ntdll.RtlDecompressBuffer (breakpoint AFTER)
_Out_ PUCHAR UncompressedBuffer,
kernel32.WriteProcessMemory (breakpoint BEFORE)
_In_ LPCVOID lpBuffer,
Showing posts with label ntdll. Show all posts
Showing posts with label ntdll. Show all posts
Thursday, March 29, 2018
Subscribe to:
Posts (Atom)