下面的代码段应该走InInitializationOrderModuleList内部PEB并返回 kernel32.dll 的基地址。但是,当我尝试Console assemble and link使用以下代码时,我收到错误消息,指出存在missing operator in expression.
.486
option casemap :none
include \masm32\include\masm32rt.inc
.code
start:
call main
exit
main proc
mov eax, large fs:30h
mov eax, [eax+0Ch]
mov esi, [eax+1Ch]
lodsd
mov eax, [eax+8]
print str$(eax)
ret
main endp
end start
所以,我把这条线改成了:-
mov eax, fs:30h
我得到的错误是error A2108: Use of register assumed to ERROR. 我究竟做错了什么?