all InfoSec news
Malware development trick - part 37: Enumerate process modules via VirtualQueryEx. Simple C++ example
Malware Analysis, News and Indicators - Latest topics malware.news
﷽
Hello, cybersecurity enthusiasts and white hackers!
Today, this post is the result of my own research on another popular malware development trick: get list of modules of target process.
It’s similar to my previous post about enum list of modules, but in this case I used VirtualQueryEx
practical example
First of all, we just use one of the methods to find target process PID. For example I used this one:
typedef NTSTATUS (NTAPI * fNtGetNextProcess)(
_In_ HANDLE ph, …
case cybersecurity development hackers hello list malware malware analysis malware development modules own popular process research result simple target today