x
本帖最后由 Mr.Wǎng 于 2012-6-15 16:43 编辑初学Win32汇编,调用api写了一个小东西,关键代码如下:_EnableDebugPriv proc uses ebx
LOCAL @hToken
LOCAL @tkp:TOKEN_PRIVILEGES
szTextszPrivilegeName, 'SeDebugPrivilege'
LEA ebx, @hToken
invoke GetCurrentProcess
invoke OpenProcessToken, eax, TOKEN_ADJUST_PRIVILEGES or TOKEN_QUERY, ebx
invoke LookupPrivilegeValue, NULL, addr szPrivilegeName, addr @tkp.Privileges.Luid
mov @tkp.PrivilegeCount, 1
mov @tkp.Privileges.Attributes, SE_PRIVILEGE_ENABLED
invoke AdjustTokenPrivileges, @hToken, FALSE, addr @tkp, sizeof TOKEN_PRIVILEGES, NULL, NULL
invoke CloseHandle, @hToken
ret
_EnableDebugPriv endp
_UpdateMemory proc
invoke _EnableDebugPriv
invoke FindWindow, offset szTargetClassName, offset szTargetWindowTitle
.if eax == NULL ;没有找到
invoke MessageBox, 0, offset szNotFound, offset szCaption, MB_OK or MB_ICONWARNING
invoke ExitProcess, 0
.endif
mov hWinTarget, eax
invoke GetWindowThreadProcessId, hWinTarget, offset hProcessId
; szText szFormatProcessId, 'the Tartget Process ID is : %d '
; invoke wsprintf, offset cBuf, addr szFormatProcessId, hProcessId
; invoke MessageBox, 0, offset cBuf, offset szCaption, MB_OK or MB_ICONWARNING
invoke OpenProcess, PROCESS_ALL_ACCESS, FALSE, hProcessId
.if !eax
invoke GetLastError
szText szFormatOpenProcess, 'Error of OpenProcess is : %d'
invoke wsprintf, offset cBuf, addr szFormatOpenProcess, eax
invoke MessageBox, 0, offset cBuf, offset szCaption, MB_OK or MB_ICONWARNING
invoke ExitProcess, 0
.endif
mov hTargetProc, eax
invoke WriteProcessMemory, hTargetProc, baseAddr, offset dwTime, sizeof dwTime, offset dwBytes
.if !eax
invoke GetLastError
szText szWriteMemory, 'Error of WriteProcessMemory is %d :'
invoke wsprintf, offset cBuf, addr szWriteMemory, eax
invoke MessageBox, 0, offset cBuf, offset szCaption, MB_OK or MB_ICONWARNING
invoke ExitProcess, 0
.endif
ret
_UpdateMemory endp其中33、34、35三行让我很费解
注释掉,OpenProcess失败,错误码998
取消注释,OpenProcess就成功了
百度、Google一大圈子,没有答案,郁闷死了
顶起来,求大虾们帮解决,求鱼哥关注 我擦,要沉了 果然沉了!
页:
[1]