Jump to content
  • Advertisement

TheHobiiiar135

Member
  • Content Count

    11
  • Joined

  • Last visited

Everything posted by TheHobiiiar135

  1. hello i tried to inject my dll in calculator after begining injected i need to call my function in my dll (my dll has exported function called DllMainnn coded in vb.net)   according to http://memoryhacking.com/forums/viewtopic.php?t=348 This Post #2 i need to get function addreas http://memoryhacking.com/forums/viewtopic.php?t=348 here is my code   Public Class Form1 #Region "Main" Private TargetProcessHandle As Integer Private pfnStartAddr As Integer Private pfnStartAddr2 As Integer Private pszLibFileRemote As String Private TargetBufferSize As Integer Public Const PROCESS_VM_READ = &H10 Public Const TH32CS_SNAPPROCESS = &H2 Public Const MEM_COMMIT = 4096 Public Const PAGE_READWRITE = 4 Public Const PROCESS_CREATE_THREAD = (&H2) Public Const PROCESS_VM_OPERATION = (&H8) Public Const PROCESS_VM_WRITE = (&H20) Dim DLLFileName As String Public Declare Function ReadProcessMemory Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As String, _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer) As Boolean Public Declare Function LoadLibrary Lib "kernel32" Alias "LoadLibraryA" ( _ ByVal lpLibFileName As String) As Integer Public Declare Function FreeLibrary Lib "kernel32" ( _ ByVal hModule As Integer) As Boolean Public Declare Function VirtualAllocEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flAllocationType As Integer, _ ByVal flProtect As Integer) As Integer Public Declare Function WriteProcessMemory Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As String, _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer) As Boolean Public Declare Function GetProcAddress Lib "kernel32" ( _ ByVal hModule As Integer, ByVal lpProcName As String) As Integer 'Public Declare Function GetProcAddressEx Lib "kernel32" ( _ 'ByVal hModule As Integer, ByVal lpProcName As String, ByVal procname As String) As Integer Private Declare Function GetModuleHandle Lib "Kernel32" Alias "GetModuleHandleA" ( _ ByVal lpModuleName As String) As Integer Public Declare Function CreateRemoteThread Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpThreadAttributes As Integer, _ ByVal dwStackSize As Integer, _ ByVal lpStartAddress As Integer, _ ByVal lpParameter As Integer, _ ByVal dwCreationFlags As Integer, _ ByRef lpThreadId As Integer) As Integer Public Declare Function OpenProcess Lib "kernel32" ( _ ByVal dwDesiredAccess As Integer, _ ByVal bInheritHandle As Integer, _ ByVal dwProcessId As Integer) As Integer Private Declare Function FindWindow Lib "user32" Alias "FindWindowA" ( _ ByVal lpClassName As String, _ ByVal lpWindowName As String) As Integer Private Declare Function CloseHandle Lib "kernel32" Alias "CloseHandleA" ( _ ByVal hObject As Integer) As Integer Dim ExeName As String = IO.Path.GetFileNameWithoutExtension(Application.ExecutablePath) Public vv As Integer Public Function GetFunctionAddressFromDll(ByVal dllpath As String, ByVal func As String) As Integer Dim libdll As Integer = LoadLibrary(dllpath) vv = libdll Dim retrn As Integer = GetProcAddress(libdll, "DllMainnn") If FreeLibrary(vv) Then Return retrn Else Return 0 End If End Function Private Sub Inject() On Error GoTo 1 ' If error occurs, app will close without any error messages Timer1.Stop() Dim TargetProcess As Process() = Process.GetProcessesByName(TextBox2.Text) TargetProcessHandle = OpenProcess(PROCESS_CREATE_THREAD Or PROCESS_VM_OPERATION Or PROCESS_VM_WRITE, False, TargetProcess(0).Id) pszLibFileRemote = OpenFileDialog1.FileName pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "LoadLibraryA") 'pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "GetProcAddress") '' 'pfnStartAddr2 = GetProcAddress(, "DllMainnn") ''MsgBox(pfnStartAddr) 'MsgBox(GetProcAddress(GetModuleHandle(TextBox1.Text), "DllMainnn")) 'MsgBox(GetProcAddress(LoadLibrary(TextBox1.Text), "DllMainnn")) Dim ll As Integer = GetFunctionAddressFromDll(TextBox1.Text, "DllMainnn") 'MsgBox(ll & " - " & vv) MsgBox(ll - vv) 'MsgBox(TargetProcessHandle + 14350) '' TargetBufferSize = 1 + Len(pszLibFileRemote) 'Dim Rtn As Integer Dim LoadLibParamAdr As Integer LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, TargetBufferSize, MEM_COMMIT, PAGE_READWRITE) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, pszLibFileRemote, TargetBufferSize, 0) MsgBox(LoadLibParamAdr + (ll - vv)) InputBox("St", "tt", LoadLibParamAdr + (ll - vv)) CreateRemoteThread(TargetProcessHandle, 0, 0, LoadLibParamAdr + (ll - vv), LoadLibParamAdr, 0, 0) CloseHandle(TargetProcessHandle) 1: Me.Show() End Sub dll source (for now): Imports System.Runtime.InteropServices Imports RGiesecke.DllExport Module main <DllExport("DllMainnn")> _ Public Function DllMainnn() As String MsgBox("Testing", MsgBoxStyle.Information, "Test") Return "donnnnn e" 'End Select End Function End Module function addreas in: LoadLibParamAdr + (ll - vv) how to call it?? needing t call it with 1 parameters or 2 parameters or no parameters any one know how to do it?? btw i tried to call the same function on their mhs software and it worked    
  2. TheHobiiiar135

    injecting dll into remote process

    fixed the code again now nothing is appear in calculator even after calling CreateRemoteThread   1 allocating memory for that dll 2 write dll to memory 3 Get DLL function address as in linked website in post #1 4 try to call function in memory with this parameters: start address:LoadLibParamAdr + (ll - vv) parameters:null (0)   5 get lpThreadId from CreateRemoteThread   error: the remote process will crash but CreateRemoteThread tells no error(lpThreadId returned) my code: Imports System.IO Imports System.Text Imports System.Runtime.InteropServices Public Class Form1 #Region "Main" Private TargetProcessHandle As Integer Private pfnStartAddr As Integer Private pfnStartAddr2 As Integer Private pszLibFileRemote As String Private TargetBufferSize As Integer Public Const PROCESS_VM_READ = &H10 Public Const TH32CS_SNAPPROCESS = &H2 Public Const MEM_COMMIT = 4096 Public Const PAGE_READWRITE = 4 Public Const PROCESS_CREATE_THREAD = (&H2) Public Const PROCESS_VM_OPERATION = (&H8) Public Const PROCESS_VM_WRITE = (&H20) Public Const PAGE_EXECUTE_READWRITE = (&H40) Public Const MEM_RESERVE = (&H2000) Public Const PROCESS_ALL_ACCESS = &H1F0FFF Dim DLLFileName As String Public Declare Function ReadProcessMemory Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As String, _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer) As Boolean Public Declare Function LoadLibrary Lib "kernel32" Alias "LoadLibraryA" ( _ ByVal lpLibFileName As String) As Integer Public Declare Function FreeLibrary Lib "kernel32" ( _ ByVal hModule As Integer) As Boolean Public Declare Function VirtualAlloc Lib "kernel32" ( _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flAllocationType As Integer, _ ByVal flProtect As Integer) As Integer Public Declare Function VirtualAllocEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flAllocationType As Integer, _ ByVal flProtect As Integer) As Integer Public Declare Function VirtualProtectEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flNewProtect As Integer, _ ByVal lpflOldProtect As Integer) As Integer Public Declare Function VirtualFreeEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal dwFreeType As Integer) As Integer 'Public Declare Function WriteProcessMemory Lib "kernel32" ( _ 'ByVal hProcess As Integer, _ 'ByVal lpBaseAddress As Integer, _ 'ByVal lpBuffer As String, _ 'ByVal nSize As Integer, _ 'ByRef lpNumberOfBytesWritten As Integer) As Boolean 'Public Declare Function WriteProcessMemory Lib "kernel32" ( _ 'ByVal hProcess As IntPtr, _ 'ByVal lpBaseAddress As IntPtr, _ 'ByVal lpBuffer() As Byte, _ 'ByVal nSize As UInt32, _ 'ByRef lpNumberOfBytesWritten As UInt32) As Boolean <DllImport("kernel32.dll")> _ Public Shared Function WriteProcessMemory( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As Byte(), _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer _ ) As Boolean End Function Public Declare Function GetProcAddress Lib "kernel32" ( _ ByVal hModule As Integer, ByVal lpProcName As String) As Integer 'Public Declare Function GetProcAddressEx Lib "kernel32" ( _ 'ByVal hModule As Integer, ByVal lpProcName As String, ByVal procname As String) As Integer Private Declare Function GetModuleHandle Lib "Kernel32" Alias "GetModuleHandleA" ( _ ByVal lpModuleName As String) As Integer Public Declare Function CreateRemoteThread Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpThreadAttributes As Integer, _ ByVal dwStackSize As Integer, _ ByVal lpStartAddress As Integer, _ ByVal lpParameter As Integer, _ ByVal dwCreationFlags As Integer, _ ByRef lpThreadId As Integer) As Integer Public Declare Function GetLastError Lib "kernel32" () As Integer Public Declare Function CreateThread Lib "kernel32" ( _ ByVal lpThreadAttributes As Integer, _ ByVal dwStackSize As Integer, _ ByVal lpStartAddress As Integer, _ ByVal lpParameter As Integer, _ ByVal dwCreationFlags As Integer, _ ByRef lpThreadId As Integer) As Integer Public Declare Function OpenProcess Lib "kernel32" ( _ ByVal dwDesiredAccess As Integer, _ ByVal bInheritHandle As Integer, _ ByVal dwProcessId As Integer) As Integer Private Declare Function FindWindow Lib "user32" Alias "FindWindowA" ( _ ByVal lpClassName As String, _ ByVal lpWindowName As String) As Integer Private Declare Function CloseHandle Lib "kernel32" Alias "CloseHandle" ( _ ByVal hObject As Integer) As Integer Dim ExeName As String = IO.Path.GetFileNameWithoutExtension(Application.ExecutablePath) Public vv As Integer Public Function GetFunctionAddressFromDll(ByVal dllpath As String, ByVal func As String) As Integer Dim libdll As Integer = LoadLibrary(dllpath) vv = libdll Dim retrn As Integer = GetProcAddress(libdll, "DllMainnn") If FreeLibrary(vv) Then Return retrn Else Return 0 End If End Function Private Sub Inject() Dim TargetProcess As Process() = Process.GetProcessesByName(TextBox2.Text) TargetProcessHandle = OpenProcess(PROCESS_CREATE_THREAD Or PROCESS_VM_OPERATION Or PROCESS_VM_WRITE Or PROCESS_VM_READ, False, TargetProcess(0).Id) pszLibFileRemote = OpenFileDialog1.FileName pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "LoadLibraryA") Dim ll As Integer = GetFunctionAddressFromDll(TextBox1.Text, "DllMainnn") TargetBufferSize = 1 + Len(pszLibFileRemote) Dim LoadLibParamAdr As Integer Dim LoadLibParamAdrtwo As Integer Dim llh As Byte() = File.ReadAllBytes(pszLibFileRemote) Dim infhfhfhfhhf As Integer Dim lsssl As Integer = llh.Length LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, lsssl, MEM_COMMIT, PAGE_EXECUTE_READWRITE) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, llh, lsssl, infhfhfhfhhf) Dim z1z2z3 As Integer CreateRemoteThread(TargetProcessHandle, 0, 0, LoadLibParamAdr + (ll - vv), 0, 0, z1z2z3) MsgBox(z1z2z3) End Sub #End Region
  3. TheHobiiiar135

    injecting dll into remote process

    Full code: Imports System.IO Imports System.Text Imports System.Runtime.InteropServices Public Class Form1 #Region "Main" Private TargetProcessHandle As Integer Private pfnStartAddr As Integer Private pfnStartAddr2 As Integer Private pszLibFileRemote As String Private TargetBufferSize As Integer Public Const PROCESS_VM_READ = &H10 Public Const TH32CS_SNAPPROCESS = &H2 Public Const MEM_COMMIT = 4096 Public Const PAGE_READWRITE = 4 Public Const PROCESS_CREATE_THREAD = (&H2) Public Const PROCESS_VM_OPERATION = (&H8) Public Const PROCESS_VM_WRITE = (&H20) Public Const PAGE_EXECUTE_READWRITE = (&H40) Dim DLLFileName As String Public Declare Function ReadProcessMemory Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As String, _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer) As Boolean Public Declare Function LoadLibrary Lib "kernel32" Alias "LoadLibraryA" ( _ ByVal lpLibFileName As String) As Integer Public Declare Function FreeLibrary Lib "kernel32" ( _ ByVal hModule As Integer) As Boolean Public Declare Function VirtualAllocEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flAllocationType As Integer, _ ByVal flProtect As Integer) As Integer Public Declare Function VirtualProtectEx Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpAddress As Integer, _ ByVal dwSize As Integer, _ ByVal flNewProtect As Integer, _ ByVal lpflOldProtect As Integer) As Integer 'Public Declare Function WriteProcessMemory Lib "kernel32" ( _ 'ByVal hProcess As Integer, _ 'ByVal lpBaseAddress As Integer, _ 'ByVal lpBuffer As String, _ 'ByVal nSize As Integer, _ 'ByRef lpNumberOfBytesWritten As Integer) As Boolean 'Public Declare Function WriteProcessMemory Lib "kernel32" ( _ 'ByVal hProcess As IntPtr, _ 'ByVal lpBaseAddress As IntPtr, _ 'ByVal lpBuffer() As Byte, _ 'ByVal nSize As UInt32, _ 'ByRef lpNumberOfBytesWritten As UInt32) As Boolean <DllImport("kernel32.dll")> _ Public Shared Function WriteProcessMemory( _ ByVal hProcess As Integer, _ ByVal lpBaseAddress As Integer, _ ByVal lpBuffer As Byte(), _ ByVal nSize As Integer, _ ByRef lpNumberOfBytesWritten As Integer _ ) As Boolean End Function Public Declare Function GetProcAddress Lib "kernel32" ( _ ByVal hModule As Integer, ByVal lpProcName As String) As Integer 'Public Declare Function GetProcAddressEx Lib "kernel32" ( _ 'ByVal hModule As Integer, ByVal lpProcName As String, ByVal procname As String) As Integer Private Declare Function GetModuleHandle Lib "Kernel32" Alias "GetModuleHandleA" ( _ ByVal lpModuleName As String) As Integer Public Declare Function CreateRemoteThread Lib "kernel32" ( _ ByVal hProcess As Integer, _ ByVal lpThreadAttributes As Integer, _ ByVal dwStackSize As Integer, _ ByVal lpStartAddress As Integer, _ ByVal lpParameter As Integer, _ ByVal dwCreationFlags As Integer, _ ByRef lpThreadId As Integer) As Integer Public Declare Function OpenProcess Lib "kernel32" ( _ ByVal dwDesiredAccess As Integer, _ ByVal bInheritHandle As Integer, _ ByVal dwProcessId As Integer) As Integer Private Declare Function FindWindow Lib "user32" Alias "FindWindowA" ( _ ByVal lpClassName As String, _ ByVal lpWindowName As String) As Integer Private Declare Function CloseHandle Lib "kernel32" Alias "CloseHandle" ( _ ByVal hObject As Integer) As Integer Dim ExeName As String = IO.Path.GetFileNameWithoutExtension(Application.ExecutablePath) Public vv As Integer Public Function GetFunctionAddressFromDll(ByVal dllpath As String, ByVal func As String) As Integer Dim libdll As Integer = LoadLibrary(dllpath) vv = libdll Dim retrn As Integer = GetProcAddress(libdll, "DllMainnn") If FreeLibrary(vv) Then Return retrn Else Return 0 End If End Function Private Sub Inject() 'On Error GoTo 1 ' If error occurs, app will close without any error messages Timer1.Stop() Dim TargetProcess As Process() = Process.GetProcessesByName(TextBox2.Text) TargetProcessHandle = OpenProcess(PROCESS_CREATE_THREAD Or PROCESS_VM_OPERATION Or PROCESS_VM_WRITE, False, TargetProcess(0).Id) pszLibFileRemote = OpenFileDialog1.FileName pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "LoadLibraryA") 'pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "GetProcAddress") '' 'pfnStartAddr2 = GetProcAddress(, "DllMainnn") ''MsgBox(pfnStartAddr) 'MsgBox(GetProcAddress(GetModuleHandle(TextBox1.Text), "DllMainnn")) 'MsgBox(GetProcAddress(LoadLibrary(TextBox1.Text), "DllMainnn")) Dim ll As Integer = GetFunctionAddressFromDll(TextBox1.Text, "DllMainnn") 'MsgBox(ll & " - " & vv) 'MsgBox(ll - vv) 'MsgBox(TargetProcessHandle + 14350) '' TargetBufferSize = 1 + Len(pszLibFileRemote) 'Dim Rtn As Integer Dim LoadLibParamAdr As Integer Dim LoadLibParamAdrtwo As Integer ' Dim llh As Byte() = File.ReadAllBytes(pszLibFileRemote) Dim infhfhfhfhhf As Integer Dim lsssl As Integer = llh.Length 'LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, TargetBufferSize, MEM_COMMIT, PAGE_EXECUTE_READWRITE) LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, lsssl, MEM_COMMIT, PAGE_EXECUTE_READWRITE) InputBox("", "", LoadLibParamAdr) 'WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, pszLibFileRemote, TargetBufferSize, 0) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, llh, lsssl, infhfhfhfhhf) MsgBox(infhfhfhfhhf) 'InputBox("", "", LoadLibParamAdr) 'VirtualProtectEx(TargetProcessHandle, 0, TargetBufferSize, PAGE_EXECUTE_READWRITE, 0) 'MsgBox(LoadLibParamAdr + (ll - vv)) 'InputBox("St", "tt", LoadLibParamAdr + (ll - vv)) 'CreateRemoteThread(TargetProcessHandle, 0, 0, pfnStartAddr, LoadLibParamAdr, 0, 0) 'Threading.Thread.Sleep(3000) 'MsgBox(LoadLibParamAdr) '' LoadLibParamAdrtwo = VirtualAllocEx(TargetProcessHandle, 0, 2, MEM_COMMIT, PAGE_READWRITE) Dim A As String = ControlChars.Quote & ControlChars.Quote Dim ennnc As Byte() = System.Text.Encoding.Unicode.GetBytes(A) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdrtwo, ennnc, TargetBufferSize, 0) InputBox(A, "", LoadLibParamAdrtwo) 'CreateRemoteThread(TargetProcessHandle, vbNull, 0, LoadLibParamAdr + (ll - vv), LoadLibParamAdrtwo, vbNull, 0) CreateRemoteThread(TargetProcessHandle, vbNull, 0, LoadLibParamAdr + (ll - vv), vbNull, vbNull, 0) 'Dim params As Integer 'TargetProcessHandle = OpenProcess(PROCESS_CREATE_THREAD Or PROCESS_VM_OPERATION Or PROCESS_VM_WRITE, False, TargetProcess(0).Id) 'params = VirtualAllocEx(TargetProcessHandle, 0, 8, MEM_COMMIT, PAGE_READWRITE) 'WriteProcessMemory(TargetProcessHandle, params, LoadLibParamAdr + (ll - vv), 8, 0) 'InputBox("ff", "jj", params) 'Call UIntPtr [params] CloseHandle(TargetProcessHandle) 1: Me.Show() End Sub #End Region
  4. TheHobiiiar135

    injecting dll into remote process

    1-Additional information: Attempted to read or write protected memory. This is often an indication that other memory is corrupt. 2-next post 3-execution of dll function/throw memory error/?? 4- 1 allocating memory for that dll 2 write dll to memory 3 Get DLL function address as in linked website in post #1 4 try to call function in memory with this parameters: start address:LoadLibParamAdr + (ll - vv) parameters:null (vbnull)
  5. TheHobiiiar135

    injecting dll into remote process

    sorry 1-Additional information: Attempted to read or write protected memory. This is often an indication that other memory is corrupt. i just found error in my code ill try to fix it Edit:fixed some code Now new error
  6. TheHobiiiar135

    injecting dll into remote process

    Yes. Put it all into a structure and write it all at once. Use ::CreateRemoteThread() on CanCallMe. I already gave details both here and in the link you posted. L. Spiro   still the function dont wanted to be called for some reason   my new code: Dim ll As Integer = GetFunctionAddressFromDll(TextBox1.Text, "DllMainnn") 'MsgBox(ll & " - " & vv) MsgBox(ll - vv) 'MsgBox(TargetProcessHandle + 14350) '' TargetBufferSize = 1 + Len(pszLibFileRemote) 'Dim Rtn As Integer Dim LoadLibParamAdr As Integer Dim LoadLibParamAdrtwo As Integer LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, TargetBufferSize, MEM_COMMIT, PAGE_READWRITE) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, pszLibFileRemote, TargetBufferSize, 0) MsgBox(LoadLibParamAdr + (ll - vv)) InputBox("St", "tt", LoadLibParamAdr + (ll - vv)) CreateRemoteThread(TargetProcessHandle, 0, 0, pfnStartAddr, LoadLibParamAdr, 0, 0) Threading.Thread.Sleep(3000) '' LoadLibParamAdrtwo = VirtualAllocEx(TargetProcessHandle, 0, 2, MEM_COMMIT, PAGE_READWRITE) Dim A As String = ControlChars.Quote & ControlChars.Quote MsgBox(A) WriteProcessMemory(TargetProcessHandle, LoadLibParamAdrtwo, A, TargetBufferSize, 0) CreateRemoteThread(TargetProcessHandle, 0, 0, LoadLibParamAdr + (ll - vv), LoadLibParamAdrtwo, 0, 0) call CreateRemoteThread with: 1- lpStartAddress = LoadLibParamAdr + (ll - vv) 2-lpParameter with data writen to memory "" only (2 Quotes)
  7. TheHobiiiar135

    injecting dll into remote process

    Yes. Put it all into a structure and write it all at once. Use ::CreateRemoteThread() on CanCallMe. I already gave details both here and in the link you posted.L. Spiro Thanks I'll try it later 2day
  8. TheHobiiiar135

    injecting dll into remote process

    Can't call it with create remote thread? And what kind of structure? Write to memory('adreas?') Write to memory('num of argrements?'); Write to memory('arg1'); Write to memory(arg2'); Is that correct??? I wanted to use create remote thread if possibe I really didn't understand anything after getting function addreas
  9. TheHobiiiar135

    injecting dll into remote process

    Still didn't understand NNow all I have is function Andreas in memory and bunch of parameters 1St: how to call it without parameters?? 2Nd: how to call it with parameters??
  10. TheHobiiiar135

    injecting dll into remote process

    Probably. I don’t have the source code available at work. L. Spiro k now all i wanted is how to call that without prameters Give example in how to call createremotethreadcreateremotethread with my function addreas with no parameters And with parameters 1St: write each parameter in shape if what?? Like 123,456,789 Or what? 2Nd how to use createremotethread with that writed parameters??
  11. TheHobiiiar135

    injecting dll into remote process

    IS what im doing is right?   Dim libdll As Integer = LoadLibrary(dllpath) vv = libdll Dim retrn As Integer = GetProcAddress(libdll, "DllMainnn") If FreeLibrary(vv) Then ll = retrn Return (ll - vv) Else Return 0   get the adreas from the library using LoadLibrary function and store it in vv get function addreas using GetProcAddress function and store it in ll then the function adreas ill be in (ll - vv)     is that right???   and your call function is in "case IDC_CALL_FUNCTION_BUTTON : {"??
  • Advertisement
×

Important Information

By using GameDev.net, you agree to our community Guidelines, Terms of Use, and Privacy Policy.

GameDev.net is your game development community. Create an account for your GameDev Portfolio and participate in the largest developer community in the games industry.

Sign me up!