DLL Jmping: Old Hollow Trampolines in Windows DLL Land

This blog details a stealthy Windows payload-delivery technique that dynamically finds non-CFG system DLLs, locates their .text sections, and writes a small mov/call trampoline at each DLL start to build a chained execution path to memory-backed shellcode; the post includes source code, testing artifacts (Process Hacker screenshots), and VirusTotal comparisons showing substantially lower detection for chained samples versus a direct call.