Embedded Files
We don't display ads so we rely on your Bitcoin donations to 1KWEk9QaiJb2NwP5YFmR24LyUBa4JyuKqZ
Post date: Oct 17, 2010 10:48:20 PM
{
Inject Exe Demo
by Aphex
This program demonstrates more of InjectLibraryEx's
true power. The ability to inject EXE files. This means
that the EXE you inject can be stored somewhere encrypted
or compressed and then later it can be loaded into memory
and executed. Or as this program does, it can inject itself
into another application. The target application will show
no signs of the injection.
}
program InjExe;uses Windows, afxCodeHook;var StartInfo: TStartupInfo; ProcInfo: TProcessInformation; BytesRead, Module, Process, Size: dword; Path: array [0..MAX_PATH] of char; Data: pointer;function ExtractFileName(FileName: string): string;begin while Pos('\', FileName) <> 0 do Delete(FileName, 1, Pos('\', FileName)); while Pos('/', FileName) <> 0 do Delete(FileName, 1, Pos('/', FileName)); Result := FileName;end;begin //check our location if lstrcmpi('notepad.exe', pchar(ExtractFileName(ParamStr(0)))) = 0 then begin MessageBox(0, 'hello from notepad :)', 'afxCodeHook', 0); ExitThread(0); end; //create process to inject into ZeroMemory(@StartInfo, SizeOf(TStartupInfo)); StartInfo.cb := SizeOf(TStartupInfo); CreateProcess(nil, 'notepad.exe', nil, nil, False, 0, nil, nil, StartInfo, ProcInfo); //get the dll data to inject Process := ProcInfo.hProcess; GetCurrentDirectory(MAX_PATH, Path); Module := CreateFile(pchar(ParamStr(0)), GENERIC_READ, FILE_SHARE_READ, nil, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, 0); Size := GetFileSize(Module, nil); GetMem(Data, Size); ReadFile(Module, Data^, Size, BytesRead, nil); CloseHandle(Module); //get it boi InjectLibrary(Process, Data); FreeMem(Data);end.Google Sites
Report abuse