-
-
[转帖]dll-merger
-
发表于: 2022-3-7 15:38
-
dll-merger
Merging DLLs with a PE32 EXE without LoadLibrary.
Building the project
git clone 142K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6Y4K9i4c8Z5N6h3u0Q4x3X3g2U0L8$3#2Q4x3V1k6&6N6r3D9J5x3e0t1^5i4K6u0r3k6r3I4D9i4K6u0V1L8h3g2J5k6$3g2J5i4K6u0W2k6$3W2@1 --recurse-submodules
Open src/merger.sln
Build Solution
Principle of merging
dll-merger merges DLLs with one PE32 EXE and injects the loader code into the PE32 EXE and the injected loader loads DLLs manually without LoadLibrary and thus the loaded DLLs are invisible in the PEB.
Demonstration
Execute merger.exe procexp.exe MyDLL.dll
procexp.exe_out.exe is created
MyDLL.dll is manually loaded in the procexp.exe_out.exe when procexp.exe_out.exe is executed but it's invisible.
750K9s2c8@1M7s2y4Q4x3@1q4Q4x3V1k6Q4x3V1k6Y4K9i4c8Z5N6h3u0Q4x3X3g2U0L8$3#2Q4x3V1k6&6N6r3D9J5x3e0t1^5i4K6u0r3k6r3I4D9i4K6u0V1L8h3g2J5k6$3g2J5
