mirror of
https://github.com/vxunderground/MalwareSourceCode.git
synced 2024-12-19 09:56:10 +00:00
62 lines
2.1 KiB
C#
62 lines
2.1 KiB
C#
|
// Decompiled with JetBrains decompiler
|
|||
|
|
// Type: Microsoft.InfoCards.DecryptRequest
|
|||
|
|
// Assembly: infocard, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
|
|||
|
|
// MVID: ADE0A079-11DB-4A46-8BDE-D2A592CA8DEA
|
|||
|
|
// Assembly location: C:\Users\Administrateur\Downloads\Virusshare-00001-msil\Virus.Win32.Expiro.w-1f15ee7e9f7da02b6bfb4c5a5e6484eb9fa71b82d3699c54bcc7a31794b4a66d.exe
|
|||
|
|
|
|||
|
|
using Microsoft.InfoCards.Diagnostics;
|
|||
|
|
using System;
|
|||
|
|
using System.Diagnostics;
|
|||
|
|
using System.IO;
|
|||
|
|
using System.Security.Principal;
|
|||
|
|
|
|||
|
|
namespace Microsoft.InfoCards
|
|||
|
|
{
|
|||
|
|
internal class DecryptRequest : ClientRequest
|
|||
|
|
{
|
|||
|
|
private int m_cryptoSession;
|
|||
|
|
private bool m_useOAEP;
|
|||
|
|
private byte[] m_encrypted;
|
|||
|
|
private byte[] m_decrypted;
|
|||
|
|
|
|||
|
|
public DecryptRequest(
|
|||
|
|
Process callingProcess,
|
|||
|
|
WindowsIdentity callingIdentity,
|
|||
|
|
IntPtr rpcHandle,
|
|||
|
|
Stream inArgs,
|
|||
|
|
Stream outArgs)
|
|||
|
|
: base(callingProcess, callingIdentity, rpcHandle, inArgs, outArgs)
|
|||
|
|
{
|
|||
|
|
this.m_cryptoSession = 0;
|
|||
|
|
this.m_useOAEP = false;
|
|||
|
|
this.m_encrypted = (byte[]) null;
|
|||
|
|
this.m_decrypted = (byte[]) null;
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
protected override void OnMarshalInArgs()
|
|||
|
|
{
|
|||
|
|
BinaryReader binaryReader = (BinaryReader) new InfoCardBinaryReader(this.InArgs);
|
|||
|
|
this.m_cryptoSession = binaryReader.ReadInt32();
|
|||
|
|
this.m_useOAEP = binaryReader.ReadBoolean();
|
|||
|
|
int count = binaryReader.ReadInt32();
|
|||
|
|
this.m_encrypted = binaryReader.ReadBytes(count);
|
|||
|
|
InfoCardTrace.ThrowInvalidArgumentConditional(0 == this.m_cryptoSession, "cryptoSession");
|
|||
|
|
InfoCardTrace.ThrowInvalidArgumentConditional(this.m_encrypted == null || 0 == this.m_encrypted.Length, "encrypted");
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
protected override void OnProcess() => this.m_decrypted = ((AsymmetricCryptoSession) CryptoSession.Find(this.m_cryptoSession, this.CallerPid, this.RequestorIdentity.User)).Decrypt(this.m_useOAEP, this.m_encrypted);
|
|||
|
|
|
|||
|
|
protected override void OnMarshalOutArgs()
|
|||
|
|
{
|
|||
|
|
try
|
|||
|
|
{
|
|||
|
|
Utility.SerializeBytes(new BinaryWriter(this.OutArgs), this.m_decrypted);
|
|||
|
|
}
|
|||
|
|
finally
|
|||
|
|
{
|
|||
|
|
Array.Clear((Array) this.m_decrypted, 0, this.m_decrypted.Length);
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
}
|