Skip to content
Demos of various (also non standard) persistence methods used by malware
C++ CMake C Batchfile
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
com_hijack [NOBIN] Added a demos at HybridAnalysis May 18, 2017
extension_hijack [NOBIN] Added a demos at HybridAnalysis May 18, 2017
shim_persist [NOBIN] Added a demos at HybridAnalysis May 18, 2017
README.md Update README.md May 17, 2017

README.md

persistence_demos

  • com_hijack - loads a demo DLL via COM hijacking
  • extension_hijack - hijacks extensions handlers in order to run a demo app while the file with the given extension is opened
  • shim_persist - installs a shim that injects a demo DLL into explorer.exe
You can’t perform that action at this time.