[Guida] Creazione Injector

[Luxor]

Visto la discussione precedente lo scrivo per tutti!
Cosa serve:
1. Microsoft visual basic 2008/10 express edition
2. 5 minuti
3. un minimo di attenzione


Passo 1.

Installiamo visual basic 2008 express edition e apriamolo (ma va? xD)

Passo 2.

Clicchiamo su file (in alto a destra)----new project---windows form application---diamogli un nome

Passo 3.

Tasto destro sull'form1... (il quadrato/rettangolo)---view code

Passo 4.

Cancellate tutto quello scritto, e inserite questo codice:

    VB Programming

Public Class Form1
 
    Private TargetProcessHandle As Integer
    Private pfnStartAddr As Integer
    Private pszLibFileRemote As String
    Private TargetBufferSize As Integer
 
    Public Const PROCESS_VM_READ = &H10
    Public Const TH32CS_SNAPPROCESS = &H2
    Public Const MEM_COMMIT = 4096
    Public Const PAGE_READWRITE = 4
    Public Const PROCESS_CREATE_THREAD = (&H2)
    Public Const PROCESS_VM_OPERATION = (&H<img src="https://hackmix.altervista.org/images/smilies/cool.png" alt="Cool" title="Cool" class="smilie smilie_56" />
    Public Const PROCESS_VM_WRITE = (&H20)
 
    Public Declare Function ReadProcessMemory Lib "kernel32" ( _
    ByVal hProcess As Integer, _
    ByVal lpBaseAddress As Integer, _
    ByVal lpBuffer As String, _
    ByVal nSize As Integer, _
    ByRef lpNumberOfBytesWritten As Integer) As Integer
 
    Public Declare Function LoadLibrary Lib "kernel32" Alias "LoadLibraryA" ( _
    ByVal lpLibFileName As String) As Integer
 
    Public Declare Function VirtualAllocEx Lib "kernel32" ( _
    ByVal hProcess As Integer, _
    ByVal lpAddress As Integer, _
    ByVal dwSize As Integer, _
    ByVal flAllocationType As Integer, _
    ByVal flProtect As Integer) As Integer
 
    Public Declare Function WriteProcessMemory Lib "kernel32" ( _
    ByVal hProcess As Integer, _
    ByVal lpBaseAddress As Integer, _
    ByVal lpBuffer As String, _
    ByVal nSize As Integer, _
    ByRef lpNumberOfBytesWritten As Integer) As Integer
 
    Public Declare Function GetProcAddress Lib "kernel32" ( _
    ByVal hModule As Integer, ByVal lpProcName As String) As Integer
 
    Private Declare Function GetModuleHandle Lib "Kernel32" Alias "GetModuleHandleA" ( _
    ByVal lpModuleName As String) As Integer
 
    Public Declare Function CreateRemoteThread Lib "kernel32" ( _
    ByVal hProcess As Integer, _
    ByVal lpThreadAttributes As Integer, _
    ByVal dwStackSize As Integer, _
    ByVal lpStartAddress As Integer, _
    ByVal lpParameter As Integer, _
    ByVal dwCreationFlags As Integer, _
    ByRef lpThreadId As Integer) As Integer
 
    Public Declare Function OpenProcess Lib "kernel32" ( _
    ByVal dwDesiredAccess As Integer, _
    ByVal bInheritHandle As Integer, _
    ByVal dwProcessId As Integer) As Integer
 
    Private Declare Function FindWindow Lib "user32" Alias "FindWindowA" ( _
    ByVal lpClassName As String, _
    ByVal lpWindowName As String) As Integer
 
    Private Declare Function CloseHandle Lib "kernel32" Alias "CloseHandleA" ( _
    ByVal hObject As Integer) As Integer
 
 
    Dim ExeName As String = IO.Path.GetFileNameWithoutExtension(Application.ExecutablePath)
 
    Private Sub Inject()
        On Error GoTo 1 ' If error occurs, app will close without any error messages
        Timer1.Stop()
        Dim TargetProcess As Process() = Process.GetProcessesByName("WarRock")
        TargetProcessHandle = OpenProcess(PROCESS_CREATE_THREAD Or PROCESS_VM_OPERATION Or PROCESS_VM_WRITE, False, TargetProcess(0).Id)
        pszLibFileRemote = Application.StartupPath & "/" & ExeName & ".dll"
        pfnStartAddr = GetProcAddress(GetModuleHandle("Kernel32"), "LoadLibraryA")
        TargetBufferSize = 1 + Len(pszLibFileRemote)
        Dim Rtn As Integer
        Dim LoadLibParamAdr As Integer
        LoadLibParamAdr = VirtualAllocEx(TargetProcessHandle, 0, TargetBufferSize, MEM_COMMIT, PAGE_READWRITE)
        Rtn = WriteProcessMemory(TargetProcessHandle, LoadLibParamAdr, pszLibFileRemote, TargetBufferSize, 0)
        CreateRemoteThread(TargetProcessHandle, 0, 0, pfnStartAddr, LoadLibParamAdr, 0, 0)
        CloseHandle(TargetProcessHandle)
1:      Me.Close()
    End Sub
 
    Private Sub Timer1_Tick(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles Timer1.Tick
        If IO.File.Exists(Application.StartupPath & "/" & ExeName & ".dll") Then
            Dim TargetProcess As Process() = Process.GetProcessesByName("HSUpdate")
            If TargetProcess.Length = 0 Then
                Me.Label1.Text = ("Waiting For WarRock.exe")
            Else
                Timer1.Stop()
                Me.Label1.Text = "Inject succes now running"
                Call Inject()
            End If
        Else
            Me.Label1.Text = ("" & ExeName + ".dll Not Found")
        End If
    End Sub
 
    Private Sub Form1_Load(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles MyBase.Load
        Timer1.Interval = 50
        Timer1.Start()
        MsgBox("By Luxor")
        Process.Start("http://hackmix.altervista.org")
    End Sub
End Class

P.S potete benissimo cambiare i nomi dopo "...." come By riku, hackmix ecc...

Passo 5.

torniamo su form1 [design] (scritto in alto al centro)

Passo 6.

Clicchiamo sul martello e la chiave sugli strumenti... quello in alto a destra che farà apparire un menu a sinistra (è probabile che gia ci sia)

Passo 7.

Cerchiamo "Label" click sinistro e facciamo una riga (come la volete voi) sul quadrato/rettangolo(form1) (questo sarà dove verrà scritto "waiting for warrock.exe ecc....)

Passo 8.

Cerchiamo "Timer" click sinistro e clicchiamo sul quadrato/rettangolo(form1)

QUI L'INJECTOR è FINITO COMPILATE CON F5

Passo 9.

Abbellire il proprio injector ... in basso a destra potrete cambiare colore,immagine di sfondo ecc....

Finito =)

Spero di esservi stato d'aiuto...

IL CODE NON è MIO (anche se l'ho un po cambiato perche prima non funzionava)

LA GUIDA SI!