Bug: Repeated memory decryption leads to ERROR C0000005

Explanation:
    PigSyscall#InternalCaller Line 52
    when second call Function "CallSyscall" , stub_addr will be decrypt again by Call CryptPermute a second time it will leads to ERROR C0000005(access violation)

Possible Solution:
    adding a flag to track whether the address has already been decrypted

![Image](https://github.com/user-attachments/assets/8fa94c5b-4b1c-421a-99c1-b97abb796fa7)
![Image](https://github.com/user-attachments/assets/0d013000-6e97-4b50-8697-88141df5654a)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bug: Repeated memory decryption leads to ERROR C0000005 #1

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Bug: Repeated memory decryption leads to ERROR C0000005 #1

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions