wechat/source/hook/hook/dllmain.cpp

// dllmain.cpp : 定义 DLL 应用程序的入口点。
#include "stdafx.h"
#include "..\common\CurlClient.h"

//https://docs.microsoft.com/zh-cn/windows/desktop/winmsg/using-hooks
HHOOK	ghk_CBT = NULL;
HHOOK	ghk_Mouse = NULL;
HHOOK	ghk_CallWndProc = NULL;

LRESULT WINAPI CallWndProc(int, WPARAM, LPARAM);
LRESULT WINAPI CBTProc(int, WPARAM, LPARAM);
LRESULT WINAPI DebugProc(int, WPARAM, LPARAM);
LRESULT WINAPI GetMsgProc(int, WPARAM, LPARAM);
LRESULT WINAPI KeyboardProc(int, WPARAM, LPARAM);
LRESULT WINAPI MouseProc(int, WPARAM, LPARAM);
LRESULT WINAPI MessageProc(int, WPARAM, LPARAM);

LRESULT WINAPI CallWndProc(int nCode, WPARAM wParam, LPARAM lParam)
{
	WriteTextLog(_T("CallWndProc"));

	if (nCode < 0)  // do not process message 
		return CallNextHookEx(ghk_CallWndProc, nCode, wParam, lParam);

	switch (nCode)
	{
	case HC_ACTION:
		break;

	default:
		break;
	}

	return CallNextHookEx(ghk_CallWndProc, nCode, wParam, lParam);
}

LRESULT CALLBACK CBTProc(int nCode, WPARAM wParam, LPARAM lParam)
{
	CHAR szBuf[128];
	CHAR szCode[128];
	static int c = 0;
	size_t cch;
	HRESULT hResult;

	WriteTextLog(_T("CBTProc"));
	if (nCode < 0)  // do not process message 
		return CallNextHookEx(ghk_CBT, nCode, wParam,lParam);

	switch (nCode)
	{
	case HCBT_ACTIVATE:
		break;

	case HCBT_CLICKSKIPPED:
		break;

	case HCBT_CREATEWND:
		break;

	case HCBT_DESTROYWND:
		break;

	case HCBT_KEYSKIPPED:
		break;

	case HCBT_MINMAX:
		break;

	case HCBT_MOVESIZE:
		break;

	case HCBT_QS:
		break;

	case HCBT_SETFOCUS:
		break;

	case HCBT_SYSCOMMAND:
		break;

	default:
		break;
	}
	
	return CallNextHookEx(ghk_CBT, nCode, wParam, lParam);
}

LRESULT CALLBACK MouseProc(int nCode, WPARAM wParam, LPARAM lParam)
{
	CHAR szBuf[128];
	CHAR szMsg[16];
	static int c = 0;
	size_t cch;
	HRESULT hResult;

	if (nCode < 0)  // do not process the message 
		return CallNextHookEx(ghk_Mouse, nCode,wParam, lParam);

	WriteTextLog(_T("MOUSE - nCode: %d, msg: %s, x: %d, y: %d, %d times "), nCode, szMsg, LOWORD(lParam), HIWORD(lParam), c++);

	return CallNextHookEx(ghk_Mouse, nCode, wParam, lParam);
}

BOOL APIENTRY DllMain(HMODULE hModule,DWORD  ul_reason_for_call,LPVOID lpReserved)
{
	g_hCurModule = hModule;
#if 1 // 获取dll的目录;
	TCHAR szDrive[MAX_PATH] = { 0 };
	TCHAR szDir[MAX_PATH] = { 0 };
	TCHAR szExt[MAX_PATH] = { 0 };
	::GetModuleFileName(g_hCurModule, g_szCurModulePath, sizeof(g_szCurModulePath) / sizeof(TCHAR));
	_tsplitpath_s(g_szCurModulePath, szDrive, szDir, g_szFna, szExt);
	_tcscpy_s(g_szCurModulePath, szDrive);
	_tcscat_s(g_szCurModulePath, szDir);
#endif

#ifdef _DEBUG
	Sleep(5000);
#endif

	switch (ul_reason_for_call)
	{
	case DLL_PROCESS_ATTACH:
	{
		std::thread t([]() {
			DWORD dwThreadId = 0;
			GetProcInfo(dwThreadId);
			if (ghk_CBT == NULL)
			{
				ghk_CBT = SetWindowsHookEx(WH_CBT, CBTProc, HINSTANCE(0x000604F4), dwThreadId);
				if (ghk_CBT == NULL)
					WriteTextLog(_T("hook api失败"));
				else
					WriteTextLog(_T("hook api成功:%ld,%p"), GetLastError(), HINSTANCE(0x000604F4));
			}

			WriteTextLog(_T("dll已成功注入:【当前线程id=%d, 目标线程id=%d,进程id=%d】"), ::GetCurrentThreadId(), dwThreadId, ::GetCurrentProcessId());
			WxInfo wxInfo;
			GetWxInfo(wxInfo);

			CCurlClient curl;
			if (curl.Initialize() == CURLE_OK)
			{
				std::string strData;
				if (curl.Get(wxInfo.strWxSImgAddr, strData) == CURLE_OK)
				{
					FILE *pf = NULL;
					TCHAR szWxImage[MAX_PATH] = { 0 };
					_stprintf_s(szWxImage, _T("%s%s\\%s.jpg"), g_szCurModulePath, _T("image"), wxInfo.strWxID.c_str());
					pf = _tfopen(szWxImage, _T("w+"));
					if (pf)
					{
						fwrite(strData.c_str(), strData.size(), 1, pf);
						fclose(pf);
					}
				}
			}
			});
		t.detach();
	}
	break;
	case DLL_THREAD_ATTACH:
		break;
	case DLL_THREAD_DETACH:
		break;
	case DLL_PROCESS_DETACH:
		if (ghk_CBT)
		{
			if (UnhookWindowsHookEx(ghk_CBT))
				WriteTextLog(_T("卸载hook成功"));
		}
		WriteTextLog(_T("dll已成功卸载"));
		break;
	default:
		break;
	}
	return TRUE;
}