- Generated by
1.8.13
|
Bitdefender Hypervisor Memory Introspection
|
Describes a serialized intObjDpiWinHeapSpray. More...
Data Fields | |
| struct { | |
| DWORD Mapped: 1 | |
| DWORD Detected: 1 | |
| The bit is set if the i-th page was detected as malicious by shemu. More... | |
| DWORD HeapValCount: 11 | |
| The number of heap values in the page. Since the max value can be 1024, 11 bits are needed. More... | |
| DWORD Offset: 12 | |
| The offset where the detection on the given page was given, if Detection is equal to 1. More... | |
| DWORD Executable: 1 | |
| True if the page is executable in the translation. More... | |
| DWORD Reserved: 7 | |
| Reserved for further use. More... | |
| } | HeapPages [0xF] |
| QWORD | ShellcodeFlags |
| The shellcode flags given by shemu on the detected page. More... | |
| BYTE | DetectedPage [0x1000] |
| The page which was detected through shemu as malicious. More... | |
| BYTE | MaxHeapValPageContent [0x1000] |
| The copied page which has the most heap values in it. More... | |
Describes a serialized intObjDpiWinHeapSpray.
Definition at line 429 of file serializers.c.
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::Detected |
The bit is set if the i-th page was detected as malicious by shemu.
Definition at line 435 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| BYTE _SERIALIZER_DPI_WIN_HEAP_SPRAY::DetectedPage[0x1000] |
The page which was detected through shemu as malicious.
Definition at line 446 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::Executable |
True if the page is executable in the translation.
Definition at line 440 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| struct { ... } _SERIALIZER_DPI_WIN_HEAP_SPRAY::HeapPages[0xF] |
Referenced by IntSerializeDpiWinHeapSpray().
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::HeapValCount |
The number of heap values in the page. Since the max value can be 1024, 11 bits are needed.
Definition at line 437 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::Mapped |
The bit is set if the i-th page could be mapped.
Definition at line 433 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| BYTE _SERIALIZER_DPI_WIN_HEAP_SPRAY::MaxHeapValPageContent[0x1000] |
The copied page which has the most heap values in it.
Definition at line 447 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::Offset |
The offset where the detection on the given page was given, if Detection is equal to 1.
Definition at line 439 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
| DWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::Reserved |
Reserved for further use.
Definition at line 441 of file serializers.c.
| QWORD _SERIALIZER_DPI_WIN_HEAP_SPRAY::ShellcodeFlags |
The shellcode flags given by shemu on the detected page.
Definition at line 444 of file serializers.c.
Referenced by IntSerializeDpiWinHeapSpray().
1.8.13