- Aug 12, 2017
- 707
- 1,917
This not a detailed walk-through and is not intended to be... (and is of no use for people with no coding skills...)
More like some tips to put you in the right track.
All the protectors virtualizers can be defeated with code injection technics. You won't be able to grab the main executable but will grab everything else that is packed/virtualized
What you will need:
1. A dll injector e.g.
2. the source code of a file manager. e.g. winfile, explorer++ , etc. (why make your own file manager when other proven sollutions already exist?)
3. A way to initialize a subthread of the injected dll, register a new window class, Create the new window, etc.
4. compile your code and create an x86 and an x64 version of your dll. (you'll need to inject it in the protected/virtualized thread)
The tricky part is number 3.
Unfortunatly it is very difficult to find referencies.
Fortunatly a coder named sim0n in 2009 made a great guide that will help you get started...
another article with a bit different approach is here
I attached a copy sim0n'sguide in case it disappears.
Happy coding
ps. hints for the code that you need to add in your dllmain.cpp
for winfile you should look at the code of "init.cpp" and "main.cpp"
for explorer++ you should look at the code of "WinMain.cpp"
More like some tips to put you in the right track.
All the protectors virtualizers can be defeated with code injection technics. You won't be able to grab the main executable but will grab everything else that is packed/virtualized
What you will need:
1. A dll injector e.g.
You must be registered to see the links
You must be registered to see the links
2. the source code of a file manager. e.g. winfile, explorer++ , etc. (why make your own file manager when other proven sollutions already exist?)
You must be registered to see the links
You must be registered to see the links
3. A way to initialize a subthread of the injected dll, register a new window class, Create the new window, etc.
4. compile your code and create an x86 and an x64 version of your dll. (you'll need to inject it in the protected/virtualized thread)
The tricky part is number 3.
Unfortunatly it is very difficult to find referencies.
Fortunatly a coder named sim0n in 2009 made a great guide that will help you get started...
You must be registered to see the links
another article with a bit different approach is here
You must be registered to see the links
I attached a copy sim0n'sguide in case it disappears.
Happy coding
ps. hints for the code that you need to add in your dllmain.cpp
for winfile you should look at the code of "init.cpp" and "main.cpp"
for explorer++ you should look at the code of "WinMain.cpp"
Last edited:
