MalwareSourceCode/Win32/Proof of Concepts/ExtraWindowInject/README.md

14 lines
484 B
Markdown
Raw Normal View History

2022-04-12 01:00:13 +00:00
# inject_shellcode
Small compendium of injection techniques commonly used in malware demonstrated on metasploit-generated shellcode<br/>
Various objects of injection:<br/>
+ existing process (found by name)
+ newly created process
Demonstrated methods:<br/>
+ Running shellcode in a new thread
+ Adding shellcode into existing thread (using NtQueueApcThread)
+ Patching Entry Point of the process
+ Patching context of the process
+ Injecting into Tray Window (using SetWindowLong)