Function Graph 0Basic Block 0Opcode: 8b 54 24 08sub_8049475:Opcode: 8b 54 24 08mov     edxdword [esp+0x8]Opcode: 85 d2test    edxedxOpcode: 74 28je      0x80494a5Basic Block 1Opcode: c3retn    Basic Block 2Opcode: 8b 4c 24 04mov     ecxdword [esp+0x4]Opcode: 89 d0mov     eaxedxOpcode: c1 e8 14shr     eax0x14Opcode: 8a 84 01 0c 02 00 00mov     albyte [ecx+eax+0x20c]Opcode: 3c 02cmp     al0x2Opcode: 74 09je      0x804949aBasic Block 3Opcode: e9 8b 00 00 00jmp     0x804952aBasic Block 4Opcode: 3c 01cmp     al0x1Opcode: 75 0ajne     0x804949fBasic Block 5Opcode: 55push    ebpOpcode: 53push    ebxOpcode: 57push    ediOpcode: 56push    esiOpcode: 83 ec 0csub     esp0xc {var_1c}Opcode: 89 cemov     esiecxOpcode: f6 c2 07test    dl0x7Opcode: 0f 85 ce 00 00 00jne     0x804960aBasic Block 6Opcode: 84 c0test    alalOpcode: 75 02jne     0x80494a5Basic Block 7Opcode: e9 c8 01 00 00jmp     0x8049662Basic Block 8Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 e9 2a 05 08mov     dword [esp {var_1c}]data_8052ae9  {"BAD SMALL FREE: address is not a…"}Opcode: e8 87 01 00 00call    sub_80497a1Opcode: e8 87 01 00 00{ Does not return }Basic Block 9Opcode: 8d 7a f8lea     edi[edx-0x8]Opcode: 8b 47 04mov     eaxdword [edi+0x4]Opcode: a8 01test    al0x1Opcode: 0f 85 d0 00 00 00jne     0x804961aBasic Block 10Opcode: eb 01jmp     0x80494a6Basic Block 11Opcode: 57push    ediOpcode: 56push    esiOpcode: 50push    eaxOpcode: 89 d6mov     esiedxOpcode: 89 cfmov     ediecxOpcode: 89 f0mov     eaxesiOpcode: 25 00 f0 ff ffand     eax0xfffff000Opcode: 0f b7 08movzx   ecxword [eax]Opcode: e8 dc 00 00 00call    sub_8049754Opcode: 8b 0c 87mov     ecxdword [edi+eax*4]Opcode: 89 0emov     dword [esi]ecxOpcode: 89 34 87mov     dword [edi+eax*4]esiOpcode: 83 c4 04add     esp0x4 {var_8}Opcode: 5epop     esiOpcode: 5fpop     ediOpcode: e9 22 ea ff ffjmp     0x80480acBasic Block 12Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 1a 2b 05 08mov     dword [esp {var_1c}]data_8052b1a  {"BAD SMALL FREE: double free ptr=…"}Opcode: e8 77 01 00 00call    sub_80497a1Opcode: e8 77 01 00 00{ Does not return }Basic Block 13Opcode: 83 c0 f0add     eax0xfffffff0Opcode: 3d f1 ff 01 00cmp     eax0x1fff1Opcode: 0f 83 d2 00 00 00jae     0x804962aBasic Block 14Opcode: 83 ec 1csub     esp0x1cOpcode: 89 d0mov     eaxedxOpcode: 25 ff 0f 00 00and     eax0xfffOpcode: 83 f8 08cmp     eax0x8Opcode: 75 4djne     0x8049502Basic Block 15Opcode: a3 30 6b 05 08mov     dword [data_8056b30]eaxOpcode: 89 15 34 6b 05 08mov     dword [data_8056b34]edxOpcode: 9flahf    Opcode: 89 0d 38 6b 05 08mov     dword [data_8056b38]ecxOpcode: 88 25 3c 6b 05 08mov     byte [data_8056b3c]ahOpcode: 8b 04 24mov     eaxdword [esp {__return_addr}]Opcode: 31 d2xor     edxedx  {0x0}Opcode: 89 c1mov     ecxeaxOpcode: f7 35 64 6b 05 08div     dword [data_8056b64]Opcode: b8 68 6b 05 08mov     eaxdata_8056b68Opcode: c1 e2 03shl     edx0x3Opcode: 8d 04 10lea     eax[eax+edx]Basic Block 16Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 40 2b 05 08mov     dword [esp {var_1c}]data_8052b40  {"BAD SMALL FREE: corrupted size p…"}Opcode: e8 67 01 00 00call    sub_80497a1Opcode: e8 67 01 00 00{ Does not return }Basic Block 17Opcode: 8b 0fmov     ecxdword [edi]Opcode: 85 c9test    ecxecxOpcode: 74 11je      0x804956fBasic Block 18Opcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 31 2c 05 08mov     dword [esp {var_1c}]data_8052c31  {"BAD FREE: large address is not a…"}Opcode: e8 8f 02 00 00call    sub_80497a1Opcode: e8 8f 02 00 00{ Does not return }Basic Block 19Opcode: 8b 42 f8mov     eaxdword [edx-0x8]Opcode: 39 c8cmp     eaxecxOpcode: 75 56jne     0x8049512Basic Block 20Opcode: 8a 25 3c 6b 05 08mov     ahbyte [data_8056b3c]Opcode: 8b 0d 38 6b 05 08mov     ecxdword [data_8056b38]Opcode: 9esahf    Opcode: 8b 15 34 6b 05 08mov     edxdword [data_8056b34]Opcode: a1 30 6b 05 08mov     eaxdword [data_8056b30]Opcode: c3retn    Basic Block 21Opcode: 8b 00mov     eaxdword [eax]Opcode: 83 f8 00cmp     eax0x0Opcode: 74 b6je      0x80480a0Basic Block 22Opcode: 8b 5f 04mov     ebxdword [edi+0x4]Opcode: 01 fbadd     ebxediOpcode: 31 c0xor     eaxeax  {0x0}Opcode: 31 edxor     ebpebp  {0x0}Opcode: eb 10jmp     0x804958aBasic Block 23Opcode: 8b 5f 04mov     ebxdword [edi+0x4]Opcode: 01 fbadd     ebxediOpcode: 31 c0xor     eaxeax  {0x0}Opcode: 89 fdmov     ebpediOpcode: 29 cdsub     ebpecxOpcode: 75 0fjne     0x804957aBasic Block 24Opcode: 89 4c 24 0cmov     dword [esp+0xc {var_10}]ecxOpcode: 89 44 24 08mov     dword [esp+0x8 {var_14}]eaxOpcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 62 2c 05 08mov     dword [esp {var_1c}]data_8052c62  {"BAD FREE: wrong heap address ptr…"}Opcode: e8 77 02 00 00call    sub_80497a1Opcode: e8 77 02 00 00{ Does not return }Basic Block 25Opcode: 8b 42 fcmov     eaxdword [edx-0x4]Opcode: 8d 88 00 00 fe fflea     ecx[eax-0x20000]Opcode: 81 f9 ff 0f fe 7fcmp     ecx0x7ffe0fffOpcode: 77 21ja      0x80494eeBasic Block 26Opcode: b8 01 00 00 00mov     eax0x1Opcode: bb ad 00 00 00mov     ebx0xadOpcode: cd 80int     0x80Opcode: cd 80{ Does not return }Basic Block 27Opcode: eb f0jmp     0x80480dcBasic Block 28Opcode: 8b 0bmov     ecxdword [ebx]Opcode: 3b 4f 04cmp     ecxdword [edi+0x4]Opcode: 0f 85 b9 00 00 00jne     0x804964eBasic Block 29Opcode: 8b 45 04mov     eaxdword [ebp+0x4]Opcode: 83 e0 feand     eax0xfffffffeOpcode: 3b 07cmp     eaxdword [edi]Opcode: 0f 85 b2 00 00 00jne     0x804963aBasic Block 30Opcode: 31 edxor     ebpebp  {0x0}Opcode: eb 1bjmp     0x804958aBasic Block 31Opcode: 89 44 24 08mov     dword [esp+0x8 {var_14}]eaxOpcode: 89 54 24 04mov     dword [esp+0x4 {var_18}]edxOpcode: c7 04 24 98 2c 05 08mov     dword [esp {var_1c}]data_8052c98  {"BAD FREE: wrong block size ptr=%…"}Opcode: e8 9f 02 00 00call    sub_80497a1Opcode: e8 9f 02 00 00{ Does not return }Basic Block 32Opcode: 89 c1mov     ecxeaxOpcode: 81 e1 ff 0f 00 00and     ecx0xfffOpcode: 75 17jne     0x80494eeBasic Block 33Opcode: 3b 08cmp     ecxdword [eax]Opcode: 8d 40 04lea     eax[eax+0x4]Opcode: 74 09je      0x80480ecBasic Block 34Opcode: 89 54 24 08mov     dword [esp+0x8 {var_14}]edxOpcode: 89 5c 24 04mov     dword [esp+0x4 {var_18}]ebxOpcode: c7 04 24 9d 2b 05 08mov     dword [esp {var_1c}]data_8052b9d  {"BAD SMALL FREE: heap corruption …"}Opcode: e8 3f 01 00 00call    sub_80497a1Opcode: e8 3f 01 00 00{ Does not return }Basic Block 35Opcode: 84 c0test    alalOpcode: 74 29je      0x80495c2Basic Block 36Opcode: 89 54 24 08mov     dword [esp+0x8 {var_14}]edxOpcode: 89 6c 24 04mov     dword [esp+0x4 {var_18}]ebpOpcode: c7 04 24 69 2b 05 08mov     dword [esp {var_1c}]data_8052b69  {"BAD SMALL FREE: heap corruption …"}Opcode: e8 53 01 00 00call    sub_80497a1Opcode: e8 53 01 00 00{ Does not return }Basic Block 37Opcode: b0 01mov     al0x1Basic Block 38Opcode: 83 c2 f8add     edx0xfffffff8Opcode: 89 44 24 04mov     dword [esp+0x4 {var_18}]eaxOpcode: 89 14 24mov     dword [esp {var_1c}]edxOpcode: e8 0b 18 00 00call    sub_804acf1Opcode: 83 c4 1cadd     esp0x1c {__return_addr}Opcode: e9 be eb ff ffjmp     0x80480acBasic Block 39Opcode: 8b 4b 04mov     ecxdword [ebx+0x4]Opcode: f6 c1 01test    cl0x1Opcode: 74 20je      0x80495eaBasic Block 40Opcode: 8b 4d 04mov     ecxdword [ebp+0x4]Opcode: f6 c1 01test    cl0x1Opcode: 74 21je      0x80495c2Basic Block 41Opcode: 8b 4f 04mov     ecxdword [edi+0x4]Opcode: e8 62 01 00 00call    sub_8049754Opcode: 89 3c 24mov     dword [esp {var_1c}]ediOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 3a 02 00 00call    sub_8049838Opcode: 83 c4 0cadd     esp0xc {var_10}Opcode: 5epop     esiOpcode: 5fpop     ediOpcode: 5bpop     ebxOpcode: 5dpop     ebpOpcode: e9 a2 ea ff ffjmp     0x80480acBasic Block 42Opcode: 83 e1 feand     ecx0xfffffffeOpcode: e8 82 01 00 00call    sub_8049754Opcode: 89 1c 24mov     dword [esp {var_1c}]ebxOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 f4 01 00 00call    sub_80497d2Opcode: 8b 47 04mov     eaxdword [edi+0x4]Opcode: 03 43 04add     eaxdword [ebx+0x4]Opcode: 89 47 04mov     dword [edi+0x4]eaxOpcode: 89 04 07mov     dword [edi+eax]eaxBasic Block 43Opcode: 83 e1 feand     ecx0xfffffffeOpcode: e8 ab 01 00 00call    sub_8049754Opcode: 89 2c 24mov     dword [esp {var_1c}]ebpOpcode: 89 f1mov     ecxesiOpcode: 89 c2mov     edxeaxOpcode: e8 1d 02 00 00call    sub_80497d2Opcode: 8b 45 04mov     eaxdword [ebp+0x4]Opcode: 03 47 04add     eaxdword [edi+0x4]Opcode: 89 45 04mov     dword [ebp+0x4]eaxOpcode: 89 03mov     dword [ebx]eaxOpcode: 89 efmov     ediebp