📄 autohook.asm
字号:
;@goto translate
.586P
.MODEL FLAT, STDCALL
OPTION CASEMAP: NONE
UNICODE = 0
INCLUDE WINDOWS.inc
INCLUDE APIMACRO.mac
INCLUDELIB iKERNEL32.lib
INCLUDELIB iUSER32.lib
INCLUDE ApiHooks.inc
INCLUDELIB iApiHooks.lib
.CODE
PrimaryThread PROC
iMOV EBX, MessageBoxA
sWin32 EBX, NULL, smmsg, smTitle, MB_ICONINFORMATION
MOV OrigMsgBoxA, EBX
iWin32 GetCurrentProcessId
iWin32i EstablishApiHooks, OFFSET MsgBoxHook, EAX
TEST EAX, EAX
JNE Exit
iWin32i MessageBox, NULL, smmsg, smTitle, MB_ICONINFORMATION
Exit:
iWin32 ExitProcess, STATUS_SUCCESS
PrimaryThread ENDP
TEXT mTitle, <Warning/0>
TEXT mmsg, <This is illegal./0>
NewMessageBoxA PROC hWnd, lpText, lpCaption, uType
TEST uType, MB_ICONINFORMATION
JE @F
XOR uType, MB_ICONINFORMATION OR MB_ICONEXCLAMATION
@@:
LEAVE
JMP OrigMsgBoxA
NewMessageBoxA ENDP
TEXTA USER32, <USER32.dll/0>
TEXTA MessageBoxA, <MessageBoxA/0>
OrigMsgBoxA DWORD 0
BeginHooks MsgBoxHook
API_HOOK <HOOKS_DYNAMIC>
MkHook HookMe, USER32, MessageBoxA, HOOK_BY_ADDRESS, NULL
EndHooks
END PrimaryThread
:translate
@echo off
ML /c /coff /nologo AutoHook.bat
LINK3 AutoHook /nologo /IGNORE:4078 /SUBSYSTEM:WINDOWS /MERGE:.rdata=.text /SECTION:.text,EWR
DEL AutoHook.obj
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -