Read this first: OllyDbg plugin: Catcha! v1.1 – Catcha anywhere

Nothing special :D Just write a trap function that call LoadLibrary() function…

Pros:

  • We have an advantage that we don’t have to call CreateRemoteThread() function.

Cons:

  • Must pause target process to hook its EntryPoint :D.

Related Posts