Add files via upload

RunOnceEx · Nov 26, 2020 · 674a2c6 · 674a2c6
1 parent bb0d7d2
commit 674a2c6
Show file tree

Hide file tree

Showing 4 changed files with 233 additions and 0 deletions.
diff --git a/Themidie_X64DBG_Plugin/plugin.cpp b/Themidie_X64DBG_Plugin/plugin.cpp
@@ -0,0 +1,47 @@
+#include "themidie.hpp"
+
+int plugin_handle = 0, h_menu = 0;
+
+HWND__ *hwnd_dlg = 0;
+HINSTANCE__ *instance = 0;
+ICONDATA main_icon = { 0 };
+
+
+PLUG_EXPORT bool 
+pluginit(PLUG_INITSTRUCT *init_struct)
+{
+    init_struct->pluginVersion = PLUGIN_VERSION;
+    init_struct->sdkVersion = PLUG_SDKVERSION;
+    strncpy_s(init_struct->pluginName, PLUGIN_NAME, _TRUNCATE);
+    plugin_handle = init_struct->pluginHandle;
+    return 1;
+}
+
+
+PLUG_EXPORT void 
+plugsetup(PLUG_SETUPSTRUCT *setup_struct)
+{
+    hwnd_dlg = setup_struct->hwndDlg;
+    h_menu = setup_struct->hMenu;
+
+    HRSRC__ *res_main_icon = FindResourceW(instance, MAKEINTRESOURCEW(IDB_PNG1), L"PNG");
+    void *loaded_main_icon = LoadResource(instance, res_main_icon);
+    main_icon.data = LockResource(loaded_main_icon);
+    main_icon.size = SizeofResource(instance, res_main_icon);
+
+    _plugin_menuseticon(h_menu, (const ICONDATA*)&main_icon);
+
+    plugin_setup(setup_struct);
+}
+
+
+PLUG_EXPORT bool 
+plugstop() { return 1; }
+
+
+PLUG_EXPORT BOOL APIENTRY 
+DllMain(HINSTANCE__ *module, unsigned long reason, void *reserved)
+{
+    instance = module;
+    return 1;
+}
diff --git a/Themidie_X64DBG_Plugin/plugin.hpp b/Themidie_X64DBG_Plugin/plugin.hpp
@@ -0,0 +1,17 @@
+#pragma once
+
+#include "pluginsdk/bridgemain.h"
+#include "pluginsdk/_plugins.h"
+
+#pragma comment(lib, "pluginsdk/x64dbg.lib")
+
+#define PLUG_EXPORT extern "C" __declspec(dllexport)
+
+extern int pluginHandle, h_menu;
+extern HWND__ *hwnd_dlg;
+extern HINSTANCE__ *instance;
+
+enum ThemidieMenus : int {
+    MENU_START,
+    MENU_ABOUT
+};
diff --git a/Themidie_X64DBG_Plugin/themidie.cpp b/Themidie_X64DBG_Plugin/themidie.cpp
@@ -0,0 +1,158 @@
+#define WIN32_MEAN_AND_LEAN
+#include <Windows.h>
+#include <string>
+#include "themidie.hpp"
+
+
+std::string 
+convert_path(std::string& path)
+{
+    unsigned long long position{};
+
+    while ((position = path.find("\\")) != std::string::npos) {
+        path.erase(position, std::string("\\").size());
+        path.insert(position, "/");
+    }
+
+    return path;
+}
+
+std::string 
+remove_exe_name_from_path(std::string& path)
+{
+    unsigned long long pos = std::string::npos;
+    std::string exe_name = "x64dbg.exe";
+
+    while ((pos = path.find(exe_name)) != std::string::npos)
+    {
+        path.erase(pos, exe_name.length());
+    }
+
+    return path;
+}
+
+void 
+start(std::string exe_path)
+{
+    _STARTUPINFOA si; memset(&si, 0, sizeof(si)); si.cb = sizeof(si);
+    _PROCESS_INFORMATION pi; memset(&pi, 0, sizeof(pi));
+
+    int next = 0;
+
+    HINSTANCE__ *kernel_module = 0;
+    void *load_library_function = 0, *themidie_dll_address = 0;
+    void *remote_thread = 0;
+
+    next = CreateProcessA(exe_path.c_str(), 0, 0, 0, 0, 4, 0, 0, &si, &pi);
+    if (!next) { error("Could not create target process, please retry with admin rights."); }
+
+    else
+    {
+        kernel_module = GetModuleHandleA("kernel32.dll");
+        if (!kernel_module) { error("Could not find kernel32.dll module into target process. Is it loaded?"); }
+
+        else
+        {
+            load_library_function = GetProcAddress(kernel_module, "LoadLibraryA");
+            if (!load_library_function) { error("Could not retrieve LoadLibraryA function into target process."); }
+
+            else
+            {
+                char buffer[260]; GetModuleFileNameA(0, buffer, 260);
+                std::string themidie_dll_path = convert_path(remove_exe_name_from_path(std::string(buffer)) + "plugins\\Themidie.dll");
+
+                themidie_dll_address = VirtualAllocEx(pi.hProcess, 0, strlen(themidie_dll_path.c_str()), 8192 | 4096, 4);
+                if (!themidie_dll_address) { error("Could not allocate memory into target process."); }
+
+                else
+                {
+                    next = WriteProcessMemory(pi.hProcess, themidie_dll_address, themidie_dll_path.c_str(), strlen(themidie_dll_path.c_str()), 0);
+                    if (!next) { error("Could not write Themidie into target process."); }
+
+                    else
+                    {
+                        remote_thread = CreateRemoteThread(pi.hProcess, 0, 0, (PTHREAD_START_ROUTINE)load_library_function, themidie_dll_address, 0, 0);
+                        if (!remote_thread) { error("Could not load Themidie into target process."); }
+
+                        else
+                        {
+                            next = ShowWindow(GetForegroundWindow(), 6);
+                            if (!next) { error("Could not minimize x64dbg window. Is the ShowWindow function hooked by another plugin?"); }
+
+                            else
+                            {
+                                CloseHandle(pi.hProcess);
+                                ResumeThread(pi.hThread);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+    }
+}
+
+void 
+open_and_start_exe() 
+{
+    tagOFNA ofn;
+    char file_name[260] = "";
+    memset(&ofn, 0, sizeof(ofn));
+    ofn.lStructSize = sizeof(tagOFNA);
+    ofn.hwndOwner = NULL;
+    ofn.lpstrFilter = "Executable Files (*.exe*)\0*.exe*\0";
+    ofn.lpstrFile = file_name;
+    ofn.nMaxFile = 260;
+    ofn.Flags = 524288 | 4096 | 4;
+    ofn.lpstrDefExt = "";
+    GetOpenFileNameA(&ofn);
+    std::string file_name_string = file_name;
+    start(convert_path(file_name_string));
+}
+
+
+PLUG_EXPORT void 
+CBMENUENTRY(CBTYPE cb_type, PLUG_CB_MENUENTRY* info)
+{
+    switch (info->hEntry)
+    {
+
+        case MENU_START:
+            open_and_start_exe();
+            break;
+
+        case MENU_ABOUT:
+            tagMSGBOXPARAMSA mpar;
+            char hdr[64];
+            char about[128];
+            wsprintfA(hdr, "Themidie");
+            wsprintfA(about, "Author: VenTaz\nDiscord: VenTaz#8766\nhttps://hactify.ru");
+            memset(&mpar, 0, sizeof(mpar));
+            mpar.cbSize = sizeof(mpar);
+            mpar.hInstance = instance;
+            mpar.hwndOwner = hwnd_dlg;
+            mpar.dwStyle = 0L | 128L;
+            mpar.dwLanguageId = MAKELANGID(LANG_NEUTRAL, SUBLANG_NEUTRAL);
+            mpar.lpszIcon = MAKEINTRESOURCEA(IDI_ICON1);
+            mpar.lpszText = about;
+            mpar.lpszCaption = hdr;
+            MessageBoxIndirectA(&mpar);
+            break;
+
+        default:
+            break;
+
+    }
+}
+
+
+void 
+plugin_setup(PLUG_SETUPSTRUCT *setup_struct)
+{
+    h_menu = setup_struct->hMenu;
+
+    _plugin_menuaddentry(h_menu, MENU_START, "&Start");
+    _plugin_menuaddseparator(h_menu);
+	_plugin_menuaddentry(h_menu, MENU_ABOUT, "&About");
+}
+
diff --git a/Themidie_X64DBG_Plugin/themidie.hpp b/Themidie_X64DBG_Plugin/themidie.hpp
@@ -0,0 +1,11 @@
+#pragma once
+
+#include "plugin.hpp"
+#include "resource.h"
+
+#define PLUGIN_NAME "Themidie"
+#define PLUGIN_VERSION 1
+
+#define error(message) MessageBoxA(0, message, "Themidie", MB_ICONEXCLAMATION);
+
+void plugin_setup(PLUG_SETUPSTRUCT *setup_struct);