[ Discovery of Early Bird APC Injection ]

https://www.cyberbit.com/blog/endpoint-security/new-early-bird-code-injection-technique-discovered/
https://www.ired.team/offensive-security/code-injection-process-injection/early-bird-apc-queue-code-injection

[ Asynchronous Procedure Call ]
https://docs.microsoft.com/en-us/windows/win32/sync/asynchronous-procedure-calls

[ QueueUserAPC ]
https://docs.microsoft.com/en-us/windows/win32/api/processthreadsapi/nf-processthreadsapi-queueuserapc

[ CreateProcessA ]
https://docs.microsoft.com/en-us/windows/win32/api/processthreadsapi/nf-processthreadsapi-createprocessa

[ Process Creation Flags ]
https://docs.microsoft.com/en-us/windows/win32/procthread/process-creation-flags

[ Process Information Structure ]
https://docs.microsoft.com/en-us/windows/win32/api/processthreadsapi/ns-processthreadsapi-process_information

[ ResumeThread ]
https://docs.microsoft.com/en-us/windows/win32/api/processthreadsapi/nf-processthreadsapi-resumethread