Stack Overflow
Stack Overflow

Questions tagged [createremotethread]

45 questions
0
votes
0 answers

CreateRemoteThread() fails with Access Denied (0xc00000005)

CreateRemoteThread() runs successfully for "32 bit caller process - 32 bit target process", but fails with Access Denied (0xc00000005) for "x64 caller process - x64 target process" : handle of target process received with flags…
Kir
  • 1
0
votes
1 answer

CreateRemoteThread with string argument example

Can anyone give me an example of how to call an injected dll's function with a string argument? I have tried to do it in the ways I know to do it but have gotten the wrong result. I allocate memory with VirtualAllocEx, then write string argument to…
clumpter
  • 1,898
  • 6
  • 27
  • 38
0
votes
1 answer

CreateRemoteThread fails on Windows7 64bit for 32bit applications

I have a code which injects a dll to a process. The process which executes the injection function is always in the same architecture (x86 or x64) as the injected process. But for some reason, the CreateRemoteThread function call fails on Win7 64 bit…
user3551678
  • 21
  • 3
0
votes
1 answer

Python (ctypes) CreateRemoteThread causes the process to crash

Basically i just copied the code from this website https://www.christophertruncer.com/injecting-shellcode-into-a-remote-process-with-python/ and changed the PID to the PID of Calculator.exe. But when I run the script, Calculator.exe crashes. I tried…
KainAlive
  • 63
  • 1
  • 6
0
votes
1 answer

CreateRemoteThread does not work with DLL

I am trying to inject a simple dll that creates a MessageBox in the target process. Using a injector from the www works without any issues. However using my own code to inject does not do anything at all (I am using it on notepad.exe) I compiled…
user7145038
0
votes
1 answer

DLL injection via CreateRemoteThread?

Lets assume the remote thread procedure look like this: DWORD __stdcall ThreadProc (void *pData) { ThreadData *p = (ThreadData*)pData; // Contains function references and strings p->MessageBoxW(NULL, p->Message, p->Title, MB_OK); } Then…
Cubi73
  • 1,891
  • 3
  • 31
  • 52
0
votes
1 answer

Remote Process does not start

I'm trying to call a process from another program, this process being one I've injected via DLL. The first one, where we load the library "Client.dll" works perfectly, this is sown by the MessageBox Debug in DllMain (DLL_PROCESS_ATTACH). Once the…
user1591117
  • 287
  • 2
  • 5
  • 13
0
votes
1 answer

How can I store the address of a non member function in a DWORD (c++)

The reason I want to do this is this: I have a c# winforms app and a c++ DLL that will be injected into another process. From the c# app i want to call CreateRemoteThread() with the address of the non member function inside of the remote processes…
MitchellKrenz
  • 423
  • 4
  • 14
-1
votes
2 answers

C++ / WinAPI: How do I get a value from a function in the injected x64 DLL?

x86 way of doing this is easy and straightforward - through GetExitCodeThread. Unfortunately it's limited to returning 32 bit values. As I understand it WinAPI provides no 64 bit alternative. So the problem is - I have no trouble calling the…
krz
  • 11
  • 3
-1
votes
1 answer

CreateRemoteThread succeeded, but LoadLibrary failed for some target app

I am using CreateRemoteThread() + LoadLibrary() method to inject code. Everything is OK when I running my injector in my Windows7 64bit OS laptop, and it still work in Windows Server 2012 R2 64bit for some target app. BUT, in this Windows Server…
Gang Li
  • 37
  • 10
-1
votes
1 answer

DLL injection for browser alone

I want to be able to type www.mydomain.com into my web browser but have the actual traffic go to something.mydomain.com. I thought to, maybe inject a dll into the process browser(firefox.exe). I tried to use some methods like hooking, dll injection…
Arshad Mindfreak
  • 3
  • 2
-1
votes
1 answer

Calling function in unmanaged injected dll

I've been trying to solve this problem for days and I still can't get it to work. I have successfully injected a unmanaged dll into a remote process. There is a function called testfunction inside of the dll which I'm trying to call through…
basd bfnsa
  • 81
  • 1
  • 10
-2
votes
2 answers

FreeLibrary not unhooking DLL

I'm trying to hook the DLL onto a notepad process, and then unhook it. When hooked, the DLL should cause the notepad to create a hidden file whenever the user clicks "Save As" (code for this is not shown). When unhooked, that should not be the…
user9256458
-3
votes
2 answers

Calling a function in another process with parameters using CreateRemoteThread

I want to call a function in another process in the context of the same process with parameters. For this, the CreateRemoteThread() function seems to do the job. A code example can be found e.g. here. Note: I don't want to implement the other…
BullyWiiPlaza
  • 17,329
  • 10
  • 113
  • 185
-3
votes
1 answer

Injected DLL and calling a function using CreateRemoteThread causes "has stopped working", what happens?

I`m trying to inject a DLL in a process and call a exported function in my DLL. The DLL is injected alright with that code: HANDLE Proc; char buf[50] = { 0 }; LPVOID RemoteString, LoadLibAddy; if (!pID) return false; Proc =…
Acaz Souza
  • 8,311
  • 11
  • 54
  • 97
1 2
3