cpsr: 0x200001f3 pc: 0x000108de D-Cache: disabled, I-Cache: disabled > reg ===== ARM registers (0) r0 (/32): 0x10020810 (dirty) (1) r1 (/32): 0x4D435442 (2) r2 (/32): 0x4D524453 (3) r3 (/32): 0x00000004 (4) r4 (/32): 0x00824F3C (5) r5 (/32): 0x00000001 (6) r6 (/32): 0x00000000 (7) r7 (/32): 0x00803400 (8) r8 (/32): 0x00002600 (9) r9 (/32): 0x00824F3C (10) r10 (/32): 0x00803400 (11) r11 (/32): 0x4D435442 (12) r12 (/32): 0x00000800 (13) sp_usr (/32) (14) lr_usr (/32) (15) pc (/32): 0x000108DE (16) r8_fiq (/32) (17) r9_fiq (/32) (18) r10_fiq (/32) (19) r11_fiq (/32) (20) r12_fiq (/32) (21) sp_fiq (/32) (22) lr_fiq (/32) (23) sp_irq (/32) (24) lr_irq (/32) (25) sp_svc (/32): 0x00827C00 (26) lr_svc (/32): 0x0000994F (27) sp_abt (/32) (28) lr_abt (/32) (29) sp_und (/32) (30) lr_und (/32) (31) cpsr (/32): 0x200001F3 (32) spsr_fiq (/32) (33) spsr_irq (/32) (34) spsr_svc (/32) (35) spsr_abt (/32) (36) spsr_und (/32) (37) sp (/32) (38) lr (/32) (39) sp_mon (/32) (40) lr_mon (/32) (41) spsr_mon (/32) 0x000108d0 0xbd10 POP {r4, r15} 0x000108d2 0x681a LDR r2, [r3, #0] 0x000108d4 0xe7fa B 0x000108cc 0x000108d6 0xb128 CBZ r0, 0x000108e4 0x000108d8 0x481a LDR r0, [pc, #0x68] ; 0x00010944 0x000108da 0x300c ADDS r0, #0x0c 0x000108dc 0x6802 LDR r2, [r0, #0] ; Loading from 0x10020810 the value 4d524453 0x000108de 0x428a CMP r2, r1 ; Comparing 4d524453 with 0x4D435442 0x000108e0 0xd1fc BNE 0x000108dc ; Does not match 0x000108e2 0x4770 BX r14 ; Most likely 0x0000994e 0x000108e4 0x4817 LDR r0, [pc, #0x5c] ; 0x00010944 0x000108e6 0x3008 ADDS r0, #0x08 0x000108e8 0xe7f8 B 0x000108dc 0x000108ea 0x4916 LDR r1, [pc, #0x58] ; 0x00010944 0x000108ec 0x1f09 SUBS r1, r1, #4 0x000108ee 0x680a LDR r2, [r1, #0] 0x000108f0 0x4282 CMP r2, r0 0x000108f2 0xd1fc BNE 0x000108ee 0x000108f4 0x1c40 ADDS r0, r0, #1 0x000108f6 0x6008 STR r0, [r1, #0] > mdb 0x10020800 200 0x10020800: 00 00 00 00 00 00 00 00 00 00 00 00 42 54 43 4d 53 44 52 4d 00 00 00 00 00 00 00 00 00 00 00 00 0x10020820: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x10020840: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x10020860: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x10020880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x100208a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x100208c0: 00 00 00 00 00 00 00 00 > arm disassemble 0x00009940 20 thumb 0x00009940 0xf2426800 MOVW r8, #9728 ; 0x2600 0x00009944 0x462e MOV r6, r5 0x00009946 0x4659 MOV r1, r11 0x00009948 0xb2e8 UXTB r0, r5 0x0000994a 0xf006ffc4 BL 0x000108d6 ; This jumps to the endless loop 0x0000994e 0xb38d CBZ r5, 0x000099b4 ; Here we continue after the endless loop r5 was 0x0001 CBZ=COMPARE AND BRANCH ON ZERO -> branch does not happen 0x00009950 0xf04f4085 MOV.W r0, #1115684864 ; 0x42800000 ; r0 was 10020810 0x00009954 0xeb0904c5 ADD.W r4, r9, r5, LSL #3 ; r4 was 0x00824F3C ; r9 was 0x00824F3C r5 was 1 ; r8 was 0x00002600 => r4:=0x00824F44 0x00009958 0xfb05a708 MLA r7, r5, r8, r10 ; Multiply-accumulate: r7:=r5*r++r10 r7:=1*x2600+0x00803400 => r7:=0x00805A00 0x0000995c 0x6060 STR r0, [r4, #0x4] 0x0000995e 0xf015f897 BL 0x0001ea90 0x00009962 0x6860 LDR r0, [r4, #0x4] 0x00009964 0x3048 ADDS r0, #0x48 0x00009966 0xf015f893 BL 0x0001ea90 0x0000996a 0x6860 LDR r0, [r4, #0x4] 0x0000996c 0xf6400170 MOVW r1, #2160 ; 0x870 0x00009970 0x500e STR r6, [r1, r0] 0x00009972 0xf8c06874 STR.W r6, [r0, #2164] ; 0x874 0x00009976 0x6860 LDR r0, [r4, #0x4] 0x00009978 0xf8806878 STRB.W r6, [r0, #2168] ; 0x878