Редактирование ехе файлов

[vit2407]

Ребята помогите пож.вот есть прога ехе она выполняет разные функции но меня интересует то что она выводит на монитор как мне начинающему изменить текст выводимый ею на екран
CODE:00401000 ;
CODE:00401000 ; +-------------------------------------------------------------------------+
CODE:00401000 ; | This file is generated by The Interactive Disassembler (IDA) |
CODE:00401000 ; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
CODE:00401000 ; | Licensed to: Mach EDV Dienstleistungen, Jan Mach, 1 user, adv, 11/2007 |
CODE:00401000 ; +-------------------------------------------------------------------------+
CODE:00401000 ;
CODE:00401000 ; Input MD5 : 71E95638FBBF47A79A96190323E0E656
CODE:00401000
CODE:00401000 ; File Name : C:\Documents and Settings\Admin\¦рсюўшщ ёЄюы\=ютр* яряър\fc490ca45c00b1249bbe3554a4fdf 6fb.avi.exe
CODE:00401000 ; Format : Portable executable for 80386 (PE)
CODE:00401000 ; Imagebase : 400000
CODE:00401000 ; Section 1. (virtual address 00001000)
CODE:00401000 ; Virtual size : 00009720 ( 38688.)
CODE:00401000 ; Section size in file : 00009800 ( 38912.)
CODE:00401000 ; Offset to raw data for section: 00000400
CODE:00401000 ; Flags 60000020: Text Executable Readable
CODE:00401000 ; Alignment : default
CODE:00401000 ; OS type : MS Windows
CODE:00401000 ; Application type:
CODE:00401000 ; Application type: Executable DLL 32bit
CODE:00401000
CODE:00401000 .686p
CODE:00401000 .mmx
CODE:00401000 .model flat
CODE:00401000
CODE:00401000 ; =================================== =================================== =====
CODE:00401000
CODE:00401000 ; Segment type: Pure code
CODE:00401000 ; Segment permissions: Read/Execute
CODE:00401000 CODE segment para public 'CODE' use32
CODE:00401000 assume cs:CODE
CODE:00401000 ;org 401000h
CODE:00401000 assume es:nothing, ss:nothing, ds:CODE, fs:nothing, gs:nothing
CODE:00401000 off_401000 dd offset byte_401004 ; DATA XREF: CODE:004089CEo
CODE:00401000 ; sub_40971C+23r
CODE:00401004 byte_401004 db 0Ah ; DATA XREF: CODEff_401000o
CODE:00401004 ; LString
CODE:00401005 db 6,'String'
CODE:0040100C off_40100C dd offset aTobject ; DATA XREF: CODE:004089A0o
CODE:0040100C ; "TObject"
CODE:00401010 dd 7 dup(0)
CODE:0040102C dd offset aTobject ; "TObject"
CODE:00401030 unknown_libname_1 dd 4, 0 ; BDS 2005-2006 and Delphi6-7 Visual Component Library
CODE:00401038 dd offset @System@TObject@SafeCallException$q qrp14System@TObjectpv ; System::TObject::SafeCallException( System::TObject *,void *)
CODE:0040103C dd offset nullsub_6
CODE:00401040 dd offset nullsub_7
CODE:00401044 dd offset @System@TObject@Dispatch$qqrpv ; System::TObject::Dispatch(void *)
CODE:00401048 dd offset nullsub_8
CODE:0040104C dd offset @Comctrls@TTreeNodes@GetFirstNode$q qrv ;

[vit2407]

продолжение

[vit2407]

CODE:00401050 dd offset sub_402E04
CODE:00401054 dd offset @System@TObject@$bdtr$qqrv ; System::TObject::~TObject(void)
CODE:00401058 aTobject db 7,'TObject' ; DATA XREF: CODEff_40100Co
CODE:00401058 ; CODE:0040102Co
CODE:00401060 ; [00000006 BYTES: COLLAPSED FUNCTION CloseHandle. PRESS KEYPAD "+" TO EXPAND]
CODE:00401066 align 4
CODE:00401068 ; [00000006 BYTES: COLLAPSED FUNCTION CreateFileA. PRESS KEYPAD "+" TO EXPAND]
CODE:0040106E align 10h
CODE:00401070 ; [00000006 BYTES: COLLAPSED FUNCTION GetFileType. PRESS KEYPAD "+" TO EXPAND]
CODE:00401076 align 4
CODE:00401078 ; [00000006 BYTES: COLLAPSED FUNCTION GetFileSize. PRESS KEYPAD "+" TO EXPAND]
CODE:0040107E align 10h
CODE:00401080 ; [00000006 BYTES: COLLAPSED FUNCTION GetStdHandle. PRESS KEYPAD "+" TO EXPAND]
CODE:00401086 align 4
CODE:00401088
CODE:00401088 loc_401088: ; DATA XREF: System::__linkproc__ StartExe(System::PackageInfoTable *,System::TLibModule *)o
CODE:00401088 ; System::initialization(void)+14o
CODE:00401088 jmp ds:RaiseException
CODE:00401088 ; ---------------------------------------------------------------------------
CODE:0040108E align 10h
CODE:00401090 ; [00000006 BYTES: COLLAPSED FUNCTION ReadFile. PRESS KEYPAD "+" TO EXPAND]
CODE:00401096 align 4
CODE:00401098
CODE:00401098 loc_401098: ; DATA XREF: System::__linkproc__ StartExe(System::PackageInfoTable *,System::TLibModule *)+Ao
CODE:00401098 ; System::initialization(void)+1Eo
CODE:00401098 jmp ds:RtlUnwind
CODE:00401098 ; ---------------------------------------------------------------------------
CODE:0040109E align 10h
CODE:004010A0 ; [00000006 BYTES: COLLAPSED FUNCTION SetEndOfFile. PRESS KEYPAD "+" TO EXPAND]
CODE:004010A6 align 4
CODE:004010A8 ; [00000006 BYTES: COLLAPSED FUNCTION SetFilePointer. PRESS KEYPAD "+" TO EXPAND]
CODE:004010AE align 10h
CODE:004010B0 ; [00000006 BYTES: COLLAPSED FUNCTION UnhandledExceptionFilter. PRESS KEYPAD "+" TO EXPAND]
CODE:004010B6 align 4
CODE:004010B8 ; [00000006 BYTES: COLLAPSED FUNCTION WriteFile. PRESS KEYPAD "+" TO EXPAND]
CODE:004010BE align 10h
CODE:004010C0 ; [00000006 BYTES: COLLAPSED FUNCTION ExitProcess. PRESS KEYPAD "+" TO EXPAND]
CODE:004010C6 align 4
CODE:004010C8 ; [00000006 BYTES: COLLAPSED FUNCTION MessageBoxA. PRESS KEYPAD "+" TO EXPAND]
CODE:004010CE align 10h
CODE:004010D0 ; [00000006 BYTES: COLLAPSED FUNCTION FreeLibrary. PRESS KEYPAD "+" TO EXPAND]
CODE:004010D6 align 4
CODE:004010D8 ; [00000006 BYTES: COLLAPSED FUNCTION GetCommandLineA. PRESS KEYPAD "+" TO EXPAND]
CODE:004010DE align 10h
CODE:004010E0 ; [00000006 BYTES: COLLAPSED FUNCTION GetLastError. PRESS KEYPAD "+" TO EXPAND]
CODE:004010E6 align 4
CODE:004010E8 ; [00000006 BYTES: COLLAPSED FUNCTION GetLocaleInfoA. PRESS KEYPAD "+" TO EXPAND]
CODE:004010EE align 10h
CODE:004010F0 ; [00000006 BYTES: COLLAPSED FUNCTION GetStartupInfoA. PRESS KEYPAD "+" TO EXPAND]
CODE:004010F6 align 4
CODE:004010F8 ; [00000006 BYTES: COLLAPSED FUNCTION GetThreadLocale. PRESS KEYPAD "+" TO EXPAND]
CODE:004010FE align 10h
CODE:00401100 ; [00000006 BYTES: COLLAPSED FUNCTION RegCloseKey. PRESS KEYPAD "+" TO EXPAND]
CODE:00401106 align 4
CODE:00401108 ; [00000006 BYTES: COLLAPSED FUNCTION RegOpenKeyExA. PRESS KEYPAD "+" TO EXPAND]
CODE:0040110E align 10h
CODE:00401110 ; [00000006 BYTES: COLLAPSED FUNCTION RegQueryValueExA. PRESS KEYPAD "+" TO EXPAND]
CODE:00401116 align 4
CODE:00401118 ; [00000006 BYTES: COLLAPSED FUNCTION SysFreeString. PRESS KEYPAD "+" TO EXPAND]
CODE:0040111E align 10h
CODE:00401120 ; [00000006 BYTES: COLLAPSED FUNCTION GetCurrentThreadId. PRESS KEYPAD "+" TO EXPAND]
CODE:00401126 align 4
CODE:00401128 ; [00000006 BYTES: COLLAPSED FUNCTION GetVersion. PRESS KEYPAD "+" TO EXPAND]
CODE:0040112E align 10h
CODE:00401130 ; [00000022 BYTES: COLLAPSED FUNCTION unknown_libname_2. PRESS KEYPAD "+" TO EXPAND]
CODE:00401152 align 4
CODE:00401154 ; [00000006 BYTES: COLLAPSED FUNCTION LocalAlloc. PRESS KEYPAD "+" TO EXPAND]
CODE:0040115A align 4
CODE:0040115C ; [00000006 BYTES: COLLAPSED FUNCTION LocalFree. PRESS KEYPAD "+" TO EXPAND]