GDI is how Windows draws things on the screen, apps, etc.
You can basically force it to draw in "0", aka over EVERYTHING.
This is basically the full history of GDI Trojans and how it works.
An example is Lixo (GDI-Trojan.Win32.Lixo), created by JhoPro:
https://github.com/ArTicZera/GDI-Trojan.Win32.Lixo
Lixo.exe is a small trojan made in C++ and 8086 Assembly for WINDOWS XP. In general, it modifies some registry keys, create copies of itself to critical Windows directories, play some bytebeats, show some GDI-Effects, overwrites the bootsector (MBR) to 10 Payloads made in ASM, and many other things. By the way, this is my 3rd GDI-Trojan and probably the last one...
This is a potentially harmful program that can cause your system's death & data loss. This software also displays flashing lights and plays loud sounds, so if you have a photosensitive disease like epilepsy, don't run this or watch any video about it for your security.
By running this program, you accept full responsibility for any damages that may occur. So, the creator (ArTic a.k.a JhoPro) will not be responsible for anything caused by this software. By the way, this was created for educational and entertainment purposes, consequently, don't use it to do malicious acts like sharing with a friend.
Nenhum comentário:
Postar um comentário