当前位置:七道奇文章资讯安全技术网络技术
日期:2009-12-08 15:07:00  来源:本站整理

一段传染引入表的vc代码[网络技术]

赞助商链接



  本文“一段传染引入表的vc代码[网络技术]”是由七道奇为您精心收集,来源于网络转载,文章版权归文章作者所有,本站不对其观点以及内容做任何评价,请读者自行判断,以下是其具体内容:

文章作者:[E.S.T] 认真的雪 


#include <stdio.h> 
#include <windows.h> 

DWORD RVAToOffset(LPVOID lpBase,DWORD VirtualAddress) 

IMAGE_DOS_HEADER *dosHeader; 
IMAGE_NT_HEADERS *ntHeader; 
IMAGE_SECTION_HEADER *sectionHeader; 
int NumOfSections; 
dosHeader=(IMAGE_dos_HEADER*)lpBase; 
ntHeader=(IMAGE_NT_HEADERS*)((BYTE*)lpBase+dosHeader->e_lfanew); 
NumOfSections=ntHeader->FileHeader.NumberOfSections; 
for (int i=0;i<NumOfSections;i++) 

sectionHeader=(IMAGE_SECTION_HEADER*)((BYTE*)lpBase+dosHeader->e_lfanew+sizeof(IMAGE_NT_HEADERS))+i; 
if(VirtualAddress>sectionHeader->VirtualAddress&&VirtualAddress<sectionHeader->VirtualAddress+sectionHeader->SizeOfRawData) 

DWORD AposRAV=VirtualAddress-sectionHeader->VirtualAddress; 
DWORD Offset=sectionHeader->PointerToRawData+AposRAV; 
return Offset; 


return 0; 

int sectionNum(LPVOID lpBase,DWORD VirtualAddress) 

IMAGE_DOS_HEADER *dosHeader; 
IMAGE_NT_HEADERS *ntHeader; 
IMAGE_SECTION_HEADER *sectionHeader; 
int NumOfSections; 
dosHeader=(IMAGE_dos_HEADER*)lpBase; 
ntHeader=(IMAGE_NT_HEADERS*)((BYTE*)lpBase+dosHeader->e_lfanew); 
NumOfSections=ntHeader->FileHeader.NumberOfSections; 
for (int i=0;i<NumOfSections;i++) 

sectionHeader=(IMAGE_SECTION_HEADER*)((BYTE*)lpBase+dosHeader->e_lfanew+sizeof(IMAGE_NT_HEADERS))+i; 
if(VirtualAddress>sectionHeader->VirtualAddress&&VirtualAddress<sectionHeader->VirtualAddress+sectionHeader->SizeOfRawData) 

return i; 


return -1; 


int main(int argc, char* argv[]) 

HANDLE hFile=CreateFile(argv[1],GENERIC_READ|GENERIC_WRITE,0,NULL,OPEN_EXISTING,FILE_ATTRIBUTE_NORMAL,NULL); 
if(hFile==INVALID_HANDLE_VALUE) 

printf("CreateFile Failed\n"); 
return 0; 

HANDLE hMap=CreateFileMapping(hFile,NULL,PAGE_READWRITE,NULL,NULL,NULL); 
if(hMap==INVALID_HANDLE_VALUE) 

printf("CreateFileMapping Failed\n"); 
return 0; 

LPVOID lpBase=MapViewOfFile(hMap,FILE_MAP_WRITE,0,0,0); 
if(lpBase==NULL) 

printf("MapViewOfFile Failed\n"); 
return 0;  

IMAGE_DOS_HEADER *dosHeader; 
IMAGE_NT_HEADERS *ntHeader; 
dosHeader=(IMAGE_dos_HEADER*)lpBase; 

if (dosHeader->e_magic!=IMAGE_dos_SIGNATURE) 

printf("This is not a windows file\n"); 
return 0; 

ntHeader=(IMAGE_NT_HEADERS*)((BYTE*)lpBase+dosHeader->e_lfanew); 
if(ntHeader->Signature!=IMAGE_NT_SIGNATURE) 

printf("This is not a win32 file\n"); 
return 0; 

int numOfSections=ntHeader->FileHeader.NumberOfSections; 

int ncout=sectionNum(lpBase,ntHeader->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress); 
if(ncout==-1) 

printf("get section failed\n"); 
return 0; 

IMAGE_SECTION_HEADER *sectionHeader; 
sectionHeader=(IMAGE_SECTION_HEADER*)((BYTE*)lpBase+dosHeader->e_lfanew+sizeof(IMAGE_NT_HEADERS))+ncout; 
int nullsize=sectionHeader->SizeOfRawData-sectionHeader->Misc.VirtualSize; 
printf("%d\n",nullsize); 
IMAGE_IMPORT_DESCRIPTOR *ImportDec=(IMAGE_IMPORT_DESCRIPTOR*)((BYTE*)lpBase+RVAToOffset(lpBase,ntHeader->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress)); 
int i=0; 
while(ImportDec->FirstThunk) 

i++; 
ImportDec++; 

if(i*20+20*3+8+8>nullsize) 

printf("file space is not enough\n"); 
return 0; 

IMAGE_IMPORT_DESCRIPTOR *newImport; 
newImport=(IMAGE_IMPORT_DESCRIPTOR *)((BYTE*)lpBase+sectionHeader->PointerToRawData+sectionHeader->Misc.VirtualSize); 
printf("%x\n",sectionHeader->PointerToRawData+sectionHeader->Misc.VirtualSize); 
printf("%d\n",sizeof(IMAGE_IMPORT_DESCRIPTOR)); 
ImportDec=(IMAGE_IMPORT_DESCRIPTOR*)((BYTE*)lpBase+RVAToOffset(lpBase,ntHeader->OptionalHeader.DataDirectory[IMAGE_DIRECTORY_ENTRY_IMPORT].VirtualAddress)); 
i=0; 
while(ImportDec->FirstThunk) 

*newImport=*ImportDec; 
i++; 

[1] [2]  下一页


  以上是“一段传染引入表的vc代码[网络技术]”的内容,如果你对以上该文章内容感兴趣,你可以看看七道奇为您推荐以下文章:
  • 一段传染引入表的vc代码
  • 本文地址: 与您的QQ/BBS好友分享!
    • 好的评价 如果您觉得此文章好,就请您
        0%(0)
    • 差的评价 如果您觉得此文章差,就请您
        0%(0)

    文章评论评论内容只代表网友观点,与本站立场无关!

       评论摘要(共 0 条,得分 0 分,平均 0 分) 查看完整评论
    Copyright © 2020-2022 www.xiamiku.com. All Rights Reserved .