- PE injection Is A Method Of Executing Arbitrary Code In The Address Space Of A Separate Live Process.
- First We Should Get Image Base Address From The PE Header
- Get The Size From The PE Header
- Allocate A Block Of Memory
- Copy The Image Of The Current Process Into The New Block Of Memory
- Allocate Another Block Of Memory In A Remote Process
- Calculate The Offset Of The Reloc Table
- Relocate The PE
- Create a new thread (CreateRemoteThread) And Point It To The Function