AddVectoredExceptionHandler
The AddVectoredExceptionHandler function is used to register a vectored exception handler in a Windows program. This function allows a developer to specify a function to be called when an exception occurs in the program. The function takes two parameters:
First: an integer value that specifies the order in which the handler should be called. If this parameter is nonzero, the handler is the first to be called, otherwise, it is the last to be called.
Handler: a pointer to the handler function that should be called. This function should take one parameter, which is a pointer to an EXCEPTION_POINTERS structure that contains information about the exception.
If the function succeeds, it returns a handle to the exception handler. If it fails, it returns NULL.
Through official Microsoft Developer Network (MSDN).
Featured in Techniques
| Technique Name | Technique ID's | Snippet(s) | Rules(s) | OS |
|---|---|---|---|---|
| INT 0x2D | U0129 B0001.006 | |||
| Trap Flag | U0131 | |||
| AddVectoredExceptionHandler | U0125 |
Matching Samples 10 most recent
| Sample Name | Matching Techniques | First Seen | Last Seen |
|---|---|---|---|
| test.exe | 7 | 2025-06-20 | 23 hours ago |
| 131da83b521f610819141d5c7403...abb22ef504a7593955a65f07.exe | 9 | 2025-06-12 | 1 week, 2 days ago |
| cs2.exe | 4 | 2025-04-19 | 2 months ago |
| mmmm.exe | 7 | 2025-03-23 | 2 months, 4 weeks ago |
| RustPatchlessCLRLoader.exe | 8 | 2025-03-07 | 3 months, 2 weeks ago |
| slipknot hackvshack.net.dll | 5 | 2025-02-12 | 4 months, 1 week ago |
| ZClient.exe | 12 | 2025-01-13 | 5 months, 1 week ago |
| satan_ransomware.exe | 10 | 2024-11-30 | 6 months, 3 weeks ago |
| implant.exe | 6 | 2024-11-18 | 7 months ago |
| dudu.exe | 6 | 2024-11-14 | 7 months, 1 week ago |