Problem with running EXE from a byte() array

Re: Problem with running EXE from a byte() array

Use Process.Start instead tto run an exe file...

--
Patrice


"sebastian nielsen" <nielsen.sebast ian@gmail.coma écrit dans le message de
groupe de discussion :
fdb05669-e1e4-4997-858c-aa4fcea08a4d...le groups.com...

Re: Problem with running EXE from a byte() array

In addition to Patrice



Cor

"Patrice" <http://www.chez.com/scribe/schreef in bericht
news:e6JvrTP3IH A.1192@TK2MSFTN GP05.phx.gbl...

Re: Problem with running EXE from a byte() array

Yes, but what im doing, is that I have a encoder application, which
loads lets say c:\application. exe and makes a BASE64 string of it.
Then I put that BASE64 string as a constant into my application, and
now I want to run the BASE64 string by decoding it and then running
the contents in memory without writing the EXE to disk.

In other words, I want to hard-code a application into my application.

Re: Problem with running EXE from a byte() array

Sebastian,

This is the difference between common people like most of us and artist like
you.

We just choose the most efficient methods, you see this probably as art.

However, art has to be unique, so very much success with your creation.

Cor

"sebastian nielsen" <nielsen.sebast ian@gmail.comsc hreef in bericht
news:0d50ce5f-4c40-4f85-9cd6-9bcbf51e57fe@r6 6g2000hsg.googl egroups.com...

Re: Problem with running EXE from a byte() array

Nope. This has with security to do.

What im really doing at encoding stage, is that I load in the
application into a byte array, then encrypt it with
System.Security ,Cryptography.R ijndael using a key derived from a
password with System.Security .Cryptography.S ha512
Then I encode the resulting ciphertext using Base64

Then I paste this base64 text into my other application as a string,
to password protect the child EXE.

So in the encoder, I select that I want to password protect C:
\application.ex e
Then I get encoded base64 text, which I paste as a string constant in
the application.
Ill try to decode the encoded application with
System.Security .Cryptography.R ijndael with the user-supplied password,
in a try/catch-block. If incorrect password is entered, the padding
will be incorrect and then it trows a Exception.Crypt ographyExceptio n
which will be catched and display "Incorrect password" to user.

If decryption succeeds, I want to put the decrypted EXE in memory and
run it.

Re: Problem with running EXE from a byte() array

Hello Sebastian,

Maybe there is a way, but sooner or later you might have to deal with
functionality of the operating system which tries to prevent that.
Windows XP already has Data Execution Prevention (although by default it
is only set to "Turn on DEP for essential Windows programs and services
only") which prevents data code (as in variables) to be changed to
executable code. I don't know how that is with Vista, but I expect that
it has at least the same functionality as XP. I think that the only way
to go is to save it as a temporary file and delete it right after
execution is complete. If you want to prevent it from being copied, you
might have to lock it so that other applications cannot access it.

If your application ran only under Windows 2000/98 you could do make
data memory executable, but who is still using these dinosaurs today?

Best regards,

Martin

On 04.07.2008 19:58, wrote sebastian nielsen:

Re: Problem with running EXE from a byte() array

I have heard that DEP is there to prevent *accidential* execution of
data code, for example a buffer owerflow from a malicious user on the
internet, that causes the overflowed code to execute.
But now I as a developer wants to intentionally execute data, so there
must be a way to place the decrypted code into executeable memory
where DEP does not care about and then execute it.

Maybe there is any windows API to put executeable code into
executeable memory and then execute it? Or some native .NET function/
library to do it.

Re: Problem with running EXE from a byte() array

Looks like a licensing scheme ? Do you want to do that with any EXE or do
you control the EXE file subject to this processing ?

From my search :

- it looks very difficult if not impossible (saw a thread where they say
they didn't find any API for this in Win32 and someone was doing this "by
hand" but not even for Windows), zwCreateSection migth help but I have no
idea what it is and it s likely very very low level...

- is this for .NET EXE files on which you have control ? (in which case
loading as an assembly could work).

- I've seen also something similar where the .NET Exe file is encrypted on
disk and then decoded into memory when run (if I remember it looked like a
MS obsfucation solution but I don't find the link right now)

- you may want also to check for other licensing scheme that would be
available rather than doing this yourself. Is this what you are after by
encrypting this exe file ?


So ifnally :
- either this is for .NET and I would explore loading the exe file as an
assembly
- either this is for arbitrary EXE file and I would likely seach for a third
party solution depending on what I'm trying to do (don"t you have control on
those EXE files if this is for licensing ?)

Patrice

"sebastian nielsen" <nielsen.sebast ian@gmail.coma écrit dans le message de
groupe de discussion :
ea69f4d2-3ce7-4bdf-9d19-341e6251e46e...le groups.com...

Re: Problem with running EXE from a byte() array

Its both.

First example: I want to build a application, and license it. Users
need to enter a CD-key and the application starts.
Second example: I have purcased lets say 10 licenses from a third
party vendor for a application. The license agreement says im allowed
to install this license on unlimited number of computers as long as no
more than 10 licenses are running at a given time.

Then I could use my application to encrypt the third party EXE, and
have a license server, which lends out encryption keys for licensing,
and then the client returns keys that are no longer in use. And the
server makes sure no more than 10 keys are lended out at a given time.

Third example: I want to enforce when a application on a work computer
can be started and how many times. I encrypt the EXE and have it to
fetch a key from a server. The server only allows a given number of
keys to be sent only on specific times.

Fourth example: I simply want to password protect a generic EXE so
people with physical access to my computer cannot use that EXE.

Fifth example: I want to license a application on a per-IP-basis. I
just have the license server send out encryption keys for the correct
IP.
-----------------------------------------
So Im gonna build a encryption framework that can be used for any
application protection, so I just need the ability to run a EXE stored
in a byte() array.
The ready-made libraries only "obfuscates " the code, which means they
are not encrypting it, only "hiding" it by making it harder to
understand any decompiled or disassembled code.
What I want to do is to ENCRYPT the code.
And most of the ready-made license library just locks the application
by inserting code that ask for license key or password and then jumps
to the correct location.

Re: Problem with running EXE from a byte() array


Hello Sebastian

Balena once wrote an article about a simular task, you can find it here
and might be of some help for you




regards

Michel Posseth [MCP]


"sebastian nielsen" <nielsen.sebast ian@gmail.comsc hreef in bericht
news:5f1d01e0-b81a-40e4-a127-7d6f17e4d3ac@m3 g2000hsc.google groups.com...