ch0ic3/MalwareSourceCode
1
0
Fork 0
mirror of https://github.com/vxunderground/MalwareSourceCode.git synced 2024-12-19 18:06:10 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
f2ac1ece55
MalwareSourceCode/MSIL/Virus/Win32/E/Virus.Win32.Expiro.w-1f15ee7e9f7da02b6bfb4c5a5e6484eb9fa71b82d3699c54bcc7a31794b4a66d/Microsoft/InfoCards/GetCryptoTransformRequest.cs
vxunderground f2ac1ece55 auto-decompiled msil via petikvx 
add
2022-08-18 06:28:56 -05:00

59 lines
2.3 KiB
C#
Raw Blame History

// Decompiled with JetBrains decompiler
// Type: Microsoft.InfoCards.GetCryptoTransformRequest
// Assembly: infocard, Version=3.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
// MVID: ADE0A079-11DB-4A46-8BDE-D2A592CA8DEA
// Assembly location: C:\Users\Administrateur\Downloads\Virusshare-00001-msil\Virus.Win32.Expiro.w-1f15ee7e9f7da02b6bfb4c5a5e6484eb9fa71b82d3699c54bcc7a31794b4a66d.exe
using Microsoft.InfoCards.Diagnostics;
using System;
using System.Diagnostics;
using System.IO;
using System.Security.Cryptography;
using System.Security.Principal;
using System.Text;
namespace Microsoft.InfoCards
{
internal class GetCryptoTransformRequest : ClientRequest
{
private int m_cryptoSession;
private CipherMode m_mode;
private PaddingMode m_padding;
private int m_feedbackSize;
private SymmetricCryptoSession.Direction m_direction;
private byte[] m_iv;
private TransformCryptoSession m_transformSession;
public GetCryptoTransformRequest(
Process callingProcess,
WindowsIdentity callingIdentity,
IntPtr rpcHandle,
Stream inArgs,
Stream outArgs)
: base(callingProcess, callingIdentity, rpcHandle, inArgs, outArgs)
{
}
protected override void OnMarshalInArgs()
{
BinaryReader binaryReader = (BinaryReader) new InfoCardBinaryReader(this.InArgs, Encoding.Unicode);
this.m_cryptoSession = binaryReader.ReadInt32();
this.m_mode = (CipherMode) binaryReader.ReadInt32();
this.m_padding = (PaddingMode) binaryReader.ReadInt32();
this.m_feedbackSize = binaryReader.ReadInt32();
this.m_direction = (SymmetricCryptoSession.Direction) binaryReader.ReadInt32();
this.m_iv = binaryReader.ReadBytes(binaryReader.ReadInt32());
InfoCardTrace.ThrowInvalidArgumentConditional(0 == this.m_feedbackSize, "feedbackSize");
}
protected override void OnProcess() => this.m_transformSession = ((SymmetricCryptoSession) CryptoSession.Find(this.m_cryptoSession, this.CallerPid, this.RequestorIdentity.User)).GetCryptoTransform(this.m_mode, this.m_padding, this.m_feedbackSize, this.m_direction, this.m_iv);
protected override void OnMarshalOutArgs()
{
BinaryWriter bwriter = new BinaryWriter(this.OutArgs, Encoding.Unicode);
this.m_transformSession.Write(bwriter);
bwriter.Flush();
}
}
}
Reference in New Issue View Git Blame Copy Permalink