malware source code

⌘Ctrlk

malware source code

Introduction
Code base
- Headers
- CRT Recreation
String Hashing
Antidebugging Methods
Library Loading
Error Handling
Fingerprinting
Wrappers and Helpers
Process Creation Techniques
Shellcode Execution
Compression
Networking
Lsass Related
Proxied Functions
Evasion
Component Object Model
My Projects
- Proof-of-Concepts
- Write-ups

Powered by GitBook

On this page

Evasion

AmsiBypass by Patching (OLD)Delay execution until monitor off Unlink DLL from process Sleep Obfuscation (unstable)

PreviousIERemoveDirectory NextAmsiBypass by Patching (OLD)