Shellcode Loader

Abusing callback to run shellcode.

Overview

Eksekusi shellcode dengan SetupCommitFileQueue.

WINSETUPAPI BOOL SetupCommitFileQueueA (HWND Owner, HSPFILEQ QueueHandle, PSP_FILE_CALLBACK_A MsgHandler, PVOID Context);

WINSETUPAPI BOOL SetupCommitFileQueueW (HWND Owner, HSPFILEQ QueueHandle, PSP_FILE_CALLBACK_W MsgHandler, PVOID Context);

WINSETUPAPI BOOL SetupQueueCopyA (HSPFILEQ QueueHandle, PCSTR SourceRootPath, PCSTR SourcePath, PCSTR SourceFilename, PCSTR SourceDescription, PCSTR SourceTagfile, PCSTR TargetDirectory, PCSTR TargetFilename, DWORD CopyStyle);

WINSETUPAPI BOOL SetupQueueCopyW (HSPFILEQ QueueHandle, PCWSTR SourceRootPath, PCWSTR SourcePath, PCWSTR SourceFilename, PCWSTR SourceDescription, PCWSTR SourceTagfile, PCWSTR TargetDirectory, PCWSTR TargetFilename, DWORD CopyStyle);

WINSETUPAPI HSPFILEQ SetupOpenFileQueue();

Reference

MSDN SetupCommitFileQueueA
MSDN SetupCommitFileQueueW
MSDN SetupQueueCopyA
MSDN SetupQueueCopyW
MSDN SetupOpenFileQueue

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Shellcode Loader

Overview

Reference

FilesExpand file tree

README.md

Latest commit

History

README.md

File metadata and controls

Shellcode Loader

Overview

Reference