how to decrypt exe in memory and then process

This is a discussion on how to decrypt exe in memory and then process within the C++ Programming forums, part of the General Programming Boards category; i want to create a program that after execution run the program in memory and then decrypt the program in ...

  1. #1
    Registered User
    Join Date
    Nov 2011
    Posts
    82

    how to decrypt exe in memory and then process

    i want to create a program that after execution run the program in memory and then decrypt the program in memory and run properly...

    like the program donot decrypt in memory and then go to memory and execute
    i want that decrypted file go to memory, decrypt there and then execute then.

  2. #2
    C++ Witch laserlight's Avatar
    Join Date
    Oct 2003
    Location
    Singapore
    Posts
    21,749
    Why do you want to do this?
    C + C++ Compiler: MinGW port of GCC
    Version Control System: Bazaar

    Look up a C++ Reference and learn How To Ask Questions The Smart Way

  3. #3
    Registered User whiteflags's Avatar
    Join Date
    Apr 2006
    Location
    United States
    Posts
    7,707

  4. #4
    Registered User
    Join Date
    Nov 2011
    Posts
    82
    for example an antivirus program
    like antivirus program has a database which search for the infected offset in the file

    if i decrypt program antivirus will not alert.

    but on decrypting it in hard disk program will detect the offset of decrypted file


    while if the program decrypt in memory and then execute, antivirus program will not detect it. because in the memory it is in the decrypted form...

  5. #5
    C++ Witch laserlight's Avatar
    Join Date
    Oct 2003
    Location
    Singapore
    Posts
    21,749
    It is possible that an anti-virus program may be able to detect malware in memory. Anyway, from the forum guidelines:
    6. Messages relating to cracking, (erroneously called "hacking" by many), copyright violations, or other illegal activities will be deleted. Due to the overlapping boundaries of code with malicious intent, and other legitimate uses of it, the moderators will assess each potential infraction on a case by case basis.
    *thread closed*
    C + C++ Compiler: MinGW port of GCC
    Version Control System: Bazaar

    Look up a C++ Reference and learn How To Ask Questions The Smart Way

Popular pages Recent additions subscribe to a feed

Similar Threads

  1. Process Memory block
    By ssharish2005 in forum Tech Board
    Replies: 6
    Last Post: 06-29-2011, 04:02 PM
  2. Loading process from memory
    By X PaYnE X in forum Windows Programming
    Replies: 15
    Last Post: 05-03-2009, 04:34 PM
  3. View Process memory
    By gadu in forum C Programming
    Replies: 1
    Last Post: 02-05-2009, 12:47 PM
  4. Reading Process Memory
    By Llam4 in forum C# Programming
    Replies: 10
    Last Post: 04-20-2007, 01:24 PM
  5. Poking other Process' Memory
    By Unreg in forum C++ Programming
    Replies: 12
    Last Post: 12-29-2002, 11:48 AM

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21