Don't use LoadLibrary

[jbremer]

Just wanted to mention that using LoadLibrary to fetch a resource from a PE file isn't exactly secure. Any malicious application that redirects DllMain (if it's a DLL in the first place), adds a TLS callback to the PE file, or simply patches some of the programs' code will be able to run arbitrary code on the machine where your Py2ExeDecompiler program is running

https://github.com/endgameinc/Py2ExeDecompiler/blob/master/Py2ExeDecompiler/Form1.Designer.cs#L340

[malware-unicorn]

I understand the risks of using LoadLibrary due to dll hijacking. LoadLibrary used for extracting the resource, but this is also initialized by the user input (drag drop/upload). The intent of this tool is to analyze py2exe malware inside of a sandbox. Also I have yet to see a py2exe dll.