- Payload injection using APC calls - alertable thread
14
14
- Payload execution using APC - alertable thread
15
15
- Execution delation using [MsgWaitForMultipleObjects](https://github.com/NUL0x4C/APCLdr/blob/main/APCLdr/APCLdr.c#L66) - edit [this](https://github.com/NUL0x4C/APCLdr/blob/main/APCLdr/Common.h#L6)
16
+
- the total size is 8kb + the payload size
16
17
17
18
<br>
18
19
19
20
### Usage:
20
21
Use [Builder](https://github.com/NUL0x4C/APCLdr/tree/main/Builder) to update the [PayloadFile.pf](https://github.com/NUL0x4C/APCLdr/blob/main/APCLdr/PayloadFile.pf) file, that'll be the encrypted payload to be saved in the .rsrc section of the loader
21
22
23
+
<br>
24
+
25
+
### Debugging:
26
+
- Change *Linker>SubSystem* from **/SUBSYSTEM:WINDOWS** to **/SUBSYSTEM:CONSOLE**
27
+
- Set the loader in debug mode (uncomment [this](https://github.com/NUL0x4C/APCLdr/blob/main/APCLdr/Debug.h#L7))
