GetModuleHandle:
Retrieves a module handle for the specified module. The module must have been loaded by the calling process.(注意:这里的模块必须已经被当前的调用进程所加载)
---------------------------------------------------------------------------------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------------------------------------------------------------------------------
CreateRemoteThread:
32位对32位,64位对64位。
使用远程线程时候:被WriteProcessMemory 的执行代码块, 最好编译为Release版本。如编译为Debug版本(编译器会加入一些与调试相关代码),此代码块在 被注入进程 虚拟空间执行时会出错。
---------------------------------------------------------------------------------------------------------------------------------------------------------------------
---------------------------------------------------------------------------------------------------------------------------------------------------------------------
GetProcAddress:
Retrieves the address of an exported function or variable from the specified dynamic-link library (DLL).(获取导出的函数或变量,还没试过导出变量,有时间试试???)
举例:GetProcAddress(“MessageBox”):这个写法有错误。应该写成“MessageBoxA”或“MessageBoxW”
VirtualAllocEx的使用,详见https://docs.microsoft.com/en-us/windows/win32/api/memoryapi/nf-memoryapi-virtualallocex