paint_inject

Challenge Category: Malware

Author: us3r_h0n3st

Paint_inject Demonstrates a simple process injection technique into the “mspaint.exe” process on a Windows system. by defining some necessary Windows API functions and structures. It then lists all running processes on the system using a tool called “Toolhelp32.” The code iterates through the processes until it finds “mspaint.exe.” Once the target process is identified, the program allocates memory within the “mspaint.exe” address space, writes a payload into that allocated memory, creates a remote thread within the target process, and executes the payload. This technique allows the injection of custom code into another process.

Download the zipfile with the challenge.

Password to open the zipfile is: infected