AddVectoredExceptionHandler
The AddVectoredExceptionHandler function is used to register a vectored exception handler in a Windows program. This function allows a developer to specify a function to be called when an exception occurs in the program. The function takes two parameters:
First: an integer value that specifies the order in which the handler should be called. If this parameter is nonzero, the handler is the first to be called, otherwise, it is the last to be called.
Handler: a pointer to the handler function that should be called. This function should take one parameter, which is a pointer to an EXCEPTION_POINTERS structure that contains information about the exception.
If the function succeeds, it returns a handle to the exception handler. If it fails, it returns NULL.
Through official Microsoft Developer Network (MSDN).
Featured in Techniques
| Technique Name | Technique ID's | Snippet(s) | Rules(s) | OS |
|---|---|---|---|---|
| INT 0x2D | U0129 B0001.006 | |||
| Trap Flag | U0131 | |||
| AddVectoredExceptionHandler | U0125 |
Matching Samples 10 most recent
| Sample Name | Matching Techniques | First Seen | Last Seen |
|---|---|---|---|
| test.exe | 7 | 2025-06-20 | 1 week, 3 days ago |
| 131da83b521f610819141d5c7403...abb22ef504a7593955a65f07.exe | 9 | 2025-06-12 | 2 weeks, 4 days ago |
| cs2.exe | 4 | 2025-04-19 | 2 months, 1 week ago |
| mmmm.exe | 7 | 2025-03-23 | 3 months ago |
| RustPatchlessCLRLoader.exe | 8 | 2025-03-07 | 3 months, 3 weeks ago |
| slipknot hackvshack.net.dll | 5 | 2025-02-12 | 4 months, 2 weeks ago |
| ZClient.exe | 12 | 2025-01-13 | 5 months, 2 weeks ago |
| satan_ransomware.exe | 10 | 2024-11-30 | 7 months ago |
| implant.exe | 6 | 2024-11-18 | 7 months, 1 week ago |
| dudu.exe | 6 | 2024-11-14 | 7 months, 2 weeks ago |