0x1
书接上上上上回 

上次用的是动态hook + dump，感觉有点赖皮了，这次厥一下tvm的逻辑 
0x2
懒得过这玩意的反调试了，而且x64dbg trace x86指令巨慢，还不如把frida inject进去来trace 
"use strict";

const TARGET_MODULE_NAME = "Module.dll";
const TARGET_RVA = ptr("0x123456");

const TRACE_ONLY_TARGET_MODULE = true;
const TRACE_AUTO_SUPPRESS_HOT_LOOPS = true;
const TRACE_HOT_LOOP_ITERATION_THRESHOLD = 5;
const TRACE_HOT_LOOP_UNFOLLOW_UNTIL_FALLTHROUGH = true;
con...