Стаб RtlWow64GetThreadContext

[Polym0rph]

Привет. Ищу человека у которого под рукой виртуальная машина с Windows 7 x64, нужен скриншот стаба функции ntdll!RtlWow64GetThreadContext (IDA PRO/аналог, не важно) Взамен отгружу лайков.

 

[DoomSlayer2002]

 

[CheckerChin]

.text:0000000078EF5360                   public RtlWow64GetThreadContext
.text:0000000078EF5360                   RtlWow64GetThreadContext proc near
.text:0000000078EF5360                                                           
.text:0000000078EF5360
.text:0000000078EF5360                   var_18          = qword ptr -18h
.text:0000000078EF5360
.text:0000000078EF5360 48 83 EC 38                       sub     rsp, 38h
.text:0000000078EF5364 48 83 64 24 20 00                 and     [rsp+38h+var_18], 0
.text:0000000078EF536A 4C 8B C2                          mov     r8, rdx
.text:0000000078EF536D 41 B9 CC 02 00 00                 mov     r9d, 2CCh
.text:0000000078EF5373 BA 1D 00 00 00                    mov     edx, 1Dh
.text:0000000078EF5378 E8 A3 3B FC FF                    call    ZwQueryInformationThread
.text:0000000078EF537D 48 83 C4 38                       add     rsp, 38h
.text:0000000078EF5381 C3                                retn
.text:0000000078EF5381                   RtlWow64GetThreadContext endp