Backdoor Injector - Version 2.0
Backdoor Injector injects module code into executable like PE infector, with it's own loader and Thread in infected process.
Written in assembler.
Example---------------------------------------------------------------------------------------------
Find a target exe: c:\Windows\notepad.exe
Load module: Inject_BSHELL.m0d
Edit module conf: Injection Process, BindPort etc.
Press: INJECT
Now notepad.exe is infected, and after run will bind to port you selected. (Be aware of Windows Data Execution Prevention, it
checks original notepad.exe (located by filename) crc for any modification)
MOD info:
Inject_RSHELL.m0d-----------------------------------------------------------------------------------
Addon for reverse_shell.m0d, searches for target exe in memory, injects reverse_shell.m0d. Active until user kills infected process. Makes shell(cmd.exe) on reverse connection on your selected IP:PORT. Use netcat. (nc -l -vv -p)
Interval - interval for connection attempts
[Injection Process] - target h5;j1;h5;, explorer.exe(recommended)
[Bind Port] - bind port for cmd.exe.
Stealth.m0d-----------------------------------------------------------------------------------------
Makes infected file invisible, by Win32API hooking. API used: FindNextFileA,FindNextFileW,RegEnumValueA,RegEnumV alueW,CreateProcessA, CreateProcessW, LoadLibraryA,
LoadLibraryW, LoadLibraryExA, LoadLibraryExW
reverse_shell.m0d-----------------------------------------------------------------------------------
Makes shell(cmd.exe) on reverse connection on your selected IP:PORT. Use netcat. (nc -l -vv -p)
Interval - interval for connection attempts
Inject_BSHELL.m0d-----------------------------------------------------------------------------------
Addon for bind_shell.m0d, searches for target exe in memory, injects bind_shell.m0d. Active until user kills infected process.
[Injection Process] - target h5;j1;h5;, explorer.exe(recommended)
[Bind Port] - bind port for cmd.exe.
bind_shell.m0d--------------------------------------------------------------------------------------
Binds shell(cmd.exe) on selected port.
Backdoor Injector
Posted by Bijay | 3:21 AM | Hacking Tools, Web Application Security | 0 comments »
Subscribe to:
Post Comments (Atom)
0 comments
Post a Comment