1. PEID Download
2. Unpack DLL
3. Use your favorite debugger (such as ollydbg)
4. Analysis~~~
6A 52 -> PUSH 52 ->Key=52('R')
2E:FF15 1C92 -> CALL DWORD PTR CS:[<&USER32.GetAsyncKeyState>] -> GetAsyncKeyState
Means...Users type 'R' Key :)
2. Unpack DLL
3. Use your favorite debugger (such as ollydbg)
4. Analysis~~~
2E:FF15 1C92 -> CALL DWORD PTR CS:[<&USER32.GetAsyncKeyState>] -> GetAsyncKeyState
Means...Users type 'R' Key :)
'Hacking' 카테고리의 다른 글
| IBM PC Keyboard Scan Codes (1) | 2008.12.23 |
|---|---|
| Creating .DLL's (0) | 2008.12.23 |
| Gunz Hacking (0) | 2008.12.19 |
| Mozilla Firefox 2 Multiple Vulnerabilities (0) | 2008.12.18 |
| Red Hat Update for Kernel (0) | 2008.12.18 |
