Advertisement
krot

INT 2E

Aug 10th, 2022
291
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.87 KB | None | 0 0
  1. INT 2E UP - Windows NT - NATIVE API
  2.  
  3. EAX = function number (see #02586)
  4. EDX = address of parameter block
  5. Return: ???
  6.  
  7. (Table 02586)
  8. Values for Windows NT NTOS function number:
  9. 000h AcceptConnectPort (24 bytes of parameters)
  10. 001h AccessCheck (32 bytes of parameters)
  11. 002h AccessCheckAndAuditAlarm (44 bytes of parameters)
  12. 003h AddAtom (8 bytes of parameters)
  13. 004h AdjustGroupsToken (24 bytes of parameters)
  14. 005h AdjustPrivilegesToken (24 bytes of parameters)
  15. 006h AlertResumeThread (8 bytes of parameters)
  16. 007h AlertThread (4 bytes of parameters)
  17. 008h AllocateLocallyUniqueId (4 bytes of parameters)
  18. 009h AllocateUuids (12 bytes of parameters)
  19. 00Ah AllocateVirtualMemory (24 bytes of parameters)
  20. 00Bh CallbackReturn (12 bytes of parameters)
  21. 00Ch CancelIoFile (8 bytes of parameters)
  22. 00Dh CancelTimer (8 bytes of parameters)
  23. 00Eh ClearEvent (4 bytes of parameters)
  24. 00Fh Close (4 bytes of parameters)
  25. 010h CloseObjectAuditAlarm (12 bytes of parameters)
  26. 011h CompleteConnectPort (4 bytes of parameters)
  27. 012h ConnectPort (32 bytes of parameters)
  28. 013h Continue (8 bytes of parameters)
  29. 014h CreateDirectoryObject (12 bytes of parameters)
  30. 015h CreateEvent (20 bytes of parameters)
  31. 016h CreateEventPair (12 bytes of parameters)
  32. 017h CreateFile (44 bytes of parameters)
  33. 018h CreateIoCompletion (16 bytes of parameters)
  34. 019h CreateKey (28 bytes of parameters)
  35. 01Ah CreateMailslotFile (32 bytes of parameters)
  36. 01Bh CreateMutant (16 bytes of parameters)
  37. 01Ch CreateNamedPipeFile (56 bytes of parameters)
  38. 01Dh CreatePagingFile (16 bytes of parameters)
  39. 01Eh CreatePort (20 bytes of parameters)
  40. 01Fh CreateProcess (32 bytes of parameters)
  41. 020h CreateProfile (36 bytes of parameters)
  42. 021h CreateSection (28 bytes of parameters)
  43. 022h CreateSemaphore (20 bytes of parameters)
  44. 023h CreateSymbolicLinkObject (16 bytes of parameters)
  45. 024h CreateThread (32 bytes of parameters)
  46. 025h CreateTimer (16 bytes of parameters)
  47. 026h CreateToken (52 bytes of parameters)
  48. 027h DelayExecution (8 bytes of parameters)
  49. 028h DeleteAtom (4 bytes of parameters)
  50. 029h DeleteFile (4 bytes of parameters)
  51. 02Ah DeleteKey (4 bytes of parameters)
  52. 02Bh DeleteObjectAuditAlarm (12 bytes of parameters)
  53. 02Ch DeleteValueKey (8 bytes of parameters)
  54. 02Dh DeviceIoControlFile (40 bytes of parameters)
  55. 02Eh DisplayString (4 bytes of parameters)
  56. 02Fh DuplicateObject (28 bytes of parameters)
  57. 030h DuplicateToken (24 bytes of parameters)
  58. 031h EnumerateKey (24 bytes of parameters)
  59. 032h EnumerateValueKey (24 bytes of parameters)
  60. 033h ExtendSection (8 bytes of parameters)
  61. 034h FindAtom (8 bytes of parameters)
  62. 035h FlushBuffersFile (8 bytes of parameters)
  63. 036h FlushInstructionCache (12 bytes of parameters)
  64. 037h FlushKey (4 bytes of parameters)
  65. 038h FlushVirtualMemory (16 bytes of parameters)
  66. 039h FlushWriteBuffer (no parameters)
  67. 03Ah FreeVirtualMemory (16 bytes of parameters)
  68. 03Bh FsControlFile (40 bytes of parameters)
  69. 03Ch GetContextThread (8 bytes of parameters)
  70. 03Dh GetPlugPlayEvent (16 bytes of parameters)
  71. 03Eh GetTickCount (no parameters)
  72. 03Fh ImpersonateClientOfPort (8 bytes of parameters)
  73. 040h ImpersonateThread (12 bytes of parameters)
  74. 041h InitializeRegistry (4 bytes of parameters)
  75. 042h ListenPort (8 bytes of parameters)
  76. 043h LoadDriver (4 bytes of parameters)
  77. 044h LoadKey (8 bytes of parameters)
  78. 045h LoadKey2 (12 bytes of parameters)
  79. 046h LockFile (40 bytes of parameters)
  80. 047h LockVirtualMemory (16 bytes of parameters)
  81. 048h MakeTemporaryObject (4 bytes of parameters)
  82. 049h MapViewOfSection (40 bytes of parameters)
  83. 04Ah NotifyChangeDirectoryFile (36 bytes of parameters)
  84. 04Bh NotifyChangeKey (40 bytes of parameters)
  85. 04Ch OpenDirectoryObject (12 bytes of parameters)
  86. 04Dh OpenEvent (12 bytes of parameters)
  87. 04Eh OpenEventPair (12 bytes of parameters)
  88. 04Fh OpenFile (24 bytes of parameters)
  89. 050h OpenIoCompletion (12 bytes of parameters)
  90. 051h OpenKey (12 bytes of parameters)
  91. 052h OpenMutant (12 bytes of parameters)
  92. 053h OpenObjectAuditAlarm (48 bytes of parameters)
  93. 054h OpenProcess (16 bytes of parameters)
  94. 055h OpenProcessToken (12 bytes of parameters)
  95. 056h OpenSection (12 bytes of parameters)
  96. 057h OpenSemaphore (12 bytes of parameters)
  97. 058h OpenSymbolicLinkObject (12 bytes of parameters)
  98. 059h OpenThread (16 bytes of parameters)
  99. 05Ah OpenThreadToken (16 bytes of parameters)
  100. 05Bh OpenTimer (12 bytes of parameters)
  101. 05Ch PlugPlayControl (16 bytes of parameters)
  102. 05Dh PrivilegeCheck (12 bytes of parameters)
  103. 05Eh PrivilegedServiceAuditAlarm (20 bytes of parameters)
  104. 05Fh PrivilegeObjectAuditAlarm (24 bytes of parameters)
  105. 060h ProtectVirtualMemory (20 bytes of parameters)
  106. 061h PulseEvent (8 bytes of parameters)
  107. 062h QueryInformationAtom (20 bytes of parameters)
  108. 063h QueryAttributesFile (8 bytes of parameters)
  109. 064h QueryDefaultLocale (8 bytes of parameters)
  110. 065h QueryDirectoryFile (44 bytes of parameters)
  111. 066h QueryDirectoryObject (28 bytes of parameters)
  112. 067h QueryEaFile (36 bytes of parameters)
  113. 068h QueryEvent (20 bytes of parameters)
  114. 069h QueryFullAttributesFile (8 bytes of parameters)
  115. 06Ah QueryInformationFile (20 bytes of parameters)
  116. 06Bh QueryIoCompletion (20 bytes of parameters)
  117. 06Ch QueryInformationPort (20 bytes of parameters)
  118. 06Dh QueryInformationProcess (20 bytes of parameters)
  119. 06Eh QueryInformationThread (20 bytes of parameters)
  120. 06Fh QueryInformationToken (20 bytes of parameters)
  121. 070h QueryIntervalProfile (8 bytes of parameters)
  122. 071h QueryKey (20 bytes of parameters)
  123. 072h QueryMultipleValueKey (24 bytes of parameters)
  124. 073h QueryMutant (20 bytes of parameters)
  125. 074h QueryObject (20 bytes of parameters)
  126. 075h QueryOleDirectoryFile (44 bytes of parameters)
  127. 076h QueryPerformanceCounter (8 bytes of parameters)
  128. 077h QuerySection (20 bytes of parameters)
  129. 078h QuerySecurityObject (20 bytes of parameters)
  130. 079h QuerySemaphore (20 bytes of parameters)
  131. 07Ah QuerySymbolicLinkObject (12 bytes of parameters)
  132. 07Bh QuerySystemEnvironmentValue (16 bytes of parameters)
  133. 07Ch QuerySystemInformation (16 bytes of parameters)
  134. 07Dh QuerySystemTime (4 bytes of parameters)
  135. 07Eh QueryTimer (20 bytes of parameters)
  136. 07Fh QueryTimerResolution (12 bytes of parameters)
  137. 080h QueryValueKey (24 bytes of parameters)
  138. 081h QueryVirtualMemory (24 bytes of parameters)
  139. 082h QueryVolumeInformationFile (20 bytes of parameters)
  140. 083h QueueApcThread (20 bytes of parameters)
  141. 084h RaiseException (12 bytes of parameters)
  142. 085h RaiseHardError (24 bytes of parameters)
  143. 086h ReadFile (36 bytes of parameters)
  144. 087h ReadFileScatter (36 bytes of parameters)
  145. 088h ReadRequestData (24 bytes of parameters)
  146. 089h ReadVirtualMemory (20 bytes of parameters)
  147. 08Ah RegisterThreadTerminatePort (4 bytes of parameters)
  148. 08Bh ReleaseMutant (8 bytes of parameters)
  149. 08Ch ReleaseSemaphore (12 bytes of parameters)
  150. 08Dh RemoveIoCompletion (20 bytes of parameters)
  151. 08Eh ReplaceKey (12 bytes of parameters)
  152. 08Fh ReplyPort (8 bytes of parameters)
  153. 090h ReplyWaitReceivePort (16 bytes of parameters)
  154. 091h ReplyWaitReplyPort (8 bytes of parameters)
  155. 092h RequestPort (8 bytes of parameters)
  156. 093h RequestWaitReplyPort (12 bytes of parameters)
  157. 094h ResetEvent (8 bytes of parameters)
  158. 095h RestoreKey (12 bytes of parameters)
  159. 096h ResumeThread (8 bytes of parameters)
  160. 097h SaveKey (8 bytes of parameters)
  161. 098h SetIoCompletion (20 bytes of parameters)
  162. 099h SetContextThread (8 bytes of parameters)
  163. 09Ah SetDefaultHardErrorPort (4 bytes of parameters)
  164. 09Bh SetDefaultLocale (8 bytes of parameters)
  165. 09Ch SetEaFile (16 bytes of parameters)
  166. 09Dh SetEvent (8 bytes of parameters)
  167. 09Eh SetHighEventPair (4 bytes of parameters)
  168. 09Fh SetHighWaitLowEventPair (4 bytes of parameters)
  169. 0A0h ??? (??? bytes of parameters)
  170. 0A1h SetInformationFile (20 bytes of parameters)
  171. 0A2h SetInformationKey (16 bytes of parameters)
  172. 0A3h SetInformationObject (16 bytes of parameters)
  173. 0A4h SetInformationProcess (16 bytes of parameters)
  174. 0A5h SetInformationThread (16 bytes of parameters)
  175. 0A6h SetInformationToken (16 bytes of parameters)
  176. 0A7h SetIntervalProfile (8 bytes of parameters)
  177. 0A8h SetLdtEntries (24 bytes of parameters)
  178. 0A9h SetLowEventPair (4 bytes of parameters)
  179. 0AAh SetLowWaitHighEventPair (4 bytes of parameters)
  180. 0ABh ??? (??? bytes of parameters)
  181. 0ACh SetSecurityObject (12 bytes of parameters)
  182. 0ADh SetSystemEnvironmentValue (8 bytes of parameters)
  183. 0AEh SetSystemInformation (12 bytes of parameters)
  184. 0AFh SetSystemPowerState (12 bytes of parameters)
  185. 0B0h SetSystemTime (8 bytes of parameters)
  186. 0B1h SetTimer (28 bytes of parameters)
  187. 0B2h SetTimerResolution (12 bytes of parameters)
  188. 0B3h SetValueKey (24 bytes of parameters)
  189. 0B4h SetVolumeInformationFile (20 bytes of parameters)
  190. 0B5h ShutdownSystem (4 bytes of parameters)
  191. 0B6h SignalAndWaitForSingleObject (16 bytes of parameters)
  192. 0B7h StartProfile (4 bytes of parameters)
  193. 0B8h StopProfile (4 bytes of parameters)
  194. 0B9h SuspendThread (8 bytes of parameters)
  195. 0BAh SystemDebugControl (24 bytes of parameters)
  196. 0BBh TerminateProcess (8 bytes of parameters)
  197. 0BCh TerminateThread (8 bytes of parameters)
  198. 0BDh TestAlert (no parameters)
  199. 0BEh UnloadDriver (4 bytes of parameters)
  200. 0BFh UnloadKey (4 bytes of parameters)
  201. 0C0h UnlockFile (20 bytes of parameters)
  202. 0C1h UnlockVirtualMemory (16 bytes of parameters)
  203. 0C2h UnmapViewOfSection (8 bytes of parameters)
  204. 0C3h VdmControl (8 bytes of parameters)
  205. 0C4h WaitForMultipleObjects (20 bytes of parameters)
  206. 0C5h WaitForSingleObject (12 bytes of parameters)
  207. 0C6h WaitHighEventPair (4 bytes of parameters)
  208. 0C7h WaitLowEventPair (4 bytes of parameters)
  209. 0C8h WriteFile (36 bytes of parameters)
  210. 0C9h WriteFileGather (36 bytes of parameters)
  211. 0CAh WriteRequestData (24 bytes of parameters)
  212. 0CBh WriteVirtualMemory (20 bytes of parameters)
  213. 0CCh W32Call (20 bytes of parameters)
  214. 0CDh CreateChannel (8 bytes of parameters)
  215. 0CEh ListenChannel (8 bytes of parameters)
  216. 0CFh OpenChannel (8 bytes of parameters)
  217. 0D0h ReplyWaitSendChannel (12 bytes of parameters)
  218. 0D1h SendWaitReplyChannel (16 bytes of parameters)
  219. 0D2h SetContextChannel (4 bytes of parameters)
  220. 0D3h YieldExecution (no parameters)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement