What are the four parameters required by VirtualAlloc and how are they set in the ROP chain?

VirtualAlloc requires `lpAddress` (memory address), `dwSize` (size), `flAllocationType` (type, e.g., 0x1000 for MEM_COMMIT), and `flProtect` (protection, e.g., 0x40 for PAGE_EXECUTE_READWRITE). In the ROP chain, these are set via register manipulation: `EDX` gets `flAllocationType`, `ECX` gets `flProtect`, `EBX` gets `dwSize`, and `ESP` provides the `lpAddress` automatically. The chain uses gadgets like `POP EAX`/`NEG EAX` and `XCHG EAX,EDX` to derive these values.