re_and_more : RE tip of the day: Another way how malware can fin • TwiCopy

Reverse Engineering and More

@re_and_more

+ Follow

RE and More by Alexey Kleymenov (https://t.co/s1pWjL46AW). Private classes and group workshops in malware analysis and reverse engineering. #infosec #malware

calendar_today19-06-2020 08:36:57

623 Tweets

11,7K Followers

553 Following

Reverse Engineering and More

@re_and_more

2 months ago

RE tip of the day: Another way how malware can find its parent process's ID is with NtQueryInformationProcess API, ProcessBasicInformation and SystemProcessInformation args populate structures containing the InheritedFromUniqueProcessId field
#infosec #malware #reverseengineering

account_circle