f8: MOV SCRATCH, EBP
0x05ba28: ADD SCRATCH, 0xffffff8c
0x05ba40: MOV DWORD PTR [SCRATCH], EAX
0x05ba58: MOV SCRATCH, EBP
0x05ba88: ADD SCRATCH, 0xfffffcec
0x05baa0: MOV EAX, SCRATCH
0x05bab8: X86 push esi
0x05bae8: X86 push eax
0x05bb18: X86CALLOUT 0x40ae80
0x05bb30: X86 push ebx
0x05bb60: MOV SCRATCH, EBP
0x05bb90: ADD SCRATCH, 0xfffff4cc
0x05bba8: MOV EAX, SCRATCH
0x05bbc0: X86 push esi
0x05bbf0: X86 push eax
0x05bc20: X86CALLOUT 0x40ae80
0x05bc38: X86 add esp, 18h
0x05bc50: X86 mov edi, 104h
0x05bc68: X86 push edi
0x05bc98: MOV SCRATCH, EBP
0x05bcc8: ADD SCRATCH, 0xfffff4cc
0x05bce0: MOV EAX, SCRATCH
0x05bcf8: X86 push eax
0x05bd28: MOV SCRATCH, 0x41ff38
0x05bd58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05bd70: MOV EAX, SCRATCH
0x05bd88: X86 push esi
0x05bdb8: X86JUMPOUT call dword ptr [eax+48h]
0x05bdd0: MOV SCRATCH, 0x00003c
0x05bde8: PUSH SCRATCH
0x05be00: MOV SCRATCH, EBP
0x05be30: ADD SCRATCH, 0xffffff50
0x05be48: MOV EAX, SCRATCH
0x05be60: X86 push esi
0x05be90: X86 push eax
0x05bec0: X86CALLOUT 0x40ae80
0x05bed8: X86 push ebx
0x05bf08: MOV SCRATCH, EBP
0x05bf38: ADD SCRATCH, 0xfffff6d4
0x05bf50: MOV EAX, SCRATCH
0x05bf68: X86 push esi
0x05bf98: X86 push eax
0x05bfc8: X86CALLOUT 0x40ae80
0x05bfe0: X86 add esp, 18h
0x05bff8: X86 push edi
0x05c028: MOV SCRATCH, EBP
0x05c058: ADD SCRATCH, 0xfffff6d4
0x05c070: MOV EAX, SCRATCH
0x05c088: X86 push eax
0x05c0b8: MOV SCRATCH, 0x41ff38
0x05c0e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05c100: MOV EAX, SCRATCH
0x05c118: X86JUMPOUT call dword ptr [eax+94h]
0x05c130: X86 push ebx
0x05c160: MOV SCRATCH, EBP
0x05c190: ADD SCRATCH, 0xfffffae4
0x05c1a8: MOV EAX, SCRATCH
0x05c1c0: X86 push esi
0x05c1f0: X86 push eax
0x05c220: X86CALLOUT 0x40ae80
0x05c238: X86 add esp, 0Ch
0x05c250: X86 mov word ptr [ebp+0FFFFFAE4h], 5Ch
0x05c268: X86 mov word ptr [ebp+0FFFFFAE6h], 70h
0x05c280: X86 mov word ptr [ebp+0FFFFFAE8h], 72h
0x05c298: X86 mov word ptr [ebp+0FFFFFAEAh], 69h
0x05c2b0: X86 mov word ptr [ebp+0FFFFFAECh], 6Eh
0x05c2c8: X86 mov word ptr [ebp+0FFFFFAEEh], 74h
0x05c2e0: X86 mov word ptr [ebp+0FFFFFAF0h], 75h
0x05c2f8: X86 mov word ptr [ebp+0FFFFFAF2h], 69h
0x05c310: X86 mov word ptr [ebp+0FFFFFAF4h], 2Eh
0x05c328: X86 mov word ptr [ebp+0FFFFFAF6h], 65h
0x05c340: X86 mov word ptr [ebp+0FFFFFAF8h], 78h
0x05c358: X86 mov word ptr [ebp+0FFFFFAFAh], 65h
0x05c370: MOV SCRATCH, EBP
0x05c3a0: ADD SCRATCH, 0xfffffae4
0x05c3b8: MOV EAX, SCRATCH
0x05c3d0: X86 mov ecx, eax
0x05c400: X86 mov dx, word ptr [eax]
0x05c418: X86 inc eax
0x05c430: X86 inc eax
0x05c448: X86 cmp dx, si
0x05c460: JNZ VM[0x05c400] (fallthrough VM[0x05c478])
0x05c478: X86 sub eax, ecx
0x05c490: MOV SCRATCH, EBP
0x05c4c0: ADD SCRATCH, 0xfffff6d4
0x05c4d8: MOV EDI, SCRATCH
0x05c4f0: X86 dec edi
0x05c508: X86 mov edx, ecx
0x05c538: X86 dec edi
0x05c550: X86 mov cx, word ptr [edi+2h]
0x05c568: X86 inc edi
0x05c580: X86 inc edi
0x05c598: X86 cmp cx, si
0x05c5b0: JNZ VM[0x05c550] (fallthrough VM[0x05c5c8])
0x05c5c8: X86 mov ecx, eax
0x05c5f8: X86 shr ecx, 2h
0x05c610: X86 mov esi, edx
0x05c640: X86 [rep] movsd dword ptr [esi], dword ptr es:[edi]
0x05c658: X86 mov ecx, eax
0x05c688: X86 and ecx, 3h
0x05c6a0: X86 [rep] movsb byte ptr [esi], byte ptr es:[edi]
0x05c6b8: X86 push ebx
0x05c6e8: X86 xor esi, esi
0x05c700: MOV SCRATCH, EBP
0x05c730: ADD SCRATCH, 0xfffff8dc
0x05c748: MOV EAX, SCRATCH
0x05c760: X86 push esi
0x05c790: X86 push eax
0x05c7c0: X86CALLOUT 0x40ae80
0x05c7d8: MOV SCRATCH, EBP
0x05c808: ADD SCRATCH, 0xfffff8dc
0x05c820: MOV EAX, SCRATCH
0x05c838: MOV SCRATCH, EBP
0x05c868: ADD SCRATCH, 0xffffff5c
0x05c880: MOV DWORD PTR [SCRATCH], EAX
0x05c898: MOV SCRATCH, EBP
0x05c8c8: ADD SCRATCH, 0xfffff6d4
0x05c8e0: MOV EAX, SCRATCH
0x05c8f8: MOV SCRATCH, EBP
0x05c928: ADD SCRATCH, 0xffffff60
0x05c940: MOV DWORD PTR [SCRATCH], EAX
0x05c958: X86 add esp, 0Ch
0x05c970: MOV SCRATCH, EBP
0x05c9a0: ADD SCRATCH, 0xffffff50
0x05c9b8: MOV EAX, SCRATCH
0x05c9d0: X86 push eax
0x05ca00: X86 mov word ptr [ebp+0FFFFF8DCh], 6Fh
0x05ca18: X86 mov word ptr [ebp+0FFFFF8DEh], 70h
0x05ca30: X86 mov word ptr [ebp+0FFFFF8E0h], 65h
0x05ca48: X86 mov word ptr [ebp+0FFFFF8E2h], 6Eh
0x05ca60: X86 mov dword ptr [ebp+0FFFFFF50h], 3Ch
0x05ca78: X86 mov dword ptr [ebp+0FFFFFF54h], 40h
0x05ca90: X86JUMPOUT call dword ptr [ebp+0FFFFFF8Ch]
0x05caa8: X86 push ebx
0x05cad8: X86 mov edi, eax
0x05cb08: MOV SCRATCH, EBP
0x05cb38: ADD SCRATCH, 0xfffff8dc
0x05cb50: MOV EAX, SCRATCH
0x05cb68: X86 push esi
0x05cb98: X86 push eax
0x05cbc8: X86CALLOUT 0x40ae80
0x05cbe0: X86 push ebx
0x05cc10: MOV SCRATCH, EBP
0x05cc40: ADD SCRATCH, 0xfffff6d4
0x05cc58: MOV EAX, SCRATCH
0x05cc70: X86 push esi
0x05cca0: X86 push eax
0x05ccd0: X86CALLOUT 0x40ae80
0x05cce8: X86 add esp, 18h
0x05cd00: X86 cmp edi, esi
0x05cd18: JZ VM[0x05fca0] (fallthrough VM[0x05cd30])
0x05cd30: MOV SCRATCH, EBP
0x05cd60: ADD SCRATCH, 0xffffffdc
0x05cd78: MOV EAX, SCRATCH
0x05cd90: X86 push eax
0x05cdc0: MOV SCRATCH, 0x000018
0x05cdd8: PUSH SCRATCH
0x05cdf0: X86 pop ebx
0x05ce08: X86 push ebx
0x05ce38: MOV SCRATCH, EBP
0x05ce68: ADD SCRATCH, 0xffffff38
0x05ce80: MOV EAX, SCRATCH
0x05ce98: X86 push eax
0x05cec8: MOV SCRATCH, 0x41ff34
0x05cef8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05cf10: MOV EAX, SCRATCH
0x05cf28: X86 push esi
0x05cf58: MOV SCRATCH, EBP
0x05cf88: ADD SCRATCH, 0xffffff88
0x05cfa0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05cfb8: PUSH SCRATCH
0x05cfd0: X86JUMPOUT call dword ptr [eax+4h]
0x05cfe8: X86 test eax, eax
0x05d000: JNZ VM[0x05fca0] (fallthrough VM[0x05d018])
0x05d018: MOV SCRATCH, EBP
0x05d048: ADD SCRATCH, 0xffffff48
0x05d060: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05d078: MOV EAX, SCRATCH
0x05d090: MOV SCRATCH, EBP
0x05d0c0: ADD SCRATCH, 0xffffff9c
0x05d0d8: MOV DWORD PTR [SCRATCH], EAX
0x05d0f0: MOV SCRATCH, EBP
0x05d120: ADD SCRATCH, 0xffffff9c
0x05d138: MOV EAX, SCRATCH
0x05d150: X86 push eax
0x05d180: MOV SCRATCH, EBP
0x05d1b0: ADD SCRATCH, 0xffffffa4
0x05d1c8: MOV EAX, SCRATCH
0x05d1e0: X86 push eax
0x05d210: MOV SCRATCH, 0x001000
0x05d228: PUSH SCRATCH
0x05d240: MOV SCRATCH, EBP
0x05d270: ADD SCRATCH, 0xfffffff0
0x05d288: MOV EAX, SCRATCH
0x05d2a0: X86 push eax
0x05d2d0: MOV SCRATCH, 0x41ff34
0x05d300: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05d318: MOV EAX, SCRATCH
0x05d330: MOV SCRATCH, EBP
0x05d360: ADD SCRATCH, 0xffffffa0
0x05d378: MOV DWORD PTR [SCRATCH], ESI
0x05d390: MOV SCRATCH, EBP
0x05d3c0: ADD SCRATCH, 0xffffffa4
0x05d3d8: MOV DWORD PTR [SCRATCH], EBX
0x05d3f0: MOV SCRATCH, EBP
0x05d420: ADD SCRATCH, 0xffffffa8
0x05d438: MOV DWORD PTR [SCRATCH], ESI
0x05d450: MOV SCRATCH, EBP
0x05d480: ADD SCRATCH, 0xffffffb0
0x05d498: MOV DWORD PTR [SCRATCH], ESI
0x05d4b0: MOV SCRATCH, EBP
0x05d4e0: ADD SCRATCH, 0xffffffac
0x05d4f8: MOV DWORD PTR [SCRATCH], ESI
0x05d510: MOV SCRATCH, EBP
0x05d540: ADD SCRATCH, 0xffffffb4
0x05d558: MOV DWORD PTR [SCRATCH], ESI
0x05d570: MOV SCRATCH, EBP
0x05d5a0: ADD SCRATCH, 0xffffffb8
0x05d5b8: MOV DWORD PTR [SCRATCH], ESI
0x05d5d0: X86JUMPOUT call dword ptr [eax+50h]
0x05d5e8: X86 test eax, eax
0x05d600: JNZ VM[0x05fca0] (fallthrough VM[0x05d618])
0x05d618: MOV SCRATCH, EBP
0x05d648: ADD SCRATCH, 0xfffffffc
0x05d660: MOV EAX, SCRATCH
0x05d678: X86 push eax
0x05d6a8: MOV SCRATCH, 0x41ff34
0x05d6d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05d6f0: MOV EAX, SCRATCH
0x05d708: MOV SCRATCH, 0x00000e
0x05d720: PUSH SCRATCH
0x05d738: MOV SCRATCH, EBP
0x05d768: ADD SCRATCH, 0xfffffff0
0x05d780: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05d798: PUSH SCRATCH
0x05d7b0: X86JUMPOUT call dword ptr [eax+6Ch]
0x05d7c8: X86 test eax, eax
0x05d7e0: JNZ VM[0x05fca0] (fallthrough VM[0x05d7f8])
0x05d7f8: MOV SCRATCH, EBP
0x05d828: ADD SCRATCH, 0xfffffff4
0x05d840: MOV EAX, SCRATCH
0x05d858: X86 push eax
0x05d888: MOV SCRATCH, 0x41ff34
0x05d8b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05d8d0: MOV EAX, SCRATCH
0x05d8e8: X86 push esi
0x05d918: X86 push esi
0x05d948: X86 push esi
0x05d978: MOV SCRATCH, 0x000004
0x05d990: PUSH SCRATCH
0x05d9a8: MOV SCRATCH, EBP
0x05d9d8: ADD SCRATCH, 0xfffffffc
0x05d9f0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05da08: PUSH SCRATCH
0x05da20: X86JUMPOUT call dword ptr [eax+70h]
0x05da38: X86 test eax, eax
0x05da50: JNZ VM[0x05fca0] (fallthrough VM[0x05da68])
0x05da68: MOV SCRATCH, EBP
0x05da98: ADD SCRATCH, 0xffffff90
0x05dab0: MOV EDI, SCRATCH
0x05dac8: X86 stosd dword ptr es:[edi]
0x05dae0: X86 stosd dword ptr es:[edi]
0x05daf8: MOV SCRATCH, 0x000002
0x05db10: PUSH SCRATCH
0x05db28: X86 stosd dword ptr es:[edi]
0x05db40: X86 pop eax
0x05db58: MOV SCRATCH, EBP
0x05db88: ADD SCRATCH, 0xffffff90
0x05dba0: MOV ECX, SCRATCH
0x05dbb8: MOV SCRATCH, EBP
0x05dbe8: ADD SCRATCH, 0xffffffb8
0x05dc00: MOV DWORD PTR [SCRATCH], ECX
0x05dc18: MOV SCRATCH, EBP
0x05dc48: ADD SCRATCH, 0xfffffff8
0x05dc60: MOV ECX, SCRATCH
0x05dc78: X86 push ecx
0x05dca8: X86 push eax
0x05dcd8: MOV SCRATCH, EBP
0x05dd08: ADD SCRATCH, 0xffffff94
0x05dd20: MOV DWORD PTR [SCRATCH], EAX
0x05dd38: X86 push esi
0x05dd68: MOV SCRATCH, EBP
0x05dd98: ADD SCRATCH, 0xffffffa4
0x05ddb0: MOV EAX, SCRATCH
0x05ddc8: X86 push eax
0x05ddf8: MOV SCRATCH, 0x41ff34
0x05de28: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05de40: MOV EAX, SCRATCH
0x05de58: MOV SCRATCH, EBP
0x05de88: ADD SCRATCH, 0xffffffa4
0x05dea0: MOV DWORD PTR [SCRATCH], EBX
0x05deb8: X86 mov ebx, 2000000h
0x05ded0: X86 push ebx
0x05df00: MOV SCRATCH, EBP
0x05df30: ADD SCRATCH, 0xfffffff4
0x05df48: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05df60: PUSH SCRATCH
0x05df78: X86 mov dword ptr [ebp+0FFFFFF90h], 0Ch
0x05df90: MOV SCRATCH, EBP
0x05dfc0: ADD SCRATCH, 0xffffffa8
0x05dfd8: MOV DWORD PTR [SCRATCH], ESI
0x05dff0: MOV SCRATCH, EBP
0x05e020: ADD SCRATCH, 0xffffffb0
0x05e038: MOV DWORD PTR [SCRATCH], ESI
0x05e050: MOV SCRATCH, EBP
0x05e080: ADD SCRATCH, 0xffffffac
0x05e098: MOV DWORD PTR [SCRATCH], ESI
0x05e0b0: MOV SCRATCH, EBP
0x05e0e0: ADD SCRATCH, 0xffffffb4
0x05e0f8: MOV DWORD PTR [SCRATCH], ESI
0x05e110: X86JUMPOUT call dword ptr [eax+74h]
0x05e128: X86 test eax, eax
0x05e140: JNZ VM[0x05fca0] (fallthrough VM[0x05e158])
0x05e158: MOV SCRATCH, EBP
0x05e188: ADD SCRATCH, 0xffffffcc
0x05e1a0: MOV EDI, SCRATCH
0x05e1b8: X86 stosd dword ptr es:[edi]
0x05e1d0: X86 stosd dword ptr es:[edi]
0x05e1e8: MOV SCRATCH, EBP
0x05e218: ADD SCRATCH, 0xffffffec
0x05e230: MOV EAX, SCRATCH
0x05e248: X86 push eax
0x05e278: X86 push esi
0x05e2a8: X86 push esi
0x05e2d8: X86 push esi
0x05e308: X86 push esi
0x05e338: X86 push esi
0x05e368: X86 push esi
0x05e398: X86 push esi
0x05e3c8: MOV SCRATCH, 0x002000
0x05e3e0: PUSH SCRATCH
0x05e3f8: MOV SCRATCH, 0x000001
0x05e410: PUSH SCRATCH
0x05e428: MOV SCRATCH, EBP
0x05e458: ADD SCRATCH, 0xffffffe4
0x05e470: MOV EAX, SCRATCH
0x05e488: X86 push eax
0x05e4b8: MOV SCRATCH, 0x41ff2c
0x05e4e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e500: MOV EAX, SCRATCH
0x05e518: X86JUMPOUT call dword ptr [eax+8h]
0x05e530: MOV SCRATCH, EBP
0x05e560: ADD SCRATCH, 0xffffffec
0x05e578: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e590: MOV EAX, SCRATCH
0x05e5a8: MOV SCRATCH, 0x41ff34
0x05e5d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e5f0: MOV EDI, SCRATCH
0x05e608: MOV SCRATCH, EBP
0x05e638: ADD SCRATCH, 0xffffffcc
0x05e650: MOV DWORD PTR [SCRATCH], EAX
0x05e668: X86 push eax
0x05e698: MOV SCRATCH, 0x41ff2c
0x05e6c8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e6e0: MOV EAX, SCRATCH
0x05e6f8: X86 mov dword ptr [ebp+0FFFFFFD0h], 20h
0x05e710: X86 add edi, 78h
0x05e728: X86JUMPOUT call dword ptr [eax+2Ch]
0x05e740: X86 add eax, 8h
0x05e758: X86 push eax
0x05e788: MOV SCRATCH, EBP
0x05e7b8: ADD SCRATCH, 0xffffffcc
0x05e7d0: MOV EAX, SCRATCH
0x05e7e8: X86 push eax
0x05e818: MOV SCRATCH, 0x000019
0x05e830: PUSH SCRATCH
0x05e848: MOV SCRATCH, EBP
0x05e878: ADD SCRATCH, 0xfffffff8
0x05e890: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e8a8: PUSH SCRATCH
0x05e8c0: X86JUMPOUT call dword ptr [edi]
0x05e8d8: MOV SCRATCH, EBP
0x05e908: ADD SCRATCH, 0xffffffec
0x05e920: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e938: PUSH SCRATCH
0x05e950: X86 mov edi, eax
0x05e980: MOV SCRATCH, 0x41ff2c
0x05e9b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05e9c8: MOV EAX, SCRATCH
0x05e9e0: X86JUMPOUT call dword ptr [eax+14h]
0x05e9f8: X86 cmp edi, esi
0x05ea10: JNZ VM[0x05fca0] (fallthrough VM[0x05ea28])
0x05ea28: MOV SCRATCH, 0x000004
0x05ea40: PUSH SCRATCH
0x05ea58: MOV SCRATCH, EBP
0x05ea88: ADD SCRATCH, 0xfffffff8
0x05eaa0: MOV EAX, SCRATCH
0x05eab8: X86 push eax
0x05eae8: MOV SCRATCH, 0x41ff34
0x05eb18: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05eb30: MOV EAX, SCRATCH
0x05eb48: MOV SCRATCH, 0x000005
0x05eb60: PUSH SCRATCH
0x05eb78: MOV SCRATCH, 0xfffffffe
0x05eb90: PUSH SCRATCH
0x05eba8: X86JUMPOUT call dword ptr [eax+8h]
0x05ebc0: X86 test eax, eax
0x05ebd8: JNZ VM[0x05fca0] (fallthrough VM[0x05ebf0])
0x05ebf0: X86 cmp dword ptr [ebp+8h], esi
0x05ec08: JZ VM[0x05ed10] (fallthrough VM[0x05ec20])
0x05ec20: MOV SCRATCH, EBP
0x05ec50: ADD SCRATCH, 0x000008
0x05ec68: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05ec80: PUSH SCRATCH
0x05ec98: MOV SCRATCH, 0x41ff34
0x05ecc8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05ece0: MOV EAX, SCRATCH
0x05ecf8: X86JUMPOUT call dword ptr [eax+3Ch]
0x05ed10: MOV SCRATCH, EBP
0x05ed40: ADD SCRATCH, 0xffffffbc
0x05ed58: MOV EAX, SCRATCH
0x05ed70: X86 push eax
0x05eda0: MOV SCRATCH, EBP
0x05edd0: ADD SCRATCH, 0xfffffef4
0x05ede8: MOV EAX, SCRATCH
0x05ee00: X86 push eax
0x05ee30: X86 push esi
0x05ee60: X86 push esi
0x05ee90: X86 push esi
0x05eec0: MOV SCRATCH, EBP
0x05eef0: ADD SCRATCH, 0xfffff4cc
0x05ef08: MOV EAX, SCRATCH
0x05ef20: X86 push eax
0x05ef50: X86 push esi
0x05ef80: MOV SCRATCH, 0x000002
0x05ef98: PUSH SCRATCH
0x05efb0: X86 push esi
0x05efe0: X86 mov eax, 4011ECh
0x05eff8: X86 push eax
0x05f028: X86 push eax
0x05f058: MOV SCRATCH, 0x41ff2c
0x05f088: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f0a0: MOV EAX, SCRATCH
0x05f0b8: X86JUMPOUT call dword ptr [eax+28h]
0x05f0d0: X86 cmp dword ptr [ebp+0FFFFFF88h], esi
0x05f0e8: JZ VM[0x05f280] (fallthrough VM[0x05f100])
0x05f100: MOV SCRATCH, 0x41ff34
0x05f130: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f148: MOV EAX, SCRATCH
0x05f160: X86 push esi
0x05f190: MOV SCRATCH, EBP
0x05f1c0: ADD SCRATCH, 0xffffff88
0x05f1d8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f1f0: PUSH SCRATCH
0x05f208: X86JUMPOUT call dword ptr [eax+44h]
0x05f220: MOV SCRATCH, EBP
0x05f250: ADD SCRATCH, 0xffffff88
0x05f268: MOV DWORD PTR [SCRATCH], ESI
0x05f280: MOV SCRATCH, EBP
0x05f2b0: ADD SCRATCH, 0xffffffe0
0x05f2c8: MOV EAX, SCRATCH
0x05f2e0: X86 push eax
0x05f310: MOV SCRATCH, 0x41ff34
0x05f340: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f358: MOV EAX, SCRATCH
0x05f370: X86 push ebx
0x05f3a0: MOV SCRATCH, EBP
0x05f3d0: ADD SCRATCH, 0xffffffbc
0x05f3e8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f400: PUSH SCRATCH
0x05f418: X86JUMPOUT call dword ptr [eax+6Ch]
0x05f430: X86 cmp eax, 0C0000022h
0x05f448: JZ VM[0x05fb50] (fallthrough VM[0x05f460])
0x05f460: X86 cmp eax, esi
0x05f478: JNZ VM[0x05fca0] (fallthrough VM[0x05f490])
0x05f490: MOV SCRATCH, EBP
0x05f4c0: ADD SCRATCH, 0xffffffdc
0x05f4d8: MOV EAX, SCRATCH
0x05f4f0: X86 push eax
0x05f520: MOV SCRATCH, 0x000004
0x05f538: PUSH SCRATCH
0x05f550: MOV SCRATCH, EBP
0x05f580: ADD SCRATCH, 0xffffffd4
0x05f598: MOV EAX, SCRATCH
0x05f5b0: X86 push eax
0x05f5e0: MOV SCRATCH, 0x41ff34
0x05f610: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f628: MOV EAX, SCRATCH
0x05f640: MOV SCRATCH, 0x000014
0x05f658: PUSH SCRATCH
0x05f670: MOV SCRATCH, EBP
0x05f6a0: ADD SCRATCH, 0xffffffe0
0x05f6b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f6d0: PUSH SCRATCH
0x05f6e8: X86JUMPOUT call dword ptr [eax+7Ch]
0x05f700: X86 test eax, eax
0x05f718: JNZ VM[0x05fca0] (fallthrough VM[0x05f730])
0x05f730: MOV SCRATCH, EBP
0x05f760: ADD SCRATCH, 0xffffffdc
0x05f778: MOV EAX, SCRATCH
0x05f790: X86 push eax
0x05f7c0: MOV SCRATCH, 0x000004
0x05f7d8: PUSH SCRATCH
0x05f7f0: MOV SCRATCH, EBP
0x05f820: ADD SCRATCH, 0xffffffd8
0x05f838: MOV EAX, SCRATCH
0x05f850: X86 push eax
0x05f880: MOV SCRATCH, 0x41ff34
0x05f8b0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f8c8: MOV EAX, SCRATCH
0x05f8e0: MOV SCRATCH, 0x000012
0x05f8f8: PUSH SCRATCH
0x05f910: MOV SCRATCH, EBP
0x05f940: ADD SCRATCH, 0xffffffe0
0x05f958: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05f970: PUSH SCRATCH
0x05f988: X86JUMPOUT call dword ptr [eax+7Ch]
0x05f9a0: X86 test eax, eax
0x05f9b8: JNZ VM[0x05fca0] (fallthrough VM[0x05f9d0])
0x05f9d0: X86 cmp dword ptr [ebp+0FFFFFFD8h], 2h
0x05f9e8: JZ VM[0x05fb50] (fallthrough VM[0x05fa00])
0x05fa00: X86 cmp dword ptr [ebp+0FFFFFFD4h], esi
0x05fa18: JNZ VM[0x05fb50] (fallthrough VM[0x05fa30])
0x05fa30: MOV SCRATCH, 0x41ff34
0x05fa60: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fa78: MOV EAX, SCRATCH
0x05fa90: X86 push esi
0x05fac0: MOV SCRATCH, EBP
0x05faf0: ADD SCRATCH, 0xffffffbc
0x05fb08: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fb20: PUSH SCRATCH
0x05fb38: X86JUMPOUT call dword ptr [eax+44h]
0x05fb50: MOV SCRATCH, 0x41ff34
0x05fb80: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fb98: MOV EAX, SCRATCH
0x05fbb0: X86 push esi
0x05fbe0: X86 push esi
0x05fc10: MOV SCRATCH, EBP
0x05fc40: ADD SCRATCH, 0xffffffbc
0x05fc58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fc70: PUSH SCRATCH
0x05fc88: X86JUMPOUT call dword ptr [eax+80h]
0x05fca0: X86 cmp dword ptr [ebp+0FFFFFFC0h], esi
0x05fcb8: X86 pop ebx
0x05fcd0: JZ VM[0x05fdd8] (fallthrough VM[0x05fce8])
0x05fce8: MOV SCRATCH, EBP
0x05fd18: ADD SCRATCH, 0xffffffc0
0x05fd30: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fd48: PUSH SCRATCH
0x05fd60: MOV SCRATCH, 0x41ff34
0x05fd90: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fda8: MOV EAX, SCRATCH
0x05fdc0: X86JUMPOUT call dword ptr [eax+3Ch]
0x05fdd8: X86 cmp dword ptr [ebp+0FFFFFFBCh], esi
0x05fdf0: JZ VM[0x05fef8] (fallthrough VM[0x05fe08])
0x05fe08: MOV SCRATCH, EBP
0x05fe38: ADD SCRATCH, 0xffffffbc
0x05fe50: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fe68: PUSH SCRATCH
0x05fe80: MOV SCRATCH, 0x41ff34
0x05feb0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05fec8: MOV EAX, SCRATCH
0x05fee0: X86JUMPOUT call dword ptr [eax+3Ch]
0x05fef8: X86 cmp dword ptr [ebp+0FFFFFF88h], esi
0x05ff10: JZ VM[0x060048] (fallthrough VM[0x05ff28])
0x05ff28: MOV SCRATCH, 0x41ff34
0x05ff58: MOV SCRATCH, DWORD PTR [SCRATCH]
0x05ff70: MOV EAX, SCRATCH
0x05ff88: X86 push esi
0x05ffb8: MOV SCRATCH, EBP
0x05ffe8: ADD SCRATCH, 0xffffff88
0x060000: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060018: PUSH SCRATCH
0x060030: X86JUMPOUT call dword ptr [eax+44h]
0x060048: X86 cmp dword ptr [ebp+0FFFFFFF8h], esi
0x060060: JZ VM[0x060168] (fallthrough VM[0x060078])
0x060078: MOV SCRATCH, EBP
0x0600a8: ADD SCRATCH, 0xfffffff8
0x0600c0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0600d8: PUSH SCRATCH
0x0600f0: MOV SCRATCH, 0x41ff34
0x060120: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060138: MOV EAX, SCRATCH
0x060150: X86JUMPOUT call dword ptr [eax+3Ch]
0x060168: X86 cmp dword ptr [ebp+0FFFFFFF4h], esi
0x060180: JZ VM[0x060288] (fallthrough VM[0x060198])
0x060198: MOV SCRATCH, EBP
0x0601c8: ADD SCRATCH, 0xfffffff4
0x0601e0: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0601f8: PUSH SCRATCH
0x060210: MOV SCRATCH, 0x41ff34
0x060240: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060258: MOV EAX, SCRATCH
0x060270: X86JUMPOUT call dword ptr [eax+3Ch]
0x060288: X86 cmp dword ptr [ebp+0FFFFFFFCh], esi
0x0602a0: JZ VM[0x0603a8] (fallthrough VM[0x0602b8])
0x0602b8: MOV SCRATCH, EBP
0x0602e8: ADD SCRATCH, 0xfffffffc
0x060300: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060318: PUSH SCRATCH
0x060330: MOV SCRATCH, 0x41ff34
0x060360: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060378: MOV EAX, SCRATCH
0x060390: X86JUMPOUT call dword ptr [eax+3Ch]
0x0603a8: X86 cmp dword ptr [ebp+0FFFFFFF0h], esi
0x0603c0: JZ VM[0x0604c8] (fallthrough VM[0x0603d8])
0x0603d8: MOV SCRATCH, EBP
0x060408: ADD SCRATCH, 0xfffffff0
0x060420: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060438: PUSH SCRATCH
0x060450: MOV SCRATCH, 0x41ff34
0x060480: MOV SCRATCH, DWORD PTR [SCRATCH]
0x060498: MOV EAX, SCRATCH
0x0604b0: X86JUMPOUT call dword ptr [eax+3Ch]
0x0604c8: MOV SCRATCH, 0x000004
0x0604e0: PUSH SCRATCH
0x0604f8: MOV SCRATCH, EBP
0x060528: ADD SCRATCH, 0xfffffffc
0x060540: MOV EAX, SCRATCH
0x060558: X86 push eax
0x060588: MOV SCRATCH, 0x41ff34
0x0605b8: MOV SCRATCH, DWORD PTR [SCRATCH]
0x0605d0: MOV EAX, SCRATCH
0x0605e8: MOV SCRATCH, 0x000005
0x060600: PUSH SCRATCH
0x060618: MOV SCRATCH, 0xfffffffe
0x060630: PUSH SCRATCH
0x060648: MOV SCRATCH, EBP
0x060678: ADD SCRATCH, 0xfffffffc
0x060690: MOV DWORD PTR [SCRATCH], ESI
0x0606a8: X86JUMPOUT call dword ptr [eax+8h]
0x0606c0: X86 push esi
0x0606f0: X86CALLOUT 0x408bde
0x060708: X86 xor eax, eax
0x060720: X86 inc eax
0x060738: X86 pop edi
0x060750: X86 pop esi
0x060768: X86 leave 
0x060768: X86 leave 