Page 1 of 1

Possible Anti-Sandbox idea

PostPosted: Mon Dec 03, 2012 8:19 pm
by Unc3nZureD
I've done a great working anti-Sandbox in AutoIT, however it can't used as a plugin. That's why I need any of you to convert it into a delphi or c++ source.

The idea is the following:
Most of the sandbox softwares somehow denies to access other window's text. It could be used to get if a sandbox is present. In AutoIT the function looks the following way:

Code: Select all
If WinGetText("Program Manager") = "0" Then
   Return True
Else
   Return False
EndIf


The "Program Manager" means the DESKTOP, which is 99.9% accessible if sandbox is not used. If it's used then it blocks so you can't get it's text. The AutoIT gives an easy way to solve it - logically you can understand the code above.

Re: Possible Anti-Sandbox idea

PostPosted: Tue Jun 25, 2013 7:51 pm
by MixBanana
Windows title name change, you can use "FindWindow" by class name to block it.