ExecutePeFromPngViaLNK

Extract and execute a PE embedded within a PNG file using an LNK file.

Generate Convert Improve

Install / Use

/learn @Maldev-Academy/ExecutePeFromPngViaLNK

About this skill

Quality Score

0/100

README

ExecutePeFromPngViaLNK

Extract and execute a PE embedded within a PNG file using an LNK file. The PE file is encrypted using a single-key XOR algorithm and then injected as an IDAT section to the end of a specified PNG file.

Quick Links

Maldev Academy Home

Maldev Academy Syllabus

Maldev Academy Pricing

Usage

Use InsertPeIntoPng.py to create the embedded PNG file and generate the extraction LNK file:

The generated LNK file will have the icon of a PDF file by default, and it will expect the embedded PNG file to be in the same directory when executed. PE files will be stored under the %TEMP% directory for execution.

Demo - Executing Dll

https://github.com/user-attachments/assets/adccab21-a05e-4f79-9590-b2ea4160ec4b

Demo - Executing Exe

https://github.com/user-attachments/assets/d47a0f3d-1689-4c57-bb1f-7559ad23ce04

Related Skills

node-connect

348.2k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

108.9k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

348.2k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

348.2k

QQBot 富媒体收发能力。使用 <qqmedia> 标签，系统根据文件扩展名自动识别类型（图片/语音/视频/文件）。