admin/SuperMega
1
0
Fork 0
mirror of https://github.com/dobin/SuperMega synced 2026-06-02 17:27:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

feature: 2-byte xor key

Browse Source
This commit is contained in:
Dobin
2024-05-20 09:21:44 +01:00
parent 87cb4bfe5b
commit 0e08fde15d
7 changed files with 22 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
config.py
+1
View File
@@ -11,6 +11,7 @@ class Config(object):
self.debug: bool = False self.debug: bool = False
self.xor_key: int = 0x31 self.xor_key: int = 0x31
self.xor_key2: bytes = b"\x31\x32"
self.data_fixups = None self.data_fixups = None
self.data_fixup_entries = None self.data_fixup_entries = None
data/source/carrier/decoder/xor_2.c
+5 -5
View File
@@ -1,5 +1,5 @@
// Multibyte XOR (untested) // Multibyte XOR
// Need: key, key_len char *key = "{{XOR_KEY2}}";
for ( int i = 0; i < {{PAYLOAD_LEN}}; i++ ) { for ( int i = 0; i < {{PAYLOAD_LEN}}; i++ ) {
dest[i] = supermega_payload[i] ^ key[i % key_len]; dest[i] = supermega_payload[i] ^ key[i % 2];
} }
helper.py
+5
View File
@@ -176,3 +176,8 @@ def ui_string_decode(data):
return "(utf16) " + data.decode("utf-16le") return "(utf16) " + data.decode("utf-16le")
else: else:
return "(utf8) " + data.decode("utf-8") return "(utf8) " + data.decode("utf-8")
def ascii_to_hex_bytes(ascii_bytes):
hex_escaped = ''.join(f'\\x{byte:02x}' for byte in ascii_bytes)
return hex_escaped
model/defs.py
+1
View File
@@ -23,6 +23,7 @@ PATH_WEB_PROJECT = "projects/"
class DecoderStyle(Enum): class DecoderStyle(Enum):
PLAIN_1 = "plain_1" PLAIN_1 = "plain_1"
XOR_1 = "xor_1" XOR_1 = "xor_1"
XOR_2 = "xor_2"
class PayloadLocation(Enum): class PayloadLocation(Enum):
phases/assembler.py
+7
View File
@@ -46,5 +46,12 @@ def encode_payload(payload: bytes, decoder_style: DecoderStyle) -> bytes:
logger.info("---[ XOR payload with key 0x{:X}".format(xor_key)) logger.info("---[ XOR payload with key 0x{:X}".format(xor_key))
xored = bytes([byte ^ xor_key for byte in payload]) xored = bytes([byte ^ xor_key for byte in payload])
return xored return xored
elif decoder_style == DecoderStyle.XOR_2:
xor_key = config.xor_key2
logger.info("---[ XOR2 payload with key {}".format(xor_key))
xored = bytearray(payload)
for i in range(len(xored)):
xored[i] ^= xor_key[i % 2]
return xored
else: else:
raise Exception("Unknown decoder style") raise Exception("Unknown decoder style")
phases/templater.py
+1
View File
@@ -34,6 +34,7 @@ def create_c_from_template(settings: Settings, payload_len: int):
plugin_decoder = Template(plugin_decoder).render({ plugin_decoder = Template(plugin_decoder).render({
'PAYLOAD_LEN': payload_len, 'PAYLOAD_LEN': payload_len,
'XOR_KEY': config.xor_key, 'XOR_KEY': config.xor_key,
'XOR_KEY2': ascii_to_hex_bytes(config.xor_key2),
}) })
# Choose correct template # Choose correct template
supermega.py
+2
View File
@@ -59,6 +59,8 @@ def main():
settings.decoder_style = DecoderStyle.PLAIN_1 settings.decoder_style = DecoderStyle.PLAIN_1
elif args.decoder == "xor_1": elif args.decoder == "xor_1":
settings.decoder_style = DecoderStyle.XOR_1 settings.decoder_style = DecoderStyle.XOR_1
elif args.decoder == "xor_2":
settings.decoder_style = DecoderStyle.XOR_2
if args.inject: if args.inject:
if args.carrier_invoke == "eop": if args.carrier_invoke == "eop":
settings.carrier_invoke_style = CarrierInvokeStyle.ChangeEntryPoint settings.carrier_invoke_style = CarrierInvokeStyle.ChangeEntryPoint