While playing with Virtual PC 2007, i came up with an interesting trick not only to detect Virtual PC 2007 but also to reset (restart) the Virtual Machine.
The trick is so simple that all you need to do in your code is execute "\x0F\xC7\xC8\x05\x00".
Executing that x86 instruction sequence causes the following message to pop up.
A POC can be found here and its source from here.
N.B. Other x86 instruction sequences can cause the same result.
Any comments or ideas are welcome.
You can follow me on Twitter @waleedassar
The trick is so simple that all you need to do in your code is execute "\x0F\xC7\xC8\x05\x00".
Executing that x86 instruction sequence causes the following message to pop up.
A POC can be found here and its source from here.
N.B. Other x86 instruction sequences can cause the same result.
Any comments or ideas are welcome.
You can follow me on Twitter @waleedassar
Hi waleed, what's happening internaly when this instructions get executed?
ReplyDelete