![]() ![]() While( Parameters->m_WaitForObject( Parameters->m_Process, 100 ) = WAIT_TIMEOUT ) Wait for the process to finish execution. ![]() Void _fastcall Begin( ParameterPack *Parameters ) Functions that are passed to the shellcode.ĭecltype( &WaitForSingleObject ) m_WaitForObject Parameter pack that we will pass to the shellcode. While they could be used to recreate what's in the video, they're really just food for thought. Then, to recreate what's in the video, you'd just create a copy of your own file in the same directory, and either CreateFileW (with the flag seen above), or call DeleteFileW.Īs with either deleting your own executable (sometimes called melting), or generating random file names, a myriad of example snippets can be found in searching.Īnd don't feel as though you have to use the above suggestions. One of the methods that initially came to mind was to open a file handle to the current process, and pass FILE_FLAG_DELETE_ON_CLOSE, then just do the remaining work but that didn't seem to work, as the current process carries a handle to itself which doesn't specify the FILE_SHARE_DELETE share mode-which makes sense, i suppose.Īnother idea was to accept command line parameters in your entry point, and delete the file specified therein. So there are dozens of ways to create the effect shown in your video. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |