In the next code: Gloat: mov eax, 0 jmp [(ebx*4)+Tab] Tab: dd F4 dd

Question

0

Asked: May 30, 20262026-05-30T01:58:45+00:00 2026-05-30T01:58:45+00:00

In the next code: Gloat: mov eax, 0 jmp [(ebx*4)+Tab] Tab: dd F4 dd

0

In the next code:

    Gloat: mov eax, 0
          jmp [(ebx*4)+Tab]
    Tab:  dd F4
          dd F3
          dd F2
          dd F1
    F1: add eax, 4
    F2: add eax, 4
    F3: add eax, 4
    F4: ret

I don’t understand What the mean of [(ebx*4)+Tab]. For example, If ebx contain 2, What I will get on the jmp condition? jmp [8+Tab], but what is the Tab?

Thanks.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-30T01:58:46+00:00

Editorial Team

2026-05-30T01:58:46+00:00Added an answer on May 30, 2026 at 1:58 am

Tab is a table holding the addresses of the jump targets (F1, F2 etc.), ebx * 4 selects an entry from that table (by adding to the address of Tab, then dereferencing that address), which is then jumped to.

So in your example, if EBX is 2, we get JMP [Tab + 8] which becomes JMP F2, because the address of F2 is 8 bytes from the start of Tab.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

In the next code: Gloat: mov eax, 0 jmp [(ebx*4)+Tab] Tab: dd F4 dd

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply