windows process injection with pymem

Asked Apr 17 '23 at 05:52

Active Apr 17 '23 at 06:08

Viewed 178 times

I tried to use pymem in order to process inject into a subprocess I spawned. The code is below:

from pymem import Pymem
import os
import subprocess

svc = subprocess.Popen(['svchost.exe'])
pid = svc.pid
print("process id is: ", pid)

pm = Pymem(pid)
pm.inject_python_interpreter()
shellcode = """
import tkinter as tk
mn = tk.Tk()
mn.mainloop()
"""
pm.inject_python_shellcode(shellcode)

I tried running the code referenced above ^, it did not work. error I got is as follows:

process id is:  7300
Traceback (most recent call last):
  File "C:\Users\yallah\Documents\shel.py", line 28, in <module>
    pm.inject_python_interpreter()
  File "C:\Users\yallah\AppData\Local\Programs\Python\Python311\Lib\site-packages\pymem\__init__.py", line 124, in inject_python_interpreter
    self.start_thread(py_initialize_ex, param_addr)
  File "C:\Users\yallah\AppData\Local\Programs\Python\Python311\Lib\site-packages\pymem\__init__.py", line 191, in start_thread
    pymem.logger.debug('New thread_id: 0x%08x' % thread_h)
                       ~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~
TypeError: %x format: an integer is required, not NoneType

Without the use of the integer it works fine. I need to reference the process ID of the spawned process though, Any suggestions?

edited Apr 17 '23 at 06:08

asked Apr 17 '23 at 05:52

ysfsun

Does this help? Add `notepad.kill(`) at the the end. – toyota Supra Apr 17 '23 at 08:58
There's no notepad to begin with, how do you mean? – ysfsun Apr 17 '23 at 23:52
I wonder if there was anything logged a few lines earlier: `pymem.logger.warning('Got an error in start thread, code: %s' % last_error)` – ssbssa Apr 27 '23 at 10:27

windows process injection with pymem

0 Answers0