search

mactec0 / Kernelmode-manual-mapping-through-IAT

Manual mapping without creating any threads, with rw only access
676 stars 121 forks source link

Target application shuts down after injection #1

Closed DrJedikiah closed 5 years ago

DrJedikiah commented 5 years ago

Test dll is x64, injector is built as x64 and nothing changed in the source code.

It says injection successful and then target application freezes and crashes. In this case notepad.

mactec0 commented 5 years ago

Since you have provided so little information about the crash, I'm unable to tell you exactly where the problem is. My guess is that it occurs because you've selected wrong settings in the project properties and it's not getting compiled statically or somehow the restore function gets optimized. I've uploaded new release with all the project files needed, use them and compile everything as X64-Release. It should solve your problem. And next time I suggest you to try debugging first(for example with x64dbg) in order to track down the issue or to at least get a bit more information about the problem.

DrJedikiah commented 5 years ago

I've checked that function, it wasn't inlined or included and sorry I should've debugged. I'll try with your update thanks. I use this to make sure it's included #pragma comment(linker, "/INCLUDE:" __FUNCDNAME__)

DrJedikiah commented 5 years ago

Problem solved, sorry for disturbing. Turns out problem was in my dll.