Internals of Windows Memory Management (not only) for Malware Analysis

Willems, Carsten

InternalsOfWindowsMemoryMangement2.pdf - Published

Download (407kB)

URN: urn:nbn:de:bsz:180-madoc-31489
Document Type: Working paper
Year of publication: 2011
The title of a journal, publication series: None
Publication language: English
Institution: School of Business Informatics and Mathematics > Sonstige - Fakultät für Wirtschaftsinformatik und Wirtschaftsmathematik
MADOC publication series: Veröffentlichungen der Fakultät für Mathematik und Informatik > Institut für Informatik > Technical Reports
Subject: 004 Computer science, internet
Classification: CCS: C.5.3 Micr ,
Subject headings (SWD): Speicherverwaltung , Malware , Computerforensik
Individual keywords (German): Windows , PTE
Keywords (English): Windows , PTE , Pagefault
Abstract: This document presents insights from extensive reverse engineering efforts of the memory management mechanisms of Windows XP. The focus lies on (1) the mechanisms which are used to map executable modules into the address space and (2) the role of the page fault handler in this context.
Additional information:

Das Dokument wird vom Publikationsserver der Universitätsbibliothek Mannheim bereitgestellt.

Metadata export


+ Search Authors in

+ Download Statistics

Downloads per month over past year

View more statistics

You have found an error? Please let us know about your desired correction here: E-Mail

Actions (login required)

Show item Show item