1
00:00:00,690 --> 00:00:01,320
Welcome back.

2
00:00:01,650 --> 00:00:07,620
We are now going to compile and build our movie, so let's copy this back here.

3
00:00:09,210 --> 00:00:19,830
Open the x64 native to its command problem and then change to our copy to right clicking here, piecing

4
00:00:19,830 --> 00:00:21,140
it heading into.

5
00:00:22,380 --> 00:00:27,770
And now we'll call the compiler script to do the whole way.

6
00:00:29,070 --> 00:00:30,140
So what says Bill?

7
00:00:30,660 --> 00:00:31,350
You can run it.

8
00:00:34,530 --> 00:00:35,140
You enter.

9
00:00:36,000 --> 00:00:43,130
And you will see he brings up the debugging information showing you the address of the builder and race

10
00:00:43,140 --> 00:00:47,220
the remote code expert in, say, the Microsoft Paint.

11
00:00:48,090 --> 00:00:52,410
So as you press and Ted, continue continues, we enter.

12
00:00:52,950 --> 00:00:58,130
And I could hear that beep and you can see the icon at the bottom here for Microsoft page.

13
00:00:58,770 --> 00:01:06,150
If I click on it, I will see that it is actually showing the message box by the Microsoft Paint window.

14
00:01:06,660 --> 00:01:08,220
Yes, not sure at all.

15
00:01:08,700 --> 00:01:14,220
So this is actually camouflaged inside this icon.

16
00:01:14,580 --> 00:01:16,170
The Microsoft Bing icon.

17
00:01:17,190 --> 00:01:19,590
So now let's examine this in process, hacker.

18
00:01:22,180 --> 00:01:30,990
And if we go down to the Microsoft pain down here, you will see is running as Microsoft being too far

19
00:01:31,000 --> 00:01:31,360
to it.

20
00:01:32,710 --> 00:01:42,190
And let's try to track this to find Windows Central to the message box, and he kind of confirmed it.

21
00:01:42,550 --> 00:01:52,330
The parent for this message box is indeed Microsoft paid with the iPad two four two eight, which is

22
00:01:52,330 --> 00:01:53,730
designed here to for.

23
00:01:55,330 --> 00:02:02,050
And if you want to see the shark in memory for Microsoft Paint, you can head over to the memory tech

24
00:02:02,050 --> 00:02:04,480
here and then you scroll down.

25
00:02:05,110 --> 00:02:14,320
You'll be able to look for in the X protection region, which is here which is sanmar, and we double

26
00:02:14,320 --> 00:02:14,970
click on this.

27
00:02:14,980 --> 00:02:16,200
You see the shark.

28
00:02:16,210 --> 00:02:16,660
What is it?

29
00:02:20,480 --> 00:02:26,780
OK, so this is how you can use early but epic ingestion to camouflage the chocolate.

30
00:02:27,350 --> 00:02:29,750
That's all for this practical virtue.

31
00:02:29,780 --> 00:02:31,010
Thank you for watching.