Function Graph 0Basic Block 0Opcode: 55sub_804ac96:Opcode: 55push    ebpOpcode: 89 e5mov     ebpespOpcode: 83 ec 38sub     esp0x38 {var_3c}Opcode: 8b 45 0cmov     eaxdword [ebp+0xc {arg_8}]Opcode: 8b 4d 08mov     ecxdword [ebp+0x8 {arg_4}]Opcode: 89 4d fcmov     dword [ebp-0x4 {var_8}]ecxOpcode: 89 45 f8mov     dword [ebp-0x8 {var_c}]eaxOpcode: 8b 45 f8mov     eaxdword [ebp-0x8 {var_c}]Opcode: 89 45 f4mov     dword [ebp-0xc {var_10}]eaxOpcode: 8b 45 f4mov     eaxdword [ebp-0xc {var_10}]Opcode: 83 e8 08sub     eax0x8Opcode: 89 45 f0mov     dword [ebp-0x10 {var_14}]eaxOpcode: 8b 45 f4mov     eaxdword [ebp-0xc {var_10}]Opcode: 25 00 00 f0 ffand     eax0xfff00000Opcode: 89 45 e4mov     dword [ebp-0x1c {var_20}]eaxOpcode: 8b 45 f4mov     eaxdword [ebp-0xc {var_10}]Opcode: 83 e0 07and     eax0x7Opcode: 83 f8 00cmp     eax0x0Opcode: 74 15je      0x804ace2Basic Block 1Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 83 e0 01and     eax0x1Opcode: 83 f8 00cmp     eax0x0Opcode: 74 15je      0x804ad05Basic Block 2Opcode: 8d 05 20 dc 04 08lea     eax[data_804dc20]  {"BAD SMALL FREE: address is not a…"}Opcode: 8b 4d f4mov     ecxdword [ebp-0xc {var_10}]Opcode: 89 04 24mov     dword [esp {var_3c}]eaxOpcode: 89 4c 24 04mov     dword [esp+0x4 {var_38}]ecxOpcode: e8 3d 05 00 00call    sub_804b21fOpcode: e8 3d 05 00 00{ Does not return }Basic Block 3Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 81 78 04 00 00 02 00cmp     dword [eax+0x4]0x20000Opcode: 77 09ja      0x804ad1aBasic Block 4Opcode: 8d 05 51 dc 04 08lea     eax[data_804dc51]  {"BAD SMALL FREE: double free ptr=…"}Opcode: 8b 4d f4mov     ecxdword [ebp-0xc {var_10}]Opcode: 89 04 24mov     dword [esp {var_3c}]eaxOpcode: 89 4c 24 04mov     dword [esp+0x4 {var_38}]ecxOpcode: e8 1a 05 00 00call    sub_804b21fOpcode: e8 1a 05 00 00{ Does not return }Basic Block 5Opcode: 8d 05 77 dc 04 08lea     eax[data_804dc77]  {"BAD SMALL FREE: corrupted size p…"}Opcode: 8b 4d f4mov     ecxdword [ebp-0xc {var_10}]Opcode: 89 04 24mov     dword [esp {var_3c}]eaxOpcode: 89 4c 24 04mov     dword [esp+0x4 {var_38}]ecxOpcode: e8 f0 04 00 00call    sub_804b21fOpcode: e8 f0 04 00 00{ Does not return }Basic Block 6Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 83 78 04 10cmp     dword [eax+0x4]0x10Opcode: 73 15jae     0x804ad2fBasic Block 7Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 83 38 00cmp     dword [eax]0x0Opcode: 75 09jne     0x804ad40Basic Block 8Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 2b 01sub     eaxdword [ecx]Opcode: 89 45 ecmov     dword [ebp-0x14 {var_18}]eaxBasic Block 9Opcode: c7 45 ec 00 00 00 00mov     dword [ebp-0x14 {var_18}]0x0Opcode: eb 0bjmp     0x804ad4bBasic Block 10Opcode: 8b 45 e8mov     eaxdword [ebp-0x18 {var_1c}]Opcode: 8b 00mov     eaxdword [eax]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 3b 41 04cmp     eaxdword [ecx+0x4]Opcode: 74 1cje      0x804adb2Basic Block 11Opcode: 8b 45 ecmov     eaxdword [ebp-0x14 {var_18}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 83 e0 feand     eax0xfffffffeOpcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 3b 01cmp     eaxdword [ecx]Opcode: 74 1cje      0x804ad89Basic Block 12Opcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 03 41 04add     eaxdword [ecx+0x4]Opcode: 89 45 e8mov     dword [ebp-0x18 {var_1c}]eaxOpcode: 83 7d ec 00cmp     dword [ebp-0x14 {var_18}]0x0Opcode: 74 2cje      0x804ad89Basic Block 13Opcode: 83 7d ec 00cmp     dword [ebp-0x14 {var_18}]0x0Opcode: 74 5dje      0x804ae15Basic Block 14Opcode: 8d 05 d4 dc 04 08lea     eax[data_804dcd4]  {"BAD SMALL FREE: heap corruption …"}Opcode: 8b 4d e8mov     ecxdword [ebp-0x18 {var_1c}]Opcode: 8b 55 f4mov     edxdword [ebp-0xc {var_10}]Opcode: 89 04 24mov     dword [esp {var_3c}]eaxOpcode: 89 4c 24 04mov     dword [esp+0x4 {var_38}]ecxOpcode: 89 54 24 08mov     dword [esp+0x8 {var_34}]edxOpcode: e8 6d 04 00 00call    sub_804b21fOpcode: e8 6d 04 00 00{ Does not return }Basic Block 15Opcode: 8d 05 a0 dc 04 08lea     eax[data_804dca0]  {"BAD SMALL FREE: heap corruption …"}Opcode: 8b 4d ecmov     ecxdword [ebp-0x14 {var_18}]Opcode: 8b 55 f4mov     edxdword [ebp-0xc {var_10}]Opcode: 89 04 24mov     dword [esp {var_3c}]eaxOpcode: 89 4c 24 04mov     dword [esp+0x4 {var_38}]ecxOpcode: 89 54 24 08mov     dword [esp+0x8 {var_34}]edxOpcode: e8 96 04 00 00call    sub_804b21fOpcode: e8 96 04 00 00{ Does not return }Basic Block 16Opcode: 8b 45 e8mov     eaxdword [ebp-0x18 {var_1c}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 83 e0 01and     eax0x1Opcode: 83 f8 00cmp     eax0x0Opcode: 74 55je      0x804ae78Basic Block 17Opcode: 8b 45 ecmov     eaxdword [ebp-0x14 {var_18}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 83 e0 01and     eax0x1Opcode: 83 f8 00cmp     eax0x0Opcode: 74 4fje      0x804ae15Basic Block 18Opcode: 8b 45 fcmov     eaxdword [ebp-0x4 {var_8}]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 8b 49 04mov     ecxdword [ecx+0x4]Opcode: 89 0c 24mov     dword [esp {var_3c}]ecxOpcode: 89 45 d8mov     dword [ebp-0x28 {var_2c}]eaxOpcode: e8 07 03 00 00call    sub_804b193Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 8b 55 d8mov     edxdword [ebp-0x28 {var_2c}]Opcode: 89 14 24mov     dword [esp {var_3c}]edxOpcode: 89 44 24 04mov     dword [esp+0x4 {var_38}]eaxOpcode: 89 4c 24 08mov     dword [esp+0x8 {var_34}]ecxOpcode: e8 d2 04 00 00call    sub_804b374Opcode: 83 c4 38add     esp0x38 {var_4}Opcode: 5dpop     ebpOpcode: a3 48 ed 04 08mov     dword [data_804ed48]eaxOpcode: 89 15 4c ed 04 08mov     dword [data_804ed4c]edxOpcode: 9flahf    Opcode: 89 0d 50 ed 04 08mov     dword [data_804ed50]ecxOpcode: 88 25 54 ed 04 08mov     byte [data_804ed54]ahOpcode: 8b 04 24mov     eaxdword [esp {__return_addr}]Opcode: 31 d2xor     edxedx  {0x0}Opcode: 89 c1mov     ecxeaxOpcode: f7 35 7c ed 04 08div     dword [data_804ed7c]Opcode: b8 80 ed 04 08mov     eaxdata_804ed80Opcode: c1 e2 03shl     edx0x3Opcode: 8d 04 10lea     eax[eax+edx]Basic Block 19Opcode: 8b 45 fcmov     eaxdword [ebp-0x4 {var_8}]Opcode: 8b 4d e8mov     ecxdword [ebp-0x18 {var_1c}]Opcode: 8b 49 04mov     ecxdword [ecx+0x4]Opcode: 83 e1 feand     ecx0xfffffffeOpcode: 89 0c 24mov     dword [esp {var_3c}]ecxOpcode: 89 45 dcmov     dword [ebp-0x24 {var_28}]eaxOpcode: e8 59 03 00 00call    sub_804b193Opcode: 8b 4d e8mov     ecxdword [ebp-0x18 {var_1c}]Opcode: 8b 55 dcmov     edxdword [ebp-0x24 {var_28}]Opcode: 89 14 24mov     dword [esp {var_3c}]edxOpcode: 89 44 24 04mov     dword [esp+0x4 {var_38}]eaxOpcode: 89 4c 24 08mov     dword [esp+0x8 {var_34}]ecxOpcode: e8 1b 04 00 00call    sub_804b26bOpcode: 8b 45 e8mov     eaxdword [ebp-0x18 {var_1c}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 8b 51 04mov     edxdword [ecx+0x4]Opcode: 01 c2add     edxeaxOpcode: 89 51 04mov     dword [ecx+0x4]edxOpcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 4d f0mov     ecxdword [ebp-0x10 {var_14}]Opcode: 03 41 04add     eaxdword [ecx+0x4]Opcode: 89 45 e8mov     dword [ebp-0x18 {var_1c}]eaxOpcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 8b 4d e8mov     ecxdword [ebp-0x18 {var_1c}]Opcode: 89 01mov     dword [ecx]eaxBasic Block 20Opcode: 8b 45 fcmov     eaxdword [ebp-0x4 {var_8}]Opcode: 8b 4d ecmov     ecxdword [ebp-0x14 {var_18}]Opcode: 8b 49 04mov     ecxdword [ecx+0x4]Opcode: 83 e1 feand     ecx0xfffffffeOpcode: 89 0c 24mov     dword [esp {var_3c}]ecxOpcode: 89 45 e0mov     dword [ebp-0x20 {var_24}]eaxOpcode: e8 b6 03 00 00call    sub_804b193Opcode: 8b 4d ecmov     ecxdword [ebp-0x14 {var_18}]Opcode: 8b 55 e0mov     edxdword [ebp-0x20 {var_24}]Opcode: 89 14 24mov     dword [esp {var_3c}]edxOpcode: 89 44 24 04mov     dword [esp+0x4 {var_38}]eaxOpcode: 89 4c 24 08mov     dword [esp+0x8 {var_34}]ecxOpcode: e8 78 04 00 00call    sub_804b26bOpcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 8b 4d ecmov     ecxdword [ebp-0x14 {var_18}]Opcode: 8b 51 04mov     edxdword [ecx+0x4]Opcode: 01 c2add     edxeaxOpcode: 89 51 04mov     dword [ecx+0x4]edxOpcode: 8b 45 ecmov     eaxdword [ebp-0x14 {var_18}]Opcode: 89 45 f0mov     dword [ebp-0x10 {var_14}]eaxOpcode: 8b 45 f0mov     eaxdword [ebp-0x10 {var_14}]Opcode: 8b 40 04mov     eaxdword [eax+0x4]Opcode: 8b 4d e8mov     ecxdword [ebp-0x18 {var_1c}]Opcode: 89 01mov     dword [ecx]eaxBasic Block 21Opcode: 8a 25 54 ed 04 08mov     ahbyte [data_804ed54]Opcode: 8b 0d 50 ed 04 08mov     ecxdword [data_804ed50]Opcode: 9esahf    Opcode: 8b 15 4c ed 04 08mov     edxdword [data_804ed4c]Opcode: a1 48 ed 04 08mov     eaxdword [data_804ed48]Opcode: c3retn    Basic Block 22Opcode: 8b 00mov     eaxdword [eax]Opcode: 83 f8 00cmp     eax0x0Opcode: 0f 84 b8 d1 ff ffje      0x80480a0Basic Block 23Opcode: b8 01 00 00 00mov     eax0x1Opcode: bb ad 00 00 00mov     ebx0xadOpcode: cd 80int     0x80Opcode: cd 80{ Does not return }Basic Block 24Opcode: eb ecjmp     0x804aed6Basic Block 25Opcode: 3b 08cmp     ecxdword [eax]Opcode: 8d 40 04lea     eax[eax+0x4]Opcode: 74 0dje      0x804aeea