mirror of
https://github.com/vxunderground/MalwareSourceCode.git
synced 2024-12-23 11:55:26 +00:00
484 B
484 B
inject_shellcode
Small compendium of injection techniques commonly used in malware demonstrated on metasploit-generated shellcode
Various objects of injection:
- existing process (found by name)
- newly created process
Demonstrated methods:
- Running shellcode in a new thread
- Adding shellcode into existing thread (using NtQueueApcThread)
- Patching Entry Point of the process
- Patching context of the process
- Injecting into Tray Window (using SetWindowLong)