特点如下: Indirect Syscall Using Exception Directory to get SSNs Mask Syscall Stub in static file Dynamic decrypt stub and make Call 回来再详细看一下,学习一下