Just a little shellcode launcher that I put together, written in C(++)
- Shellcode encryption with XOR
- Fake error box to trick the user
- Process check (Checks for blacklisted processes)
- Debug check (
PEB->IsBeingDebugged) - VM check (CPUID)
The default configuration file can be found at config.json.default.
After getting your raw shellcode and the configuration file ready, run the config.py script to
generate the src/config.cpp file:
python3 config.py <shellcode file> <configuration file> After running the config.py script, you can run the build32.bat script for a 32 bit build,
or the build64.bat script for a 64 bit build. You will need to run these in a VS command prompt,
otherwise devenv won't be accessible.
- Runs enabled protections, if protection checks fail then the program stops execution
- XORed shellcode gets decrypted
- Program loops over the process list and tries to find a target process
- Writes the shellcode to target process' memory with
VirtualAllocExandWriteProcessMemory - Creates a thread for the process using
CreateRemoteThreadwhich just sleeps - Hijacks the new thread's execution using
SuspendThreadandSetThreadContext - If fails looks for an another process (aka goes back to step 3)
- Lastly, program creates a fake error box if the config to do so is enabled