09-22-2011، 12:51 AM
Anti-Sandboxie:
Code:
Anti-Emulation:
Code:
Anti-Wireshark:
Code:
Anti-WPE:
Code:
Code:
کد:
[DllImport("kernel32.dll")]
public static extern IntPtr GetModuleHandle(string lpModuleName);
private void DetectSandboxie()
{
if (GetModuleHandle("SbieDll.dll").ToInt32() != 0)
{
// Sandboxie Detected
// Code Here
}
}
Anti-Emulation:
Code:
کد:
private void DetectEmulation()
{
long tickCount = Environment.TickCount;
Thread.Sleep(500);
long tickCount2 = Environment.TickCount;
if (((tickCount2 - tickCount) < 500L))
{
// Emulation Detected
// Code Here
}
}
Anti-Wireshark:
Code:
کد:
private void DetectWireshark()
{
Process[] ProcessList = Process.GetProcesses();
foreach (Process proc in ProcessList)
{
if (proc.MainWindowTitle.Equals("The Wireshark Network Analyzer"))
{
// Wireshark Detected
// Code Here
}
}
}
Anti-WPE:
Code:
کد:
private void DetectWPE()
{
Process[] ProcessList = Process.GetProcesses();
foreach (Process proc in ProcessList)
{
if (proc.MainWindowTitle.Equals("WPE PRO"))
{
// WPE Detected
// Code Here
}
}
}