Cthulhu
March 17th, 2008, 12:19
Very interesting article!
http://www.codeproject.com/KB/winsdk/CodeInject.aspx?msg=2470205#xx2470205xx
http://www.codeproject.com/KB/winsdk/CodeInject.aspx?msg=2470205#xx2470205xx
View Full Version : Code Injection: Injecting an Entire C Compiled Application
disavowed
March 17th, 2008, 19:37
much easier to inject a compiled application if you make it a dll and just add it to the target's import table.
Admiral
March 18th, 2008, 05:06
Or just calling LoadLibrary (via CreateRemoteThread if working remotely) on the exe itself. In the absence of a relocation table, the resulting image (which obviously won't be loaded at 0x00400000) will have dangling references but these can usually be fixed easy enough with some static analysis.
I guess this article is a fairly educational journey through some important topics, but practically, disavowed is right - compile as a DLL for the win.
I guess this article is a fairly educational journey through some important topics, but practically, disavowed is right - compile as a DLL for the win.
Powered by vBulletin® Version 4.2.2 Copyright © 2018 vBulletin Solutions, Inc. All rights reserved.