A forum for reverse engineering, OS internals and malware analysis 

Discussion on reverse-engineering and debugging.
 #32221  by EP_X0FF
 Fri Nov 02, 2018 4:41 pm
New Windows 10 19H1 (18272) feature - new BSOD, insufficient input parameters checking in NtUserCreateActivationObject.

BSOD in NtUserCreateActivationObject -> CActivationObject::Create -> CActivationObject::addToHashTable (mov rax, [rcx+rdx*8])

https://gist.github.com/hfiref0x/23a233 ... ac26cf0637