Simple PE infector contributing code in the header. Gratitude for: Sars / wasm and personal pr0m1x/EOF. Pre folder, create a folder C: \ Polygon Contamination will be conducted in order that there. In the bin folder to collect a01.

使用到的工具 IDA6.0 LordPE C32Asm 由于自己写了个MemoryLoader注入所以一开始考虑的是找不到hyxd.exe进程导致的注入失败 后修改为FindWindow通过窗口标题注入进程也无法正常使用 于是打开IDA 分析DLL流程(DLL Hook FindWindowA)