易语言的这个命令谁能转成火山的

仙木同学

精易模块中的【程序_内存中运行EXE】
自己封装的时候被这结构体搞头疼了,实在翻不过来。
有没有大佬帮我翻成火山的，可有偿！

fengshangren

易语言代码转火山都非常简单，你可以当作一种学习，这么简单的翻译代码都不会，以后还怎么学火山，加油

urenai

未经测试的代码：

1. #include <windows.h>
   
2. #include <iostream>
   
3. 
   
4. // 获取PE文件头
   
5. PIMAGE_DOS_HEADER GetDosHeader(LPVOID lpBaseAddress) {
   
6.     return reinterpret_cast<PIMAGE_DOS_HEADER>(lpBaseAddress);
   
7. }
   
8. 
   
9. // 获取NT头
   
10. PIMAGE_NT_HEADERS GetNtHeaders(LPVOID lpBaseAddress) {
    
11.     PIMAGE_DOS_HEADER pDosHeader = GetDosHeader(lpBaseAddress);
    
12.     return reinterpret_cast<PIMAGE_NT_HEADERS>(
    
13.         reinterpret_cast<BYTE*>(pDosHeader) + pDosHeader->e_lfanew);
    
14. }
    
15. 
    
16. // 执行远程进程入口点
    
17. void ExecuteRemoteProcess(HANDLE hProcess, LPVOID remoteBaseAddress) {
    
18.     PIMAGE_NT_HEADERS pNtHeaders = GetNtHeaders(remoteBaseAddress);
    
19.     LPVOID entryPoint = (LPVOID)((DWORD_PTR)remoteBaseAddress + pNtHeaders->OptionalHeader.AddressOfEntryPoint);
    
20. 
    
21.     HANDLE hThread = CreateRemoteThread(hProcess, NULL, 0,
    
22.         (LPTHREAD_START_ROUTINE)entryPoint, NULL, 0, NULL);
    
23.     if (hThread == NULL) {
    
24.         std::cerr << "CreateRemoteThread failed: " << GetLastError() << std::endl;
    
25.         return;
    
26.     }
    
27. 
    
28.     WaitForSingleObject(hThread, INFINITE);
    
29.     CloseHandle(hThread);
    
30. }
    
31. 
    
32. int main() {
    
33.     // 要注入的exe文件路径
    
34.     TCHAR szFilePath[] = _T("C:\\path\\to\\your\\app.exe");
    
35. 
    
36.     // 打开exe文件
    
37.     HANDLE hFile = CreateFile(szFilePath, GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING,
    
38.         FILE_ATTRIBUTE_NORMAL, NULL);
    
39.     if (hFile == INVALID_HANDLE_VALUE) {
    
40.         std::cerr << "CreateFile failed: " << GetLastError() << std::endl;
    
41.         return -1;
    
42.     }
    
43. 
    
44.     // 获取exe文件大小
    
45.     LARGE_INTEGER fileSize;
    
46.     if (!GetFileSizeEx(hFile, &fileSize)) {
    
47.         std::cerr << "GetFileSizeEx failed: " << GetLastError() << std::endl;
    
48.         CloseHandle(hFile);
    
49.         return -1;
    
50.     }
    
51. 
    
52.     // 创建新进程
    
53.     PROCESS_INFORMATION pi;
    
54.     STARTUPINFO si = { sizeof(STARTUPINFO) };
    
55.     if (!CreateProcess(NULL, _T("C:\\Windows\\System32\\notepad.exe"), NULL, NULL, FALSE,
    
56.         CREATE_SUSPENDED, NULL, NULL, &si, &pi)) {
    
57.         std::cerr << "CreateProcess failed: " << GetLastError() << std::endl;
    
58.         CloseHandle(hFile);
    
59.         return -1;
    
60.     }
    
61. 
    
62.     // 映射exe文件到内存
    
63.     HANDLE hMapFile = CreateFileMapping(hFile, NULL, PAGE_READONLY, 0, 0, NULL);
    
64.     if (hMapFile == NULL) {
    
65.         std::cerr << "CreateFileMapping failed: " << GetLastError() << std::endl;
    
66.         TerminateProcess(pi.hProcess, -1);
    
67.         CloseHandle(hFile);
    
68.         return -1;
    
69.     }
    
70. 
    
71.     LPVOID pFileBase = MapViewOfFile(hMapFile, FILE_MAP_READ, 0, 0, 0);
    
72.     if (pFileBase == NULL) {
    
73.         std::cerr << "MapViewOfFile failed: " << GetLastError() << std::endl;
    
74.         CloseHandle(hMapFile);
    
75.         TerminateProcess(pi.hProcess, -1);
    
76.         CloseHandle(hFile);
    
77.         return -1;
    
78.     }
    
79. 
    
80.     // 将exe文件内容写入新进程
    
81.     LPVOID remoteBaseAddress = VirtualAllocEx(pi.hProcess, NULL, fileSize.LowPart, MEM_COMMIT | MEM_RESERVE, PAGE_EXECUTE_READWRITE);
    
82.     if (remoteBaseAddress == NULL) {
    
83.         std::cerr << "VirtualAllocEx failed: " << GetLastError() << std::endl;
    
84.         UnmapViewOfFile(pFileBase);
    
85.         CloseHandle(hMapFile);
    
86.         TerminateProcess(pi.hProcess, -1);
    
87.         CloseHandle(hFile);
    
88.         return -1;
    
89.     }
    
90. 
    
91.     SIZE_T bytesWritten;
    
92.     if (!WriteProcessMemory(pi.hProcess, remoteBaseAddress, pFileBase, fileSize.LowPart, &bytesWritten)) {
    
93.         std::cerr << "WriteProcessMemory failed: " << GetLastError() << std::endl;
    
94.         VirtualFreeEx(pi.hProcess, remoteBaseAddress, 0, MEM_RELEASE);
    
95.         UnmapViewOfFile(pFileBase);
    
96.         CloseHandle(hMapFile);
    
97.         TerminateProcess(pi.hProcess, -1);
    
98.         CloseHandle(hFile);
    
99.         return -1;
    
100.     }
     
101. 
     
102.     // 执行注入的exe
     
103.     ExecuteRemoteProcess(pi.hProcess, remoteBaseAddress);
     
104. 
     
105.     // 清理
     
106.     VirtualFreeEx(pi.hProcess, remoteBaseAddress, 0, MEM_RELEASE);
     
107.     UnmapViewOfFile(pFileBase);
     
108.     CloseHandle(hMapFile);
     
109.     CloseHandle(hFile);
     
110.     ResumeThread(pi.hThread);
     
111.     CloseHandle(pi.hThread);
     
112.     CloseHandle(pi.hProcess);
     
113. 
     
114.     return 0;
     
115. }

复制代码

老道

urenai 发表于 2024-4-23 22:23
未经测试的代码：

官方样例带的！杂类->内存加载模块->内存模块

urenai

官方的这个应该是在进程自身领空申请空间运行exe

793359277

老道 发表于 2024-4-24 10:58
官方样例带的！杂类->内存加载模块->内存模块

你理解错了  精易这个是傀儡进程运行

仙木同学

urenai 发表于 2024-4-23 22:23
未经测试的代码：

不行啊不行啊不行啊不行啊

urenai

仙木同学 发表于 2024-4-24 19:18
不行啊不行啊不行啊不行啊

你再试试没道理出错啊，错误提示什么

仙木同学

1. #include <windows.h>
   
2. #include <iostream>
   
3. 
   
4. // 获取PE文件头
   
5. PIMAGE_DOS_HEADER GetDosHeader(LPVOID lpBaseAddress) {
   
6.     return reinterpret_cast<PIMAGE_DOS_HEADER>(lpBaseAddress);
   
7. }
   
8. 
   
9. // 获取NT头
   
10. PIMAGE_NT_HEADERS GetNtHeaders(LPVOID lpBaseAddress) {
    
11.     PIMAGE_DOS_HEADER pDosHeader = GetDosHeader(lpBaseAddress);
    
12.     return reinterpret_cast<PIMAGE_NT_HEADERS>(
    
13.         reinterpret_cast<BYTE*>(pDosHeader) + pDosHeader->e_lfanew);
    
14. }
    
15. 
    
16. // 执行远程进程入口点
    
17. void ExecuteRemoteProcess(HANDLE hProcess, LPVOID remoteBaseAddress) {
    
18.     PIMAGE_NT_HEADERS pNtHeaders = GetNtHeaders(remoteBaseAddress);
    
19.     LPVOID entryPoint = (LPVOID)((DWORD_PTR)remoteBaseAddress + pNtHeaders->OptionalHeader.AddressOfEntryPoint);
    
20. 
    
21.     HANDLE hThread = CreateRemoteThread(hProcess, NULL, 0,
    
22.         (LPTHREAD_START_ROUTINE)entryPoint, NULL, 0, NULL);
    
23.     if (hThread == NULL) {
    
24.         std::cerr << "CreateRemoteThread failed: " << GetLastError() << std::endl;
    
25.         return;
    
26.     }
    
27. 
    
28.     WaitForSingleObject(hThread, INFINITE);
    
29.     CloseHandle(hThread);
    
30. }
    
31. 
    
32. int main() {
    
33.     // 要注入的exe文件路径
    
34.     TCHAR szFilePath[] = L"C:\\Users\\HZW\\Desktop\\32.exe";
    
35.     //被注入的exe文件
    
36.     TCHAR FilePath111[] = L"C:\\Windows\\System32\\notepad.exe";
    
37. 
    
38.     // 打开exe文件
    
39.     HANDLE hFile = CreateFile(szFilePath, GENERIC_READ, FILE_SHARE_READ, NULL, OPEN_EXISTING,
    
40.         FILE_ATTRIBUTE_NORMAL, NULL);
    
41.     if (hFile == INVALID_HANDLE_VALUE) {
    
42.         std::cerr << "CreateFile failed: " << GetLastError() << std::endl;
    
43.         return -1;
    
44.     }
    
45. 
    
46.     // 获取exe文件大小
    
47.     LARGE_INTEGER fileSize;
    
48.     if (!GetFileSizeEx(hFile, &fileSize)) {
    
49.         std::cerr << "GetFileSizeEx failed: " << GetLastError() << std::endl;
    
50.         CloseHandle(hFile);
    
51.         return -1;
    
52.     }
    
53. 
    
54. 
    
55.     // 创建新进程
    
56.     PROCESS_INFORMATION pi;
    
57.     STARTUPINFO si = { sizeof(STARTUPINFO) };
    
58.     if (!CreateProcess(NULL, FilePath111, NULL, NULL, FALSE,
    
59.         CREATE_SUSPENDED, NULL, NULL, &si, &pi)) {
    
60.         std::cerr << "CreateProcess failed: " << GetLastError() << std::endl;
    
61.         CloseHandle(hFile);
    
62.         return -1;
    
63.     }
    
64. 
    
65.     // 映射exe文件到内存
    
66.     HANDLE hMapFile = CreateFileMapping(hFile, NULL, PAGE_READONLY, 0, 0, NULL);
    
67.     if (hMapFile == NULL) {
    
68.         std::cerr << "CreateFileMapping failed: " << GetLastError() << std::endl;
    
69.         TerminateProcess(pi.hProcess, -1);
    
70.         CloseHandle(hFile);
    
71.         return -1;
    
72.     }
    
73. 
    
74.     LPVOID pFileBase = MapViewOfFile(hMapFile, FILE_MAP_READ, 0, 0, 0);
    
75.     if (pFileBase == NULL) {
    
76.         std::cerr << "MapViewOfFile failed: " << GetLastError() << std::endl;
    
77.         CloseHandle(hMapFile);
    
78.         TerminateProcess(pi.hProcess, -1);
    
79.         CloseHandle(hFile);
    
80.         return -1;
    
81.     }
    
82. 
    
83.     // 将exe文件内容写入新进程
    
84.     LPVOID remoteBaseAddress = VirtualAllocEx(pi.hProcess, NULL, fileSize.LowPart, MEM_COMMIT | MEM_RESERVE, PAGE_EXECUTE_READWRITE);
    
85.     if (remoteBaseAddress == NULL) {
    
86.         std::cerr << "VirtualAllocEx failed: " << GetLastError() << std::endl;
    
87.         UnmapViewOfFile(pFileBase);
    
88.         CloseHandle(hMapFile);
    
89.         TerminateProcess(pi.hProcess, -1);
    
90.         CloseHandle(hFile);
    
91.         return -1;
    
92.     }
    
93. 
    
94.     SIZE_T bytesWritten;
    
95.     if (!WriteProcessMemory(pi.hProcess, remoteBaseAddress, pFileBase, fileSize.LowPart, &bytesWritten)) {
    
96.         std::cerr << "WriteProcessMemory failed: " << GetLastError() << std::endl;
    
97.         VirtualFreeEx(pi.hProcess, remoteBaseAddress, 0, MEM_RELEASE);
    
98.         UnmapViewOfFile(pFileBase);
    
99.         CloseHandle(hMapFile);
    
100.         TerminateProcess(pi.hProcess, -1);
     
101.         CloseHandle(hFile);
     
102.         return -1;
     
103.     }
     
104. 
     
105.     // 执行注入的exe
     
106.     ExecuteRemoteProcess(pi.hProcess, remoteBaseAddress);
     
107. 
     
108.     // 清理
     
109.     VirtualFreeEx(pi.hProcess, remoteBaseAddress, 0, MEM_RELEASE);
     
110.     UnmapViewOfFile(pFileBase);
     
111.     CloseHandle(hMapFile);
     
112.     CloseHandle(hFile);
     
113.     ResumeThread(pi.hThread);
     
114.     CloseHandle(pi.hThread);
     
115.     CloseHandle(pi.hProcess);
     
116. 
     
117.     return 0;
     
118. }

复制代码

你看看，你试下

urenai

我没空