TopoIogist

I am quite sure that the thread simply dies (at least the execution does not hang even though these BBCallRoutine calls use the parm to wait for the thread to...

@DarthTon Unfortunately this did not bring up anything spectacular I think: ``` BlackBone: BBQueryMemoryProtection: ZwQueryVirtualMemory(0x1C821470000): AllocationBase=0x1C821470000 AllocationProt=PAGE_EXECUTE_READWRITE RegionSize=0x2000 State=MEM_COMMIT Protect=PAGE_EXECUTE_READWRITE Type=MEM_PRIVATE BlackBone: DummyCreateThreadCallback: (0000000000001088, 0000000000001070, 1)

I also tried a third method of allocating the memory with `ZwCreateSection` and `ZwMapViewOfSection` to make it look more legitimate. Unfortunately also without success.

Yes, the protected game is DeadByDaylight (AC=EAC). Unfortunately you would need a way to load your driver without enabling test-signing (i.e. using some kernel exploit or having a certificate). Besides...

I suppose this is EAC? The execution won't go through if the entrypoint is located in some user-allocated memory. Be creative.

Seems like some compilers still don't like this.. Well..