Let's look at the code:
004520F4 55 push ebp
004520F5 8BEC mov ebp, esp
004520F7 6A00 push $00
004520F9 53 push ebx
004520FA 33D2 xor edx,edx
Each line here represent a single machine instruction. The information presented is as follows:
- The first column is the address at which the instruction starts, displayed in hex.
- The second column is the machine code for the instruction, displayed in hex.
- The third column is the instruction disassembled to assembler language.
So the second and third columns represent the exact same information. The third column is provided to make the code more understandable.
Note that different instructions have different lengths. The first and fourth instructions are only a single byte long. The others are two bytes long. And that explains why the instruction address increments by more than a single byte following two byte instructions.
There are instructions that can take even more than two bytes and so you can have increments of 3, 4 and so on for such instructions. A good example would be call or jump instructions which encode the target address or offset. So, an absolute jump on a 32 bit machine might be encoded in 5 bytes, one for the opcode and four for the address.
Back in the good old days, long before I was even born, programmers didn't even have assemblers and wrote code directly in machine instructions. That must have been a whole load of fun!
Disassembly pane
. – LU RD