Help!Windbg(x86) crashes when break on access at $peb

bond 1 Reputation point
2021-11-07T16:28:55.123+00:00

Hello,
I am trying to debug a malware which is 32 bit using Windbg x86. While doing that, whenever I put an access break point on $peb using "ba r 1 $peb" and hit go, the OS freezes and reboots. I tried to see the dump file and the error code is 3b and sometimes 139.

Out of curiosity, I Tried to debug Calc.exe (x64) version using Windbg x64 and the break point was hit and OS didnt crash. But when I did the same with Calc.exe (x86 version) using Windbg x86 the OS freezes and reboots.

Please help. I downloaded the symbols for x86 and x64 and loaded them as required.

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
12,066 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
3,003 questions
0 comments No comments
{count} votes

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.