Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- //
- // MessageBoxA(nullptr, "BrokenByte", nullptr, MB_ICONINFORMATION);
- // ExitProcess(0);
- //
- #pragma data_seg("shellcod")
- char shellcode [] =
- "\xeb\xfe" /* jmp loop */
- //"\xc2\x04\x00" /* retn 4 */
- "\x31\xd2\xb2\x30\x64\x8b\x12\x8b\x52\x0c\x8b\x52\x1c\x8b\x42"
- "\x08\x8b\x72\x20\x8b\x12\x80\x7e\x0c\x33\x75\xf2\x89\xc7\x03"
- "\x78\x3c\x8b\x57\x78\x01\xc2\x8b\x7a\x20\x01\xc7\x31\xed\x8b"
- "\x34\xaf\x01\xc6\x45\x81\x3e\x46\x61\x74\x61\x75\xf2\x81\x7e"
- "\x08\x45\x78\x69\x74\x75\xe9\x8b\x7a\x24\x01\xc7\x66\x8b\x2c"
- "\x6f\x8b\x7a\x1c\x01\xc7\x8b\x7c\xaf\xfc\x01\xc7\x68\x79\x74"
- "\x65\x01\x68\x6b\x65\x6e\x42\x68\x20\x42\x72\x6f\x89\xe1\xfe"
- "\x49\x0b\x31\xc0\x51\x50\xff\xd7";
- #pragma data_seg()
- #pragma comment(linker, "/MERGE:shellcod=.text")
- extern "C" void DrWeb()
- {
- __asm lea eax, shellcode;
- __asm jmp eax;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
