[*] Binary protection state of busybox.nosuid
Full RELRO Canary found NX enabled PIE enabled No RPATH No RUNPATH No Symbols
[*] Function mmap tear down of busybox.nosuid
blx sym.imp.mmap64
ldr r2, [r5]
movs r0, 1
ldr.w ip, [0x00008d48]
ldr r3, [0x00008d4c]
str r2, [r7, 0x20]
add ip, pc
ldr r2, [0x00008d50]
ldr.w r6, [ip]
add r3, pc
ldr r1, [0x00008d54]
add r2, pc
str r6, [r7, 0x1c]
ldr r6, [r2]
str r0, [r2]
ldrb r2, [r3]
str r6, [r7, 0x14]
strb r0, [r3]
mov r0, r8
str r2, [r7, 0x10]
ldr r2, [0x00008d58]
--
blx sym.imp.mmap64
mov r1, r8
ldr r3, [0x00008d60]
ldr.w r8, [r7, 0xc]
ldr r2, [r4]
add r3, pc
mov r0, r8
str r2, [r3]
bl 0x8580
ldr r3, [0x00008d64]
mov r1, r4
mov r0, r6
add r3, pc
ldr.w r3, [r3, r8, lsl 2]
blx r3
mov r4, r0
bl 0x3d7a4
mov sp, r5
ldr r0, str._Part.Magic_recovery
mov.w r2, 0x188
add.w r1, r7, 0x28
--
blx sym.imp.mmap64
ldr r3, [0x00008d6c]
uxtb r0, r4
ldr r2, [r7, 0x20]
ldr r1, [r7, 0x14]
add r3, pc
str r2, [r3]
ldr r3, [0x00008d70]
ldr r2, [r7, 0x1c]
add r3, pc
str r2, [r3]
ldr r3, [0x00008d74]
ldr r2, [r7, 0x18]
add r3, pc
str r2, [r3]
ldr r3, [0x00008d78]
ldr r2, [0x00008d7c]
add r3, pc
str r1, [r3]
add r2, pc
ldr r1, [r7, 0x10]
--
blx sym.imp.mmap64
movs r2, 0
mov r5, r2
strb r2, [r0, r6]
mov r0, r4
blx sym.imp.getgrgid
ldr r2, [0x0000968c]
ldr r3, [0x00009688]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x74]
eors r2, r3
mov.w r3, 0
bne 0x9672
mov r0, r5
add sp, 0x78
pop.w {r4, r5, r6, lr}
b.w 0x3ac8
blx 0x3c40
mov r0, r4
--
blx sym.imp.mmap64
ldr r2, [r4, 4]
add r0, r5
add.w r3, r4, 0x1c
mov r1, r6
str r2, [r0], 4
subs r5, r0, r6
movs r0, 0x14
str r3, [sp]
str r0, [sp, 4]
movs r3, 0
mov r2, r5
movs r0, 3
blx 0x4344
cmp r5, r0
bne 0xb77c
bl 0xa554
ldr r2, [0x0000b7e4]
ldr r3, [r4, 0x40]
str r0, [r4, 0x34]
add r2, pc
--
blx sym.imp.mmap64
ldr r3, [0x0000bd98]
add r3, pc
str r5, [r3]
b 0xba64
ldrb.w r2, [r4, 0x108]
mov r1, fp
adds r5, r2, 4
add r5, r6
mov r0, r5
blx 0x3bc4
cmp r0, 0
beq 0xbbb6
ldr r1, [0x0000bd9c]
movs r0, 1
add r1, pc
blx 0x4224
ldrb r3, [r5, 5]
movs r0, 1
ldr r1, [0x0000bda0]
str r3, [sp, 0xc]
--
blx sym.imp.mmap64
movs r1, 0x15
ldr r2, [r4]
movt r1, 1
mov r3, r0
str r1, [r0, 4]
ldr r0, [r5, 8]
add r2, r3
ldr r1, [r0, 0x1c]
adds r1, 1
str r1, [r0, 0x1c]
movs r0, 1
str r1, [r3, 8]
movs r1, 0
ldr r3, [r5, 4]
strb.w r1, [r5, 0x39]
strb.w r0, [r5, 0x38]
subs r3, r2, r3
strb.w r1, [r5, 0x3a]
strb.w r1, [r5, 0x3b]
str r3, [r5, 0x1c]
--
blx sym.imp.mmap64
ldr r1, [sp, 0x34]
cbz r1, 0x10a7e
ldrb r3, [r4, 0x11]
cmp r6, 0xa
ite eq
moveq r2, 0x10
movne r2, 4
adds r1, 4
add r0, sp, 0xc
strh.w r3, [sp, 0xa]
strb.w r2, [sp, 9]
blx sym.imp.mmap64
cmp.w sb, 0
beq 0x10a9c
ldrsh.w r2, [r5, 0x3e]
add.w r1, r5, 0x3c
mov r0, fp
bl 0x3ddbc
cmp r0, 0
bne.w 0x10d0a
ldrb.w r8, [r5, 0x50]
cmp.w r8, 0
beq 0x10abc
ldrsh.w r3, [r5, 0x52]
cmp r3, 0
blt 0x10abc
ldrb r2, [r4, 0x11]
mov r0, fp
add.w r1, r5, 0x50
bl 0x3ddbc
cmp r0, 0
bne.w 0x10d0a
--
blx sym.imp.mmap64
movs r1, 0x19
ldr r2, [r4]
movt r1, 1
mov r3, r0
str r1, [r0, 4]
ldr r0, [r5, 0x14]
add r2, r3
ldr r1, [r0, 0x1c]
adds r1, 1
str r1, [r0, 0x1c]
movs r0, 1
str r1, [r3, 8]
movs r1, 0
ldr r3, [r5, 8]
strb r1, [r5, 5]
strb r0, [r5, 4]
subs r3, r2, r3
strb r1, [r5, 6]
strb r1, [r5, 7]
str r3, [r5, 0xc]
--
blx sym.imp.mmap64
movs r4, 0
mov r0, r8
blx 0x3acc
ldr r2, [0x0001170c]
ldr r3, [0x000116e8]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x3c]
eors r2, r3
mov.w r3, 0
bne 0x11694
mov r0, r4
add sp, 0x44
pop.w {r4, r5, r6, r7, r8, sb, sl, fp, pc}
mov r0, fp
str r1, [sp, 4]
bl 0x8b48
ldr r1, [sp, 4]
adds r5, 3
--
blx sym.imp.mmap64
b 0x11656
ldr r0, [0x00011718]
mov r1, r5
add r0, pc
bl 0x8a40
ldr r0, [0x0001171c]
mov r1, r3
add r0, pc
bl 0x8a40
ldr r0, [0x00011720]
add r0, pc
bl 0xa31c
b 0x116ae
nop
stm r5!, {r1, r2, r3, r4, r5, r6, r7}
movs r3, r0
lsls r4, r5, 0x11
movs r0, r0
asrs r4, r5, 0x12
movs r3, r0
--
blx sym.imp.mmap64
ldr r1, [sp, 0xc]
add.w r0, r4, 0x1c
adds r1, 4
blx sym.imp.getmntent
movs r0, 0
ldr r2, [0x00011a14]
ldr r3, [0x00011a0c]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0xf4]
eors r2, r3
mov.w r3, 0
bne 0x119f8
add sp, 0xf8
pop {r4, r5, r6, pc}
ldr r2, [r4]
cbnz r2, 0x119fc
mov r6, r4
movs r0, 0x2c
--
blx sym.imp.mmap64
ldr r2, [0x000126e4]
ldr r3, [0x000126d4]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x2d4]
eors r2, r3
mov.w r3, 0
bne 0x126aa
mov r0, r6
add.w sp, sp, 0x2d8
pop.w {r4, r5, r6, r7, r8, sb, sl, pc}
ldr r2, [r3]
cmp r2, 0xb
bhi 0x126ae
ldrh r5, [r4, 0x1a]
movs r3, 0
ldrh r2, [r4, 0x18]
str r3, [r4]
str r3, [r4, 4]
--
blx sym.imp.mmap64
ldr r2, [sp, 0xc]
mov r3, r0
subs r5, r5, r2
cmp r5, 3
bls.w 0x129e4
add r6, r2
mov r1, fp
mov r2, r3
mov r0, r4
subs r5, 4
bl 0x12524
add r4, r0
mov r3, sl
mov.w r2, -1
movs r1, 1
mov r0, r4
str r7, [sp]
blx 0x4164
add r4, r0
mov r2, r6
--
blx sym.imp.mmap64
cmp r7, 3
mov.w r3, 0
strb r3, [r4, r5]
bne.w 0x129e4
ldrb r3, [r4]
cmp r3, 0x2d
bne 0x12bd6
ldr r1, [0x00012c50]
mov r2, r5
mov r0, r4
add r1, pc
bl 0x3d932
b 0x129e4
cmp r3, 0
beq.w 0x129e4
mov r1, r4
sub.w r2, r3, 0x30
cmp r2, 9
bhi 0x12bf0
ldrb r3, [r1, 1]!
--
blx sym.imp.mmap64
ldr r3, [r7]
mov r1, r8
mov r2, fp
add r0, r3
blx sym.imp.mmap64
ldr r3, [r7]
add r3, fp
str r3, [r7]
ldrb r3, [r7, 5]
cbz r3, 0x12eb0
ldr r0, [r7, 8]
blx 0x3acc
ldr r3, [sp, 8]
str r3, [r7, 8]
movs r3, 1
strb r3, [r7, 5]
b 0x12cec
nop
add r6, sp, 0x308
movs r3, r0
lsls r4, r5, 0x11
movs r0, r0
add r6, sp, 0x2e0
movs r3, r0
lsls r0, r2, 0x12
--
blx sym.imp.mmap64
tst.w r8, 0x100
beq 0x13138
ldr r3, [sp, 0x3c]
mov r1, fp
ldr r0, [r3]
blx 0x3978
cbnz r0, 0x13138
bl 0x3d3ae
tst.w r8, 0x200000
beq 0x1314e
ldr r3, [sp, 0x44]
ldr r0, [r3]
bl 0x3da96
strh.w r0, [r4, 0x206]
subs r0, 1
strh r0, [r4, 0xc]
ldr.w r0, [sl]
bl 0x3da50
ldr r3, [r6]
str r0, [sp, 0x4c]
--
blx sym.imp.mmap64
tst.w r8, 1
beq.w 0x13968
mov.w sb, 0
ldr.w r0, [r4, 0x230]
add.w r3, r4, 0x200
movs r2, 0
add.w r1, r4, 0x208
bl 0x13eb4
str r0, [sp, 0x3c]
cbz r0, 0x13296
movs r3, 1
str r3, [sp, 0x3c]
ldr.w r2, [0x000139d4]
ldr.w r3, [0x00013998]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x35c]
eors r2, r3
mov.w r3, 0
--
blx sym.imp.mmap64
ldr r3, [sp, 0x2d8]
ldr.w r0, [sb]
ldrh.w r2, [sb, 4]
add.w sb, sp, 8
mov r1, sb
str r0, [sp, 0x14]
mov r0, r5
str.w r3, [sb, 4]
movs r3, 0x11
movt r3, 8
strh.w r2, [sp, 0x18]
str.w r3, [sb]
movs r2, 0x14
movs r3, 6
strb.w r3, [sb, 0xb]
blx 0x4194
cmp r0, sl
bge 0x13b78
mov r0, r5
mov.w r4, -1
--
blx sym.imp.mmap64
movs r3, 0xff
strb r3, [r4, r6]
pop {r4, r5, r6, pc}
stcl p0, c0, [ip, 8]!
push {r4, lr}
sub sp, 0x10
ldr.w lr, [0x000143c4]
movs r4, 1
ldr.w ip, [0x000143c8]
add lr, pc
ldr r3, [0x000143cc]
ldr.w ip, [lr, ip]
add r3, pc
ldr.w ip, [ip]
str.w ip, [sp, 0xc]
mov.w ip, 0
cmp r1, r4
bne 0x14396
ldrb r3, [r3]
ldr.w ip, [0x000143d0]
--
blx sym.imp.mmap64
mov r0, r6
blx 0x3acc
add sp, 8
pop.w {r4, r5, r6, r7, r8, pc}
ldr r5, [r5, 4]
cmp r5, 0
beq 0x14412
ldr r0, [r5]
ldrb r3, [r0]
cmp r1, r3
bhi 0x14430
bne 0x14412
ldrb r3, [r7]
and r2, r3, 0xf
cmp r2, 3
it eq
cmpeq r1, 0xc
bne 0x14478
ldr r1, [sp, 4]
cmp r1, 0xfe
--
blx sym.imp.mmap64
ldr r3, [r5]
mov r0, r6
ldr r2, [sp, 4]
strb r2, [r3, 1]
blx 0x3acc
add sp, 8
pop.w {r4, r5, r6, r7, r8, pc}
lsls r3, r3, 0x1a
bpl 0x14424
ldrb r7, [r0, 1]
ldr r1, [sp, 4]
add r1, r7
cmp r1, 0xfe
bhi 0x14424
adds r1, 3
bl 0x934c
adds r3, r7, 2
ldr r2, [sp, 4]
mov r1, r4
str r0, [r5]
--
blx sym.imp.mmap64
ldr r2, [sp, 4]
mov r0, r6
ldr r3, [r5]
add r7, r2
strb r7, [r3, 1]
blx 0x3acc
add sp, 8
pop.w {r4, r5, r6, r7, r8, pc}
mov r0, r2
bl 0x9374
movs r2, 0xff
mov r1, r4
mov r6, r0
bl 0x8fe0
ldr r3, [0x000144e0]
add r3, pc
ldr r3, [r3]
ldr r3, [r3]
cbz r3, 0x144d2
ldr r0, [0x000144e4]
--
blx sym.imp.mmap64
mov r1, r6
mov r0, r5
bl 0x153e0
cmp r0, 3
bgt 0x154f2
ldr r1, [0x000155cc]
ldr r0, [0x000155d0]
add r1, pc
add r0, pc
bl 0x8a40
mov r0, r5
movs r5, 0
blx sym.imp.__uflow
ldr r0, [r4, 4]
str.w r5, [r4, 0x108]
lsls r0, r0, 3
bl 0x9324
ldr.w r8, [r4, 4]
mov r6, r0
cmp r8, r5
--
blx sym.imp.mmap64
ldr r3, [r5, 0xc]
str r0, [r5, 4]
add r3, r4
str r3, [r5, 0xc]
pop {r3, r4, r5, r6, r7, pc}
ldrsh r6, [r7, r7]
movs r3, r0
lsls r4, r0, 0x13
movs r0, r0
lsrs r6, r4, 0xc
movs r3, r0
lsls r0, r1, 0x12
movs r0, r0
ldr r3, [0x00017bcc]
ldr r2, [0x00017bd0]
push {r4, lr}
add r3, pc
ldr r3, [r3, r2]
ldr r4, [r3]
ldr r3, [r4, 0xc]
--
blx sym.imp.mmap64
strb r7, [r0, r4]
add r4, r0
ldrb.w r3, [sb]
adds r4, 1
cmp r3, 0x27
bne 0x17c7e
mov r8, sb
mov.w sb, 0
ldrb r3, [r8, 1]!
mov sl, sb
add.w sb, sb, 1
cmp r3, 0x27
beq 0x17c44
mov r1, r4
add.w r0, sl, 4
bl 0x17bd4
mvn.w r1, sl
mov r2, sb
add r1, r8
strb r6, [r0], 1
blx sym.imp.mmap64
strb.w r6, [r0, sb]
add.w r4, r0, sb
ldrb.w r3, [r8]
adds r4, 1
cmp r3, 0
bne 0x17c0e
movs r3, 0
strb r3, [r4]
ldr r0, [r5, 4]
pop.w {r4, r5, r6, r7, r8, sb, sl, pc}
ldrsh r6, [r3, r4]
movs r3, r0
lsls r4, r0, 0x13
movs r0, r0
push.w {r3, r4, r5, r6, r7, r8, sb, sl, fp, lr}
mov r4, r1
cbnz r1, 0x17c9e
mov r0, r4
pop.w {r3, r4, r5, r6, r7, r8, sb, sl, fp, pc}
ldr r3, [0x00017d30]
--
blx sym.imp.mmap64
mov r3, r0
add r0, r7
cbz r4, 0x182da
mov r1, r4
movs r4, 0x3d
mov r2, r8
adds r0, 1
strb r4, [r3, r7]
blx sym.imp.mmap64
orr r1, r6, 0x100
mov r0, r5
bl 0x18154
mov r4, r0
bl 0x16830
mov r0, r4
pop.w {r3, r4, r5, r6, r7, r8, sb, pc}
mov r0, r4
blx 0x4074
mov r8, r0
b 0x182a6
nop
ldr r2, [r2, r2]
movs r3, r0
push {r6, lr}
movs r2, r0
lsls r0, r1, 0x12
movs r0, r0
ldr r3, [0x0001839c]
ldr r2, [0x000183a0]
--
blx sym.imp.mmap64
mov r3, r0
add.w r2, r0, r8
ldrb r0, [r5]
cbz r0, 0x192a8
and r1, r7, 2
mov.w ip, 0x5c
mov r4, r1
cmp r0, 0x88
add.w r7, r5, 1
itt eq
moveq r5, r7
moveq r4, r1
beq 0x192a2
cmp r0, 0x5c
bne 0x19292
ldrb r0, [r5]
mov r7, r5
movs r4, 0
b 0x1929c
cmp r0, 0x81
--
blx sym.imp.mmap64
movs r2, 0x2f
adds r3, r0, r4
adds r3, 1
strb r2, [r0, r4]
b 0x19e1e
sub.w r5, r8, r5
ldrb.w r3, [r8]
add r4, r5
mov r5, r8
b 0x19df8
ldr.w fp, [0x00019e78]
adds r4, r6, 1
mov r0, r4
add fp, pc
mov r1, fp
bl 0x19d64
mov r7, r0
cmp r0, 0
beq 0x19dc6
ldr.w fp, [0x00019e7c]
--
blx sym.imp.mmap64
ldr.w fp, [r7, 0x34]
cmp.w fp, 0
beq 0x1b3fa
movs r3, 1
str r3, [r7, 0x24]
mov r3, fp
mov r5, r3
ldr r3, [r3]
cmp r3, 0
bne 0x1b39a
movs r0, 8
mov fp, r3
bl 0x3e2f8
ldr.w r2, [0x0001b7b0]
ldr r3, [r7, 0x24]
str r0, [r5]
add r2, pc
ldr r6, [r2]
str.w fp, [r2]
cbnz r3, 0x1b410
--
blx sym.imp.mmap64
b 0x1b452
movs r0, 0xa
bl 0x18714
sub sp, 0x20
mov r3, sp
b 0x1b034
movs r3, 0x82
mov sb, r5
ldr.w fp, [r4]
mov.w r8, 1
strb r3, [sb], 2
ldr.w r3, [sl, 4]
subs r3, r2, r3
str r3, [r7, 0x24]
b 0x1b0da
ldr r1, [r7, 0x18]
lsr.w r3, r1, r3
lsls r1, r3, 0x1f
bpl.w 0x1b006
movs r3, 0x82
--
blx sym.imp.mmap64
b 0x1b4e4
strb.w sb, [r5]
bl 0x16010
ldr r3, [r4]
cmp r3, 2
beq 0x1b61e
bl 0x191c0
mov sb, r0
adds r5, 1
b.w 0x1ac3c
bl 0x191a4
mov sb, r0
b 0x1b618
cmp.w sb, 0xff
it gt
subgt r5, 1
ldrb sb, [r1, -0x1]
cmp r5, 0
beq.w 0x1ac7a
add.w r3, r5, 8
--
blx sym.imp.mmap64
movs r1, 0
strb r1, [r0, r5]
bl 0x17064
ldr.w r3, [sl, 4]
b.w 0x1ac7a
ldr r3, [r4, 0xc]
cbnz r3, 0x1b684
ldr r2, [r7, 0x2c]
cmp.w sb, 0x22
ldrb r3, [r4, 4]
str r2, [r4]
bfi r3, r2, 2, 1
strb r3, [r4, 4]
beq 0x1b68a
movs r3, 1
str r3, [r7, 0x28]
movs r3, 0x88
strb r3, [r5], 1
ldr r2, [r4]
b.w 0x1ad24
--
blx sym.imp.mmap64
add r0, r5
ldr r3, [sp, 4]
ldrb r2, [r0, -0x1]
subs r1, r6, 1
tst.w sb, 0x40
and.w r2, r2, r1
strb r2, [r0, -0x1]
it ne
subne r2, r0, r6
ldr r1, [r3, 4]
it eq
moveq r2, r0
ldr r3, [sp]
subs r0, r0, r1
subs r1, r0, r6
ldr r0, [0x0001d05c]
add r0, pc
str r2, [r0]
ldr r2, [sp, 0x18]
cmp r3, 0
--
blx sym.imp.mmap64
vmvn.i32 d17, 0x7fff
vld1.32 {d16}, [r7]
vadd.i32 d16, d16, d17
ldr r3, [r4, -0x34]
ldr r1, [r4, -0x20]
vst1.32 {d16}, [r7]
ldr r2, [r4, -0x2c]
add.w r0, r3, 0x10000
vmov.i16 q9, 0x8000
add.w ip, r3, 0x20000
sub.w r2, r2, 0x8000
str r2, [r4, -0x2c]
mov r2, r0
vld1.16 {d16, d17}, [r2]
vmax.u16 q8, q8, q9
vadd.i16 q8, q8, q9
vst1.16 {d16, d17}, [r2]!
cmp ip, r2
bne 0x24936
vmov.i16 q9, 0x8000
--
blx sym.imp.mmap64
ldr r2, [0x00025c4c]
ldr r3, [0x00025c44]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x2c]
eors r2, r3
mov.w r3, 0
bne 0x25c3a
add sp, 0x30
pop {r4, r5, r6, pc}
blx 0x3c40
nop
ldrb r0, [r6, 0x1c]
movs r2, r0
lsls r4, r5, 0x11
movs r0, r0
cdp2 p0, 9, c0, c2, c1, 0
ldrb r2, [r7, 0x1b]
movs r2, r0
--
blx sym.imp.mmap64
ldr r5, [r4, 0x48]
ldr r3, [r4, 0x60]
add r5, r6
add r3, r6
str r5, [r4, 0x48]
str r3, [r4, 0x60]
b 0x2774c
adds r2, r3, 1
subs r6, 1
str r2, [r4, 0x60]
add.w r2, r5, 1
str r2, [r4, 0x48]
ldrb r3, [r1, r3]
strb r3, [r1, r5]
bne 0x2776a
ldr r5, [r4, 0x48]
cmp.w r5, 0x8000
ldr r2, [r4, 0x5c]
bne 0x27760
subs r2, 0
--
blx sym.imp.mmap64
ldr r3, [r4, 0x18]
movs r2, 0
mov r0, r5
strb r2, [r3, r6]
pop.w {r4, r5, r6, r7, r8, pc}
nop
bls 0x28578
movs r1, r0
add r3, sp, 0x2d8
movs r1, r0
ldr r2, [0x00028514]
ldr r3, [0x00028518]
push {r4, lr}
sub sp, 8
add r2, pc
mov r4, sp
ldr r3, [r2, r3]
ldr r3, [r3]
str r3, [sp, 4]
mov.w r3, 0
--
blx sym.imp.mmap64
mov r1, r4
movs r2, 8
adds r0, r4, r7
blx 0x3ab0
mov r2, r7
mov r0, r4
mov r1, fp
mov r4, sb
blx sym.imp.mmap64
ldr.w r2, [sl, 4]
b 0x2950c
mov r6, r1
b 0x292e0
nop
ldr r0, [0x00029774]
movs r2, r0
lsls r4, r5, 0x11
movs r0, r0
lsls r5, r4, 8
movs r2, r0
ldm r5!, {r2, r6, r7}
movs r1, r0
ldr r0, [0x000296e4]
movs r2, r0
lsls r4, r6, 0x11
movs r0, r0
ldm r5, {r2, r5, r6}
movs r1, r0
invalid
--
blx sym.imp.mmap64
ldrb r1, [r4, r5]
adds r2, r4, r5
mov r7, r4
strb r1, [r2, 2]
adds r1, r5, 3
movw r2, 0x6c6c
strh r2, [r4, r5]
ldr r2, [r6]
cbnz r2, 0x2cd4e
ldr r5, [0x0002cdcc]
mov r3, sl
mov r2, fp
mov r0, r7
add r5, pc
str r5, [sp]
bl 0x2c7f8
ldr r3, [sp, 0x18]
mov r0, r4
ldr r3, [r3]
ldr r3, [r3]
--
blx sym.imp.mmap64
strb.w sl, [r7]
mov r0, sb
strb.w sl, [r5, r4]
bl 0x958c
ldrb r1, [r7, r4]
add r7, r4
cbnz r1, 0x2d4d6
movs r0, 0x25
bl 0x9558
mov r0, r6
blx 0x3acc
mov r0, r5
add sp, 0xc
pop.w {r4, r5, r6, r7, r8, sb, sl, fp, lr}
b.w 0x3ac8
cmp r1, 0x25
bne 0x2d4e6
mov r0, r1
bl 0x9558
add.w sb, r7, 1
--
blx sym.imp.mmap64
ldr r2, [0x0002fb68]
ldr r3, [0x0002fb64]
add r2, pc
ldr r3, [r2, r3]
ldr r2, [r3]
ldr r3, [sp, 0x104]
eors r2, r3
mov.w r3, 0
bne 0x2fb5a
mov r0, r5
add sp, 0x108
pop.w {r4, r5, r6, r7, r8, pc}
blx 0x3c40
nop
b 0x2fba0
movs r1, r0
lsls r4, r5, 0x11
movs r0, r0
svc 0xde
movs r1, r0
--
blx sym.imp.mmap64
mov r1, r5
mov r0, fp
bl 0x32d70
ldr r2, [sp, 8]
mov r1, sl
ldr r3, [0x000331cc]
mov r0, r6
ldr r3, [r2, r3]
movs r2, 1
ldr r3, [r3]
blx 0x3da4
ldr r3, [r4, 0x28]
add.w fp, fp, 1
subs r3, 1
cmp r3, fp
bhi 0x3307e
ldrd r7, r1, [r4, 0x34]
mov r0, r7
bl 0x32d70
ldr.w r3, [r4, 0x358]
--
blx sym.imp.mmap64
mov r0, r6
pop {r4, r5, r6, pc}
stc2 p15, c15, [sb], {0xff}
push {r4, r5, lr}
mov r4, r3
orrs.w r3, r0, r1
sub sp, 0xc
bne 0x37cf8
ldr r0, [0x00037dec]
add r0, pc
add sp, 0xc
pop {r4, r5, pc}
cmp r2, 1
mov ip, r0
bls 0x37d2c
mul r3, r2, r1
umull ip, r1, r0, r2
add r1, r3
cmp r4, 0
beq 0x37dd8
--
blx sym.imp.mmap64
b 0x39efa
svc 0xf4
movs r0, r0
ldr r2, [0x0003a2ac]
ldr r3, [0x0003a2b0]
push.w {r4, r5, r6, r7, r8, sb, sl, fp, lr}
sub sp, 0x1c
add r2, pc
ldrb r7, [r0]
ldr r3, [r2, r3]
ldr r3, [r3]
str r3, [sp, 0x14]
mov.w r3, 0
sub.w r3, r7, 0x30
cmp r3, 7
bhi 0x3a114
movs r2, 8
add r1, sp, 0x10
blx sym.imp.re_search
ldr r2, [sp, 0x10]
--
blx sym.imp.mmap64
ldrh r3, [r4, 4]
cmp r3, 0xa
beq 0x3b876
cmp r3, 2
beq 0x3b876
ldr r0, [r7]
cmp r0, 0
beq 0x3b880
b 0x3b87c
movs r1, 0x3a
mov r0, r8
blx 0x4098
cmp r6, r0
mov sb, r8
bne.w 0x3b80e
sub.w r2, r6, sb
mov r1, sb
add.w r3, r2, 8
adds r2, 1
bic r3, r3, 7
--
blx sym.imp.mmap64
ldr r3, [r6, 0x10]
mov r2, r7
mov r1, r6
mov r0, r4
blx r3
str.w sb, [sp, 4]
mov r1, r4
ldr r4, [r7, 0x38]
mov fp, r0
mov r3, r6
mov r2, r6
movs r0, 1
str r4, [r5, 0x44]
str r5, [sp]
blx r8
mov r4, r0
cbnz r0, 0x3c692
mov.w r2, 0x1e0
mov r1, r7
mov r0, r5
blx sym.imp.mmap64
cmp.w fp, 8
bne 0x3c68c
ldr r1, [r5, 0x40]
mov r0, r6
bl 0x3c480
adds r4, 9
mov fp, r0
cmp r0, 0
beq 0x3c614
ldr r7, [r5, 0x38]
mov r3, r6
str.w sb, [sp, 4]
mov r2, r6
orr r1, r4, 0x10
movs r0, 1
str r7, [r5, 0x44]
str r5, [sp]
blx r8
cbnz r0, 0x3c692
mov r0, fp
--
blx sym.imp.mmap64
ldr r3, [r4]
cbz r3, 0x3dbf6
mov r4, r3
ldr r3, [r3]
cmp r3, 0
bne 0x3dbee
movs r2, 0
mov r1, r5
mov r0, r7
str r6, [r4]
bl 0x1192c
movs r0, 0
pop {r3, r4, r5, r6, r7, pc}
movs r1, 2
movs r2, 0
mov r0, r1
push {r3, lr}
blx sym.imp.isatty
cmp r0, 0
blt 0x3dc18
--
blx sym.imp.mmap64
ldr r3, [r4]
movs r0, 0
adds r3, 3
add r3, r5
bic r3, r3, 3
str r3, [r4]
pop {r4, r5, r6, pc}
mov ip, r0
ldrh r0, [r0]
push {lr}
add.w lr, r0, 0xb
bic lr, lr, 3
cmp lr, r1
it hi
movhi r0, -1
bhi 0x3dd3a
adds r0, 3
bic r0, r0, 3
add.w r1, ip, r0
strh r2, [r1, 2]
--
blx sym.imp.mmap64
ldr r2, [sp, 4]
mov r1, r4
movs r4, 0x2e
movw r3, 0x1806
strb r4, [r0, r2]
add r0, r2
ldrb.w r4, [fp]
movs r2, 0
adds r4, 1
add r7, r4
add r4, r5
b 0x3dedc
cbnz r4, 0x3def0
adds r4, r5, 1
cbz r7, 0x3def6
movs r2, 0
adds r5, r6, r7
mov r1, r2
mov.w ip, 0x20
strb ip, [r5, -0x1]
--
blx sym.imp.mmap64
add r0, r4
pop {r4, r5, r6, pc}
movs r2, 0
b.w 0x18264
push.w {r4, r5, r6, r7, r8, sb, sl, fp, lr}
subs r7, r3, 1
cmp r7, r0
sub sp, 0xc
blo 0x3e3dc
ldr.w sl, [sp, 0x34]
movs r4, 0
mov r6, r3
mov r8, r0
mov sb, r1
mov r5, r2
mov fp, r4
ldr r2, [sp, 0x34]
mov r1, r5
ldrb r3, [r5], -1
cbz r2, 0x3e39c
--
blx sym.imp.mmap64
mov r0, r4
pop {r3, r4, r5, r6, r7, pc}
cbz r0, 0x3fa66
push {r4, r5, r6, lr}
mov r4, r0
movs r6, 0
movs r1, 0xa
mov r0, r4
blx 0x4098
mov r5, r0
cbz r0, 0x3fa68
ldrb r3, [r0]
cmp r3, 0xa
bne 0x3fa52
strb r6, [r5], 1
ldrb r3, [r5]
cmp r3, 0xa
beq 0x3fa48
mov r0, r4
blx 0x4074
--
blx sym.imp.mmap64
cmp r4, 0x40
beq 0x401f0
pop.w {r4, r5, r6, r7, r8, pc}
ldr r3, [r5, 0x40]
mov r0, r5
subs r6, r6, r7
add r8, r7
movs r4, 0
blx r3
b 0x401d2
push {r3, r4, r5, lr}
mov r4, r1
mov r5, r0
movs r1, 0
bl 0x4015e
ldr r0, [r5, 0x50]
ldr r1, [r5, 0x54]
ldr r2, [r5, 0x58]
ldr r3, [r5, 0x5c]
str r0, [r4]
--
blx sym.imp.mmap64
mov r2, r6
add r0, r5
mov r1, sb
blx sym.imp.mmap64
adds r5, r0, r6
b 0x4081c
mov r1, r4
mov r0, r5
blx sym.imp.getmntent
mov r0, r7
pop.w {r4, r5, r6, r7, r8, sb, sl, pc}
push {r3, r4, r5, lr}
movs r2, 0x2c
mov r5, r1
movs r1, 0
mov r4, r0
blx 0x41c8
movw r1, 0x7009
mov r2, r4
mov r0, r5
movt r1, 0x8024
bl 0x989c
mov.w r3, -1
str r3, [r4, 0x20]
[*] Function mmap used 61 times busybox.nosuid
