-
Notifications
You must be signed in to change notification settings - Fork 0
/
injection.cpp
97 lines (82 loc) · 2.3 KB
/
injection.cpp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
/*
Skyrim 4GB Loader
Copyright (C) 2010,2011 Renee Stanley ([email protected])
This library is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
License as published by the Free Software Foundation; either
version 2.1 of the License, or (at your option) any later version.
This library is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
Lesser General Public License for more details.
You should have received a copy of the GNU Lesser General Public
License along with this library; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
*/
#include "stdafx.h"
#include "injection.h"
#include <stddef.h>
__declspec(naked) DWORD_PTR WINAPI Injection::GetInjectionCode(LPVOID &start)
{
// Ok this gets a little complicated
__asm {
jmp INJECTED_END
INJECTED_START:
#ifdef _DEBUG
//INT 3
#endif
// HMODULE helper = injection->LoadLibrary(injection->szDllName);
MOV ecx, [esp+4]
MOV eax, [ecx].LoadLibrary
PUSH [ecx].szDllName
CALL eax
// if (!helper) return injection->GetLastError();
CMP eax, 0
JNZ get_ci
MOV ecx, [esp+4]
call [ecx].GetLastError
JMP end
get_ci:
// INT (WINAPI * ci)(Injection *) = injection->GetProcAddress(helper,injection->szFuncName);
MOV ecx, [esp+4] // Pointer to Injection structure
PUSH [ecx].szFuncName
PUSH eax
MOV eax, [ecx].GetProcAddress
CALL eax
// if (!ci) return injection->GetLastError();
CMP eax, 0
JNZ call_ci
MOV ecx, [esp+4] // Pointer to Injection structure
call [ecx].GetLastError
JMP end
call_ci:
// return ci(injection);
PUSH [esp+4] // Pointer to Injection structure
CALL eax
end:
ret 4
INJECTED_END:
mov eax, [esp+4]
mov edx, offset INJECTED_START
mov [eax], edx
mov eax, offset INJECTED_END
sub eax, edx
ret 4
}
}
__declspec(naked) DWORD_PTR WINAPI Injection::GetStubCode(LPVOID &start)
{
__asm {
jmp STUB_END
STUB_START:
xor eax, eax
ret 4
STUB_END:
mov eax, [esp+4]
mov edx, offset STUB_START
mov [eax], edx
mov eax, offset STUB_END
sub eax, edx
ret 4
}
}