# 15352 0x1AF91A490C4import ctypeskernel32 = ctypes.windll.kernel32PROCE

1. # 15352 0x1AF91A490C4
2. import ctypes
3.  
4. kernel32 = ctypes.windll.kernel32
5. PROCESS_QUERY_INFORMATION = 0x0400
6. PROCESS_VM_READ = 0x0010
7.  
8. pid = int(15352)
9. hproc = kernel32.OpenProcess(PROCESS_QUERY_INFORMATION |PROCESS_VM_READ, False, pid)
10. print(hproc)
11. lpbaseaddr = 0x1AF91 # Works - returns b'\x00\x00\x00\x00\x00\x00\x00\x00'
12. lpbaseaddr = 0x1AF91A490C4 # Doesn't work - returns the same error
13. read_buff = ctypes.create_string_buffer(8)
14. bytread = ctypes.c_ulong(0)
15. kernel32.ReadProcessMemory(hproc, lpbaseaddr, read_buff, 8, ctypes.byref(bytread))
16. print(read_buff.raw) #i also tried read_buff.value