Function Graph 0Basic Block 0Opcode: 8b 54 24 08sub_804b0ef:Opcode: 8b 54 24 08mov     edxdword [esp+0x8]Opcode: 85 d2test    edxedxOpcode: 74 28je      0x804b11fBasic Block 1Opcode: c3retn    Basic Block 2Opcode: 8b 4c 24 04mov     ecxdword [esp+0x4]Opcode: 89 d0mov     eaxedxOpcode: c1 e8 14shr     eax0x14Opcode: 8a 84 01 0c 02 00 00mov     albyte [ecx+eax+0x20c]Opcode: 3c 02cmp     al0x2Opcode: 74 09je      0x804b114Basic Block 3Opcode: e9 d1 00 00 00jmp     0x804b1eaBasic Block 4Opcode: 3c 01cmp     al0x1Opcode: 75 0ajne     0x804b119Basic Block 5Opcode: 55push    ebpOpcode: 53push    ebxOpcode: 57push    ediOpcode: 56push    esiOpcode: 83 ec 0csub     esp0xcOpcode: 89 cemov     esiecxOpcode: f6 c2 07test    dl0x7Opcode: 0f 85 0c 01 00 00jne     0x804b308Basic Block 6Opcode: 84 c0test    alalOpcode: 75 02jne     0x804b11fBasic Block 7Opcode: e9 4c 02 00 00jmp     0x804b360Basic Block 8Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 c4 d0 04 08mov     dword [esp {var_1c}]data_804d0c4  {"BAD SMALL FREE: address is not a…"}Opcode: e8 03 02 00 00call    sub_804b51bOpcode: e8 03 02 00 00{ Does not return }Basic Block 9Opcode: 8d 7a f8lea     edi[edx-0x8]Opcode: 8b 47 04mov     eaxdword [edi+0x4]Opcode: a8 01test    al0x1Opcode: 0f 85 0e 01 00 00jne     0x804b318Basic Block 10Opcode: eb 01jmp     0x804b120Basic Block 11Opcode: 57push    ediOpcode: 56push    esiOpcode: 50push    eaxOpcode: 89 d6mov     esiedxOpcode: 89 cfmov     ediecxOpcode: 89 f0mov     eaxesiOpcode: 25 00 f0 ff ffand     eax0xfffff000Opcode: 0f b7 08movzx   ecxword [eax]Opcode: e8 58 01 00 00call    sub_804b4ceOpcode: 8b 0c 87mov     ecxdword [edi+eax*4]Opcode: 89 0emov     dword [esi]ecxOpcode: 89 34 87mov     dword [edi+eax*4]esiOpcode: 83 c4 04add     esp0x4 {var_8}Opcode: 5epop     esiOpcode: 5fpop     ediOpcode: a3 18 ef 04 08mov     dword [data_804ef18]eaxOpcode: 89 15 1c ef 04 08mov     dword [data_804ef1c]edxOpcode: 8b 04 24mov     eaxdword [esp {__return_addr}]Opcode: 31 d2xor     edxedx  {0x0}Opcode: 89 c1mov     ecxeaxOpcode: f7 35 4c ef 04 08div     dword [data_804ef4c]Opcode: b8 50 ef 04 08mov     eaxdata_804ef50Opcode: c1 e2 03shl     edx0x3Opcode: 8d 04 10lea     eax[eax+edx]Basic Block 12Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 f5 d0 04 08mov     dword [esp {var_1c}]data_804d0f5  {"BAD SMALL FREE: double free ptr=…"}Opcode: e8 f3 01 00 00call    sub_804b51bOpcode: e8 f3 01 00 00{ Does not return }Basic Block 13Opcode: 83 c0 f0add     eax0xfffffff0Opcode: 3d f1 ff 01 00cmp     eax0x1fff1Opcode: 0f 83 10 01 00 00jae     0x804b328Basic Block 14Opcode: 83 ec 1csub     esp0x1cOpcode: 89 d0mov     eaxedxOpcode: 25 ff 0f 00 00and     eax0xfffOpcode: 83 f8 08cmp     eax0x8Opcode: 0f 85 8f 00 00 00jne     0x804b1c2Basic Block 15Opcode: 8b 15 1c ef 04 08mov     edxdword [data_804ef1c]Opcode: a1 18 ef 04 08mov     eaxdword [data_804ef18]Opcode: c3retn    Basic Block 16Opcode: 8b 00mov     eaxdword [eax]Opcode: 83 f8 00cmp     eax0x0Opcode: 0f 84 e8 cc ff ffje      0x80480a0Basic Block 17Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 1b d1 04 08mov     dword [esp {var_1c}]data_804d11b  {"BAD SMALL FREE: corrupted size p…"}Opcode: e8 e3 01 00 00call    sub_804b51bOpcode: e8 e3 01 00 00{ Does not return }Basic Block 18Opcode: 8b 0fmov     ecxdword [edi]Opcode: 85 c9test    ecxecxOpcode: 74 11je      0x804b22fBasic Block 19Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 0c d2 04 08mov     dword [esp {var_1c}]data_804d20c  {"BAD FREE: large address is not a…"}Opcode: e8 49 03 00 00call    sub_804b51bOpcode: e8 49 03 00 00{ Does not return }Basic Block 20Opcode: 8b 42 f8mov     eaxdword [edx-0x8]Opcode: 39 c8cmp     eaxecxOpcode: 0f 85 94 00 00 00jne     0x804b1d2Basic Block 21Opcode: b8 01 00 00 00mov     eax0x1Opcode: bb ad 00 00 00mov     ebx0xadOpcode: cd 80int     0x80Opcode: cd 80{ Does not return }Basic Block 22Opcode: eb ecjmp     0x804b3a6Basic Block 23Opcode: 8b 5f 04mov     ebxdword [edi+0x4]Opcode: 01 fbadd     ebxediOpcode: 31 c0xor     eaxeax  {0x0}Opcode: 31 edxor     ebpebp  {0x0}Opcode: eb 10jmp     0x804b24aBasic Block 24Opcode: 8b 5f 04mov     ebxdword [edi+0x4]Opcode: 01 fbadd     ebxediOpcode: 31 c0xor     eaxeax  {0x0}Opcode: 89 fdmov     ebpediOpcode: 29 cdsub     ebpecxOpcode: 75 0fjne     0x804b23aBasic Block 25Opcode: 89 4c 24 0cmov     dword [esp+0xc {var_10}]ecxOpcode: 89 44 24 08mov     dword [esp+0x8 {var_14}]eaxOpcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 3d d2 04 08mov     dword [esp {var_1c}]data_804d23d  {"BAD FREE: wrong heap address ptr…"}Opcode: e8 31 03 00 00call    sub_804b51bOpcode: e8 31 03 00 00{ Does not return }Basic Block 26Opcode: 8b 42 fcmov     eaxdword [edx-0x4]Opcode: 8d 88 00 00 fe fflea     ecx[eax-0x20000]Opcode: 81 f9 ff 0f fe 7fcmp     ecx0x7ffe0fffOpcode: 77 5fja      0x804b1aeBasic Block 27Opcode: 3b 08cmp     ecxdword [eax]Opcode: 8d 40 04lea     eax[eax+0x4]Opcode: 74 0dje      0x804b3baBasic Block 28Opcode: 8b 0bmov     ecxdword [ebx]Opcode: 3b 4f 04cmp     ecxdword [edi+0x4]Opcode: 0f 85 f7 00 00 00jne     0x804b34cBasic Block 29Opcode: 8b 45 04mov     eaxdword [ebp+0x4]Opcode: 83 e0 feand     eax0xfffffffeOpcode: 3b 07cmp     eaxdword [edi]Opcode: 0f 85 f0 00 00 00jne     0x804b338Basic Block 30Opcode: 31 edxor     ebpebp  {0x0}Opcode: eb 1bjmp     0x804b24aBasic Block 31Opcode: 89 44 24 08mov     dword [esp+0x8 {var_14}]eaxOpcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 73 d2 04 08mov     dword [esp {var_1c}]data_804d273  {"BAD FREE: wrong block size ptr=%…"}Opcode: e8 59 03 00 00call    sub_804b51bOpcode: e8 59 03 00 00{ Does not return }Basic Block 32Opcode: 89 c1mov     ecxeaxOpcode: 81 e1 ff 0f 00 00and     ecx0xfffOpcode: 75 55jne     0x804b1aeBasic Block 33Opcode: 89 54 24 08mov     dword [esp+0x8 {var_14}]edxOpcode: 89 5c 24 04mov     dword [esp+0x4 {var_18}]ebxOpcode: c7 04 24 78 d1 04 08mov     dword [esp {var_1c}]data_804d178  {"BAD SMALL FREE: heap corruption …"}Opcode: e8 bb 01 00 00call    sub_804b51bOpcode: e8 bb 01 00 00{ Does not return }Basic Block 34Opcode: 84 c0test    alalOpcode: 74 29je      0x804b282Basic Block 35Opcode: 89 54 24 08mov     dword [esp+0x8 {var_14}]edxOpcode: 89 6c 24 04mov     dword [esp+0x4 {var_18}]ebpOpcode: c7 04 24 44 d1 04 08mov     dword [esp {var_1c}]data_804d144  {"BAD SMALL FREE: heap corruption …"}Opcode: e8 cf 01 00 00call    sub_804b51bOpcode: e8 cf 01 00 00{ Does not return }Basic Block 36Opcode: b0 01mov     al0x1Basic Block 37Opcode: 83 c2 f8add     edx0xfffffff8Opcode: 89 44 24 04mov     dword [esp+0x4 {var_18}]eaxOpcode: 89 14 24mov     dword [esp {var_1c}]edxOpcode: e8 d9 1c 00 00call    sub_804ce41Opcode: 83 c4 1cadd     esp0x1c {__return_addr}Opcode: a3 18 ef 04 08mov     dword [data_804ef18]eaxOpcode: 89 15 1c ef 04 08mov     dword [data_804ef1c]edxOpcode: 8b 04 24mov     eaxdword [esp {__return_addr}]Opcode: 31 d2xor     edxedx  {0x0}Opcode: 89 c1mov     ecxeaxOpcode: f7 35 4c ef 04 08div     dword [data_804ef4c]Opcode: b8 50 ef 04 08mov     eaxdata_804ef50Opcode: c1 e2 03shl     edx0x3Opcode: 8d 04 10lea     eax[eax+edx]Basic Block 38Opcode: 8b 4b 04mov     ecxdword [ebx+0x4]Opcode: f6 c1 01test    cl0x1Opcode: 74 20je      0x804b2aaBasic Block 39Opcode: 8b 4d 04mov     ecxdword [ebp+0x4]Opcode: f6 c1 01test    cl0x1Opcode: 74 21je      0x804b282Basic Block 40Opcode: 8b 15 1c ef 04 08mov     edxdword [data_804ef1c]Opcode: a1 18 ef 04 08mov     eaxdword [data_804ef18]Opcode: c3retn    Basic Block 41Opcode: 8b 00mov     eaxdword [eax]Opcode: 83 f8 00cmp     eax0x0Opcode: 0f 84 00 cf ff ffje      0x80480a0Basic Block 42Opcode: 8b 4f 04mov     ecxdword [edi+0x4]Opcode: e8 1c 02 00 00call    sub_804b4ceOpcode: 89 3c 24mov     dword [esp {var_1c}]ediOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 36 03 00 00call    sub_804b5f4Opcode: 83 c4 0cadd     esp0xc {var_10}Opcode: 5epop     esiOpcode: 5fpop     ediOpcode: 5bpop     ebxOpcode: 5dpop     ebpOpcode: a3 18 ef 04 08mov     dword [data_804ef18]eaxOpcode: 89 15 1c ef 04 08mov     dword [data_804ef1c]edxOpcode: 8b 04 24mov     eaxdword [esp {__return_addr}]Opcode: 31 d2xor     edxedx  {0x0}Opcode: 89 c1mov     ecxeaxOpcode: f7 35 4c ef 04 08div     dword [data_804ef4c]Opcode: b8 50 ef 04 08mov     eaxdata_804ef50Opcode: c1 e2 03shl     edx0x3Opcode: 8d 04 10lea     eax[eax+edx]Basic Block 43Opcode: 83 e1 feand     ecx0xfffffffeOpcode: e8 3c 02 00 00call    sub_804b4ceOpcode: 89 1c 24mov     dword [esp {var_1c}]ebxOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 ae 02 00 00call    sub_804b54cOpcode: 8b 47 04mov     eaxdword [edi+0x4]Opcode: 03 43 04add     eaxdword [ebx+0x4]Opcode: 89 47 04mov     dword [edi+0x4]eaxOpcode: 89 04 07mov     dword [edi+eax]eaxBasic Block 44Opcode: 83 e1 feand     ecx0xfffffffeOpcode: e8 65 02 00 00call    sub_804b4ceOpcode: 89 2c 24mov     dword [esp {var_1c}]ebpOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 d7 02 00 00call    sub_804b54cOpcode: 8b 45 04mov     eaxdword [ebp+0x4]Opcode: 03 47 04add     eaxdword [edi+0x4]Opcode: 89 45 04mov     dword [ebp+0x4]eaxOpcode: 89 03mov     dword [ebx]eaxOpcode: 89 efmov     ediebpBasic Block 45Opcode: eb ecjmp     0x804b18eBasic Block 46Opcode: 8b 15 1c ef 04 08mov     edxdword [data_804ef1c]Opcode: a1 18 ef 04 08mov     eaxdword [data_804ef18]Opcode: c3retn    Basic Block 47Opcode: 8b 00mov     eaxdword [eax]Opcode: 83 f8 00cmp     eax0x0Opcode: 0f 84 a6 cd ff ffje      0x80480a0Basic Block 48Opcode: 3b 08cmp     ecxdword [eax]Opcode: 8d 40 04lea     eax[eax+0x4]Opcode: 74 0dje      0x804b1a2Basic Block 49Opcode: eb ecjmp     0x804b2e8Basic Block 50Opcode: 3b 08cmp     ecxdword [eax]Opcode: 8d 40 04lea     eax[eax+0x4]Opcode: 74 0dje      0x804b2fc