Description

Suspends a thread so that it stops running. Malware will sometimes suspend a thread in order to modify it by performing code injection.

Note

The EBX register of a suspended newly created process always contains a pointer to the PEB data structure.