Run executable files blacklisted by Bitdefender Total Security

Building:

Build the RunPE64 DLL and place it in the same directory as the command line tool

Usage:

First, encrypt the executable with

encrypt -i INPUT_FILE_PATH -o OUTPUT_FILE_PATH -k OUTPUT_KEY_FILE_PATH

Now you can run the encrypted image with

run -c INPUT_ENCRYPTED_FILE_PATH -k KEY_FILE_PATH -args "ARGUMENT_LIST"

Version Information:

Practical Example: Running the Monero Miner (xmrig.exe)

When trying to start the miner normally, the file will first be locked and then quarantined.

When starting the miner with this tool, the application will start up successfully

It does recognize the crypto mining connection, but it should never have allowed the application to start up in the first place (it is likely possible to bypass this detection as well somehow).
The purpose of this demonstration was to show that a blacklisted file can be executed.
The test system is a Windows 10 22H2 environment.