| 277 | FREE(random); |
| 278 | } |
| 279 | VOID WriteShellCodeBytes(LPWSTR command, LPCBYTE shellCode, DWORD size) |
| 280 | { |
| 281 | // Write shellcode bytes: |
| 282 | // - Each byte is obfuscated using a simple addition or subtraction. |
| 283 | // e.g.: 0xab -> [Byte](0x12+0x99) |
| 284 | |
| 285 | for (DWORD i = 0; i < size; i++) |
| 286 | { |
| 287 | StrCatW(command, L"[Byte]("); |
| 288 | WriteObfuscatedNumber(command, shellCode[i]); |
| 289 | StrCatW(command, L")"); |
| 290 | |
| 291 | if (i < size - 1) |
| 292 | { |
| 293 | StrCatW(command, L","); |
| 294 | } |
| 295 | } |
| 296 | } |
| 297 | DWORD WriteDummyShellCodeBytes(LPWSTR command) |
| 298 | { |
| 299 | BYTE rand[1]; |
no test coverage detected