jarvisoj Hello（用ida脚本）

源代码

int sub_100000CE0()
{
  int result; // eax
  signed int v1; // [rsp+1Ch] [rbp-14h]
  int v2; // [rsp+24h] [rbp-Ch]

  v2 = ((unsigned __int64)((char *)start - (char *)sub_100000C90) >> 2) ^ byte_100001040[0];
  result = sub_100000DE0();
  if ( result & 1 )
  {
    v1 = 0;
    while ( v1 < 55 )
    {
      byte_100001040[v1] -= 2;
      byte_100001040[v1] ^= v2;
      ++v1;
      ++v2;
    }
    result = printf("\nFinal output is %s\n", &byte_100001040[1]);
  }
  return result;
}

脚本 idcpython：

from idc import *
s=""
v2=((0xcb0-0xc90)>>2)^Byte(0x100001040)         ##取地址，还有Dword，Word
for v1 in range(55):
    t=Byte(0x100001040+v1)-2
    t=chr(t^v2)
    v2=v2+1                                     ##不能++操作
    s=s+t

print s