PEx64-Injector: A C# repository from 0xyg3n

PEx64-Injector (Process Migrator)

Migrate any x64 exe to any x64 process (Net FrameWork 3.5)

No Administrator privileges required.

GIF Demo

How can be used?

Download here.

Usage: Migrator.exe payload(fpath) Migratefile(fpath)

Example: Migrator.exe C:\Users\User\Desktop\Putty64.exe C:\Windows\System32\notepad.exe

Keep as a note that when you specify the migratefile it will launch as a new process and won't migrate to an already running process.

Such tool can be utilized for AV evasion, masking malicious software under legitimate process.

0xyg3n/PEx64-Injector

PEx64-Injector (Process Migrator)

Migrate any x64 exe to any x64 process (Net FrameWork 3.5)

No Administrator privileges required.

GIF Demo

How can be used?

Download here.

Usage: Migrator.exe payload(fpath) Migratefile(fpath)

Example: Migrator.exe C:\Users\User\Desktop\Putty64.exe C:\Windows\System32\notepad.exe

Keep as a note that when you specify the migratefile it will launch as a new process and won't migrate to an already running process.

Such tool can be utilized for AV evasion, masking malicious software under legitimate process.

Todo: download/execute function to load remote files.

Special thanks to GigaJew.