CHAPTER 61. SUSPICIOUS CODE PATTERNS CHAPTER 61. SUSPICIOUS CODE PATTERNS
cmp eax, 0FE7A000h
stc
jnz short locret_62057F
clc
locret_62057F: ; CODE XREF: Multiply+10
; Multiply+18
retn
Multiply endp
Indeed, if we look in theWRK^1 v1.2 source code, this code can be found easily in fileWRK-v1.2\base\ntos\ke\i386\cpu.asm.
(^1) Windows Research Kernel