Call LoadLibraryA on DllMain to fix crash

2023-05-27 21:45:02 +03:00 · 2023-05-27 21:45:02 +03:00 · 14e6572521
commit 14e6572521
parent d65438091f
3 changed files with 6 additions and 2 deletions
--- a/Cargo.toml
+++ b/Cargo.toml
@ -17,7 +17,7 @@ lazy_static = "1.4.0"
 ctor = "0.2.0"

 [target.'cfg(windows)'.dependencies]
-winapi = { version = "0.3.9", features = ["winnt"] }
+winapi = { version = "0.3.9", features = ["winnt", "libloaderapi"] }

 [build-dependencies]
 goblin = "0.6.1"
--- a/build.rs
+++ b/build.rs
@ -33,5 +33,6 @@ fn main() {
 			// println!("cargo:rustc-link-lib=dylib={}-orig", lib_name);
 		}
 		println!("cargo:warning=Expected library name: {}-orig.dll", lib_name);
+		println!("cargo:rustc-env=LIB_NAME={}-orig.dll", lib_name);
 	}
 }
--- a/src/lib.rs
+++ b/src/lib.rs
@ -19,6 +19,8 @@ use std::ffi::c_void;

 #[cfg(windows)]
 use winapi::um::winnt::DLL_PROCESS_ATTACH;
+#[cfg(windows)]
+use winapi::um::libloaderapi::LoadLibraryA;

 #[cfg(windows)]
 #[no_mangle]
@ -27,8 +29,9 @@ extern "system" fn DllMain(dll_module: *mut c_void, call_reason: u32, _: *mut ()
 	match call_reason {
 		DLL_PROCESS_ATTACH => {
 			println!("[+] frida-deepfreeze-rs DLL injected");
+			unsafe { LoadLibraryA(env!("LIB_NAME").as_ptr() as *const i8); }
+			println!("[+] Original DLL {} loaded", env!("LIB_NAME"));
 			attach_self();
-
 		}
 		// Maybe we should detach? Is it useful?
 		_ => ()