{{ message }}
#
systemfunction033
Here is 1 public repository matching this topic...
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber
malware antivirus evasion bypass fiber dropper bypass-antivirus edr implant process-injection ntdll-unhooking systemfunction033
-
Updated
Feb 10, 2023 - C
Improve this page
Add a description, image, and links to the systemfunction033 topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the systemfunction033 topic, visit your repo's landing page and select "manage topics."
You can’t perform that action at this time.