This is for the ATMEGA8 hex file. Is there is a really good disassembler?
Thanks
unebonnevie 
Last Edited: Sat. Apr 16, 2016 - 12:05 AM
How can I disassemble a hex file?
Author
Message
unebonnevie 
jgmdesign 
AVRStudio
Why do you need to disassemble the hex. The source code tells all
zbaird
Level: Raving Lunatic
Joined: Sun. Aug 13, 2006
Posts: 7438 View posts
Location: Bellingham, WA - USA
There have been some other threads about this. I recall one where I briefly outlined some of the things I do to reverse engineer a hex file. You might try searching the forum.
But Jim's right - the place to start is AVR Studio. Just open the hex file (File|Open) and it will magically disassemble it.
unebonnevie jgmdesign wrote:
AVRStudioWhy do you need to disassemble the hex. The source code tells all
If I had a the source, I wouldn't be disassembling the hex file.
Well, there is project on the net. The author simply post the hex and no explaining whatsoever how things work, thus, trying to understand his project by reverse engineering. :-)
And thanks for the answers, Jim & Chuck!
Koshchi Perhaps there is a reason that the author did not want people to have the source code?
westfw
avr-objdump -m avr -D file.hex
DO1THL Search for ReAVR from Johannes Assenbaum. It will create named labels, konstants, mark jumps and branches, whatever. I've used it several times and it worked perfectly for me.
clawson 
Level: Moderator
Joined: Mon. Jul 18, 2005
Posts: 104792 View posts
Location: (using avr-gcc in) Finchingfield, Essex, England
Quote:
avr-objdump -m avr -D file.hex
Perhaps even:
avr-objdump --no-show-raw-insn -m avr -D file.hex
One shows:
E:\avr>avr-objdump -m avr -D test.hex test.hex: file format ihex Disassembly of section .sec1: 00000000 <.sec1>: 0: 0c 94 2a 00 jmp 0x54 ; 0x54 4: 0c 94 34 00 jmp 0x68 ; 0x68 8: 0c 94 34 00 jmp 0x68 ; 0x68 c: 0c 94 34 00 jmp 0x68 ; 0x68 10: 0c 94 34 00 jmp 0x68 ; 0x68 14: 0c 94 34 00 jmp 0x68 ; 0x68 18: 0c 94 34 00 jmp 0x68 ; 0x68 1c: 0c 94 34 00 jmp 0x68 ; 0x68 20: 0c 94 34 00 jmp 0x68 ; 0x68 24: 0c 94 34 00 jmp 0x68 ; 0x68 28: 0c 94 34 00 jmp 0x68 ; 0x68 2c: 0c 94 34 00 jmp 0x68 ; 0x68 30: 0c 94 34 00 jmp 0x68 ; 0x68 34: 0c 94 34 00 jmp 0x68 ; 0x68 38: 0c 94 34 00 jmp 0x68 ; 0x68 3c: 0c 94 34 00 jmp 0x68 ; 0x68 40: 0c 94 34 00 jmp 0x68 ; 0x68 44: 0c 94 34 00 jmp 0x68 ; 0x68 48: 0c 94 34 00 jmp 0x68 ; 0x68 4c: 0c 94 34 00 jmp 0x68 ; 0x68 50: 0c 94 34 00 jmp 0x68 ; 0x68 54: 11 24 eor r1, r1 56: 1f be out 0x3f, r1 ; 63 58: cf e5 ldi r28, 0x5F ; 95 5a: d4 e0 ldi r29, 0x04 ; 4 5c: de bf out 0x3e, r29 ; 62 5e: cd bf out 0x3d, r28 ; 61 60: 0e 94 36 00 call 0x6c ; 0x6c 64: 0c 94 a3 00 jmp 0x146 ; 0x146
the other:
E:\avr>avr-objdump --no-show-raw-insn -m avr -D test.hex test.hex: file format ihex Disassembly of section .sec1: 00000000 <.sec1>: 0: jmp 0x54 ; 0x54 4: jmp 0x68 ; 0x68 8: jmp 0x68 ; 0x68 c: jmp 0x68 ; 0x68 10: jmp 0x68 ; 0x68 14: jmp 0x68 ; 0x68 18: jmp 0x68 ; 0x68 1c: jmp 0x68 ; 0x68 20: jmp 0x68 ; 0x68 24: jmp 0x68 ; 0x68 28: jmp 0x68 ; 0x68 2c: jmp 0x68 ; 0x68 30: jmp 0x68 ; 0x68 34: jmp 0x68 ; 0x68 38: jmp 0x68 ; 0x68 3c: jmp 0x68 ; 0x68 40: jmp 0x68 ; 0x68 44: jmp 0x68 ; 0x68 48: jmp 0x68 ; 0x68 4c: jmp 0x68 ; 0x68 50: jmp 0x68 ; 0x68 54: eor r1, r1 56: out 0x3f, r1 ; 63 58: ldi r28, 0x5F ; 95 5a: ldi r29, 0x04 ; 4 5c: out 0x3e, r29 ; 62 5e: out 0x3d, r28 ; 61 60: call 0x6c ; 0x6c 64: jmp 0x146 ; 0x146
As you'll be using the call/jmp target addresses as labels (I assume?) you might want to use --prefix-addresses too:
0x00000000 jmp 0x54 ; 0x00000054 0x00000004 jmp 0x68 ; 0x00000068 0x00000008 jmp 0x68 ; 0x00000068 0x0000000c jmp 0x68 ; 0x00000068 0x00000010 jmp 0x68 ; 0x00000068 0x00000014 jmp 0x68 ; 0x00000068 0x00000018 jmp 0x68 ; 0x00000068 0x0000001c jmp 0x68 ; 0x00000068 0x00000020 jmp 0x68 ; 0x00000068 0x00000024 jmp 0x68 ; 0x00000068 0x00000028 jmp 0x68 ; 0x00000068 0x0000002c jmp 0x68 ; 0x00000068 0x00000030 jmp 0x68 ; 0x00000068 0x00000034 jmp 0x68 ; 0x00000068 0x00000038 jmp 0x68 ; 0x00000068 0x0000003c jmp 0x68 ; 0x00000068 0x00000040 jmp 0x68 ; 0x00000068 0x00000044 jmp 0x68 ; 0x00000068 0x00000048 jmp 0x68 ; 0x00000068 0x0000004c jmp 0x68 ; 0x00000068 0x00000050 jmp 0x68 ; 0x00000068 0x00000054 eor r1, r1 0x00000056 out 0x3f, r1 ; 63 0x00000058 ldi r28, 0x5F ; 95 0x0000005a ldi r29, 0x04 ; 4 0x0000005c out 0x3e, r29 ; 62 0x0000005e out 0x3d, r28 ; 61 0x00000060 call 0x6c ; 0x0000006c
Torby 
Level: 10k+ Postman
Joined: Tue. Nov 11, 2003
Posts: 10444 View posts
Location: Bartlesville Oklahoma USA
Well, let's see.
It writes 0's to port 3f,
then 04 to port 3e,
then 5F to port 3d.
Then it calls a subroutine at 6c that you didn't include. You'll have to dig through the data sheet to see what ports 3f, 3e and 3d are.
If you don't know my whole story, keep your mouth shut.
If you know my whole story, you're an accomplice. Keep your mouth shut. 
dkinzer Torby wrote:
Those ports have the same function on every AVR - SREG, SPH, SPL. Of course, ther ports vary by device or by group of devices.
You'll have to dig through the data sheet to see what ports 3f, 3e and 3d are.
unebonnevie DO1THL wrote:
Search for ReAVR from Johannes Assenbaum. It will create named labels, konstants, mark jumps and branches, whatever. I've used it several times and it worked perfectly for me.
Thanks! And the link is https://www.avrfreaks.net/index.p...
Torby
Level: 10k+ Postman
Joined: Tue. Nov 11, 2003
Posts: 10444 View posts
Location: Bartlesville Oklahoma USA
dkinzer wrote:
Torby wrote:Those ports have the same function on every AVR - SREG, SPH, SPL. Of course, ther ports vary by device or by group of devices.You'll have to dig through the data sheet to see what ports 3f, 3e and 3d are.
hehe I haven't compared near enough datasheets to know that.
If you don't know my whole story, keep your mouth shut.
If you know my whole story, you're an accomplice. Keep your mouth shut.
dkinzer Torby wrote:
On further thought, my statement was a bit too broad. On devices with 256 bytes or less of RAM, there is no SPH register. But on those devices that have one, it is located at 0x3e.
I haven't compared near enough datasheets to know that.