Hello,
I want to hook "copy" files on desktop by user mouse operation.
I hooked CreateFileW and CopyFileW and copy file on desktop.
But I could not get information.
Could you tell me what API is Explorer using ?
Regards,
Nobuo Miwa
copy files on desktop
3 posts
• Page 1 of 1
copy files on desktop
by NobMiwa » Wed Oct 11, 2017 7:30 am
- NobMiwa
- Posts: 7
- Joined: Tue Mar 28, 2017 10:00 am
Re: copy files on desktop
by iconic » Wed Oct 11, 2017 3:57 pm
Newer shells no longer use shell APIs such as SHFileOperation()-> FO_COPY but instead use the IFileOperation interface based on COM when performing Desktop file actions. You can hook OLE32.dll!CoCreateInstance() and setup interface method hooks on CopyItem and CopyItems. The last parameter of CoCreateInstance() is a returned interface pointer which you can then index into in order to access the method table. CopyItem and CopyItems have the index of 16 and 17 in the method table of function pointers, respectively. MCH can be used for such purposes however it's not as simple as hooking a named export with the likes of HookApi() but still relatively a simple task 
--Iconic
--Iconic
- iconic
- Posts: 844
- Joined: Wed Jun 08, 2005 5:08 am
Re: copy files on desktop
by madshi » Mon Oct 16, 2017 8:46 am
Iconic is right, of course, as always.
Here's some more information on how to hook COM object methods:
viewtopic.php?f=7&t=27248
Here's some more information on how to hook COM object methods:
viewtopic.php?f=7&t=27248
- madshi
- Site Admin
- Posts: 9808
- Joined: Sun Mar 21, 2004 5:25 pm
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: Baidu [Spider], ExPx and 5 guests