API tools faq
paste
Advertisement
Riremito

BlackCipher's IAT Hook

Riremito
May 26th, 2022
537
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.36 KB | None | 0 0
raw download clone embed print report
  1. Symbol=bc62e1.NtQueryInformationFile
  2. Symbol=bc62e1.NtQuerySecurityObject
  3. Symbol=bc62e1.NtOpenFile
  4. Symbol=bc62e1.NtQueryWnfStateData
  5. Symbol=bc62e1.NtSetInformationFile
  6. Symbol=bc62e1.NtFsControlFile
  7. Symbol=bc62e1.NtQueryVolumeInformationFile
  8. Symbol=bc62e1.NtCreateFile
  9. Symbol=bc62e1.NtWaitForSingleObject
  10. Symbol=bc62e1.NtNotifyChangeDirectoryFileEx
  11. Symbol=bc62e1.NtQuerySystemInformation
  12. Symbol=bc62e1.NtOpenKey
  13. Symbol=bc62e1.ZwQueryWnfStateData
  14. Symbol=bc62e1.NtQueryEaFile
  15. Symbol=bc62e1.NtFlushBuffersFile
  16. Symbol=bc62e1.NtCreateEvent
  17. Symbol=bc62e1.NtQueryValueKey
  18. Symbol=bc62e1.NtOpenMutant
  19. Symbol=bc62e1.NtReleaseMutant
  20. Symbol=bc62e1.NtCreateKeyTransacted
  21. Symbol=bc62e1.NtCreateKey
  22. Symbol=bc62e1.NtSetValueKey
  23. Symbol=bc62e1.NtQueryDirectoryFile
  24. Symbol=bc62e1.NtTerminateProcess
  25. Symbol=bc62e1.NtSetDefaultLocale
  26. Symbol=bc62e1.NtDeleteValueKey
  27. Symbol=bc62e1.NtEnumerateValueKey
  28. Symbol=bc62e1.NtQueryInstallUILanguage
  29. Symbol=bc62e1.NtEnumerateKey
  30. Symbol=bc62e1.NtGetNlsSectionPtr
  31. Symbol=bc62e1.NtDeleteKey
  32. Symbol=bc62e1.NtCreateSection
  33. Symbol=bc62e1.NtMapViewOfSection
  34. Symbol=bc62e1.NtQueryDefaultLocale
  35. Symbol=bc62e1.NtNotifyChangeKey
  36. Symbol=bc62e1.NtQueryInformationToken
  37. Symbol=bc62e1.NtQueryLicenseValue
  38. Symbol=bc62e1.NtOpenSymbolicLinkObject
  39. Symbol=bc62e1.NtQuerySymbolicLinkObject
  40. Symbol=bc62e1.ZwQueryInformationToken
  41. Symbol=bc62e1.ZwQueryValueKey
  42. Symbol=bc62e1.ZwClose
  43. Symbol=bc62e1.ZwOpenKey
  44. Symbol=bc62e1.NtQueryMultipleValueKey
  45. Symbol=bc62e1.NtOpenPrivateNamespace
  46. Symbol=bc62e1.NtDeletePrivateNamespace
  47. Symbol=bc62e1.NtCreatePrivateNamespace
  48. Symbol=bc62e1.NtClose
  49. Symbol=bc62e1.NtQueryInformationProcess
  50. Symbol=bc62e1.NtDuplicateObject
  51. Symbol=bc62e1.NtResetEvent
  52. Symbol=bc62e1.NtQueryEvent
  53. Symbol=bc62e1.NtSetInformationProcess
  54. Symbol=bc62e1.NtQueryKey
  55. Symbol=bc62e1.NtLoadKeyEx
  56. Symbol=bc62e1.NtQueryVirtualMemory
  57. Symbol=bc62e1.NtOpenProcessTokenEx
  58. Symbol=bc62e1.NtCreateWnfStateName
  59. Symbol=bc62e1.NtDeleteWnfStateName
  60. Symbol=bc62e1.NtSetSecurityObject
  61. Symbol=bc62e1.NtUnmapViewOfSection
  62. Symbol=bc62e1.NtQuerySecurityAttributesToken
  63. Symbol=bc62e1.NtGetCachedSigningLevel
  64. Symbol=bc62e1.ZwCreateKey
  65. Symbol=bc62e1.ZwSetValueKey
  66. Symbol=bc62e1.NtDeviceIoControlFile
  67. Symbol=bc62e1.NtReadFile
  68. Symbol=bc62e1.NtWaitForMultipleObjects
  69. Symbol=bc62e1.NtSetSystemInformation
  70. Symbol=bc62e1.NtYieldExecution
  71. Symbol=bc62e1.NtDuplicateToken
  72. Symbol=bc62e1.NtAllocateLocallyUniqueId
  73. Symbol=bc62e1.NtAccessCheck
  74. Symbol=bc62e1.NtAccessCheckByType
  75. Symbol=bc62e1.NtAccessCheckByTypeResultList
  76. Symbol=bc62e1.NtOpenProcessToken
  77. Symbol=bc62e1.NtOpenThreadToken
  78. Symbol=bc62e1.NtSetInformationToken
  79. Symbol=bc62e1.NtAdjustPrivilegesToken
  80. Symbol=bc62e1.NtAdjustGroupsToken
  81. Symbol=bc62e1.NtPrivilegeCheck
  82. Symbol=bc62e1.NtAccessCheckAndAuditAlarm
  83. Symbol=bc62e1.NtAccessCheckByTypeAndAuditAlarm
  84. Symbol=bc62e1.NtAccessCheckByTypeResultListAndAuditAlarm
  85. Symbol=bc62e1.NtAccessCheckByTypeResultListAndAuditAlarmByHandle
  86. Symbol=bc62e1.NtOpenObjectAuditAlarm
  87. Symbol=bc62e1.NtPrivilegeObjectAuditAlarm
  88. Symbol=bc62e1.NtCloseObjectAuditAlarm
  89. Symbol=bc62e1.NtDeleteObjectAuditAlarm
  90. Symbol=bc62e1.NtPrivilegedServiceAuditAlarm
  91. Symbol=bc62e1.NtSetInformationThread
  92. Symbol=bc62e1.NtImpersonateAnonymousToken
  93. Symbol=bc62e1.NtFilterToken
  94. Symbol=bc62e1.NtSetCachedSigningLevel
  95. Symbol=bc62e1.NtLockVirtualMemory
  96. Symbol=bc62e1.NtUnlockVirtualMemory
  97. Symbol=bc62e1.NtReadVirtualMemory
  98. Symbol=bc62e1.NtProtectVirtualMemory
  99. Symbol=bc62e1.NtWriteVirtualMemory
  100. Symbol=bc62e1.NtAllocateVirtualMemory
  101. Symbol=bc62e1.NtAllocateVirtualMemoryEx
  102. Symbol=bc62e1.NtFreeVirtualMemory
  103. Symbol=bc62e1.NtOpenEvent
  104. Symbol=bc62e1.NtGetWriteWatch
  105. Symbol=bc62e1.NtResetWriteWatch
  106. Symbol=bc62e1.NtSetInformationVirtualMemory
  107. Symbol=bc62e1.NtAllocateUserPhysicalPages
  108. Symbol=bc62e1.NtFreeUserPhysicalPages
  109. Symbol=bc62e1.NtMapUserPhysicalPages
  110. Symbol=bc62e1.NtOpenDirectoryObject
  111. Symbol=bc62e1.NtQueryObject
  112. Symbol=bc62e1.NtCreateSymbolicLinkObject
  113. Symbol=bc62e1.NtCreateDirectoryObjectEx
  114. Symbol=bc62e1.NtLoadEnclaveData
  115. Symbol=bc62e1.NtTerminateEnclave
  116. Symbol=bc62e1.NtCreateNamedPipeFile
  117. Symbol=bc62e1.NtWriteFile
  118. Symbol=bc62e1.NtLockFile
  119. Symbol=bc62e1.NtUnlockFile
  120. Symbol=bc62e1.NtCancelIoFile
  121. Symbol=bc62e1.NtCancelIoFileEx
  122. Symbol=bc62e1.NtCancelSynchronousIoFile
  123. Symbol=bc62e1.NtReadFileScatter
  124. Symbol=bc62e1.NtWriteFileGather
  125. Symbol=bc62e1.NtSetEvent
  126. Symbol=bc62e1.NtClearEvent
  127. Symbol=bc62e1.NtPulseEvent
  128. Symbol=bc62e1.NtCreateSemaphore
  129. Symbol=bc62e1.NtOpenSemaphore
  130. Symbol=bc62e1.NtReleaseSemaphore
  131. Symbol=bc62e1.NtCreateMutant
  132. Symbol=bc62e1.NtCreateTimer2
  133. Symbol=bc62e1.NtCreateTimer
  134. Symbol=bc62e1.NtOpenTimer
  135. Symbol=bc62e1.NtSetTimerEx
  136. Symbol=bc62e1.NtCancelTimer
  137. Symbol=bc62e1.NtSignalAndWaitForSingleObject
  138. Symbol=bc62e1.NtDelayExecution
  139. Symbol=bc62e1.NtOpenProcess
  140. Symbol=bc62e1.NtCompareObjects
  141. Symbol=bc62e1.NtSetInformationObject
  142. Symbol=bc62e1.NtSetSystemTime
  143. Symbol=bc62e1.NtQueryAuxiliaryCounterFrequency
  144. Symbol=bc62e1.NtConvertBetweenAuxiliaryCounterAndPerformanceCounter
  145. Symbol=bc62e1.NtCreateThreadEx
  146. Symbol=bc62e1.NtResumeThread
  147. Symbol=bc62e1.NtTerminateThread
  148. Symbol=bc62e1.NtOpenThread
  149. Symbol=bc62e1.NtQueryInformationThread
  150. Symbol=bc62e1.NtSuspendThread
  151. Symbol=bc62e1.NtGetContextThread
  152. Symbol=bc62e1.NtSetContextThread
  153. Symbol=bc62e1.NtQueueApcThread
  154. Symbol=bc62e1.NtCreateLowBoxToken
  155. Symbol=bc62e1.NtCreateSectionEx
  156. Symbol=bc62e1.NtOpenSection
  157. Symbol=bc62e1.NtMapViewOfSectionEx
  158. Symbol=bc62e1.NtFlushVirtualMemory
  159. Symbol=bc62e1.NtUnmapViewOfSectionEx
  160. Symbol=bc62e1.NtCreateIoCompletion
  161. Symbol=bc62e1.NtSetIoCompletion
  162. Symbol=bc62e1.NtRemoveIoCompletion
  163. Symbol=bc62e1.NtRemoveIoCompletionEx
  164. Symbol=bc62e1.NtQuerySystemInformationEx
  165. Symbol=bc62e1.NtRaiseHardError
  166. Symbol=bc62e1.NtRemoveProcessDebug
  167. Symbol=bc62e1.NtCreateUserProcess
  168. Symbol=bc62e1.NtQueryDirectoryObject
  169. Symbol=bc62e1.NtQueryAttributesFile
  170. Symbol=bc62e1.NtQueryFullAttributesFile
  171. Symbol=bc62e1.NtQueryDirectoryFileEx
  172. Symbol=bc62e1.NtNotifyChangeDirectoryFile
  173. Symbol=bc62e1.NtIsProcessInJob
  174. Symbol=bc62e1.ZwQueryWnfStateNameInformation
  175. Symbol=bc62e1.ZwUpdateWnfStateData
  176. Symbol=bc62e1.NtQueryInformationJobObject
  177. Symbol=bc62e1.NtRaiseException
  178. Symbol=bc62e1.NtFlushKey
  179. Symbol=bc62e1.NtLoadKey
  180. Symbol=bc62e1.NtUnloadKey
  181. Symbol=bc62e1.NtNotifyChangeMultipleKeys
  182. Symbol=bc62e1.NtSaveKeyEx
  183. Symbol=bc62e1.NtRestoreKey
  184. Symbol=bc62e1.NtOpenKeyEx
  185. Symbol=bc62e1.NtSetInformationKey
  186. Symbol=bc62e1.NtOpenKeyTransactedEx
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!