Hook GetLocalTime(...) in kernelbase.dll for manipulate system time steps.
Hook GetTimeFormatEx(...) in kernelbase.dll to overwrite clock strings in process (ex: explorer.exe)
Microsoft Detours Library - https://github.com/microsoft/Detours
Compile:
- Unzip source code, open command line and enter to source directory
- SET DETOURS_TARGET_PROCESSOR=X64
- C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC\Auxiliary\Build\vcvars64.bat
- NMAKE
Add detours.lib to Linker additional libraries.
Hooked Function:
- GetLocalTime
- GetTimeFormatEx