admin/SuperMega
1
0
Fork 0
mirror of https://github.com/dobin/SuperMega synced 2026-06-02 17:27:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

feature: try to build in build/

Browse Source
This commit is contained in:
Dobin
2024-02-05 10:54:55 +00:00
parent efe2039984
commit 262a2a595a
4 changed files with 42 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitignore
+2
View File
@@ -5,3 +5,5 @@
*.asm *.asm
__pycache__ __pycache__
bak/ bak/
build/
out/
build/.gitkeep
View File
helper.py
+30 -10
View File
@@ -4,6 +4,7 @@ import pefile
import time import time
import shutil import shutil
import pathlib import pathlib
import sys
SHC_VERIFY_SLEEP = 0.1 SHC_VERIFY_SLEEP = 0.1
@@ -16,17 +17,31 @@ path_runshc = r'C:\Users\hacker\Source\Repos\masm_shc\out\build\x64-Debug\runshc
verify_filename = r'C:\Temp\a' verify_filename = r'C:\Temp\a'
build_dir = "build"
main_c_file = os.path.join(build_dir, "main.c")
main_asm_file = os.path.join(build_dir, "main.asm")
main_asm_clean_file = os.path.join(build_dir, "main-clean.asm")
main_exe_clean_file = os.path.join(build_dir, "main-clean.exe")
main_bin_clean_file = os.path.join(build_dir, "main-clean.bin")
main_bin_clean_append_file = os.path.join(build_dir, "main-clean-append.bin")
def clean_files(): def clean_files():
print("--[ Cleanup files ]") print("--[ Cleanup files ]")
files_to_clean = [ files_to_clean = [
"main.asm", # compile artefacts in current dir
"main.obj",
"main-clean.asm",
"main-clean.bin",
"main-clean-append.bin",
"main-clean.obj", "main-clean.obj",
"main.obj",
"mllink$.lnk", "mllink$.lnk",
# out/ stuff
os.path.join(build_dir, "main.asm"),
os.path.join(build_dir, "main-clean.asm"),
os.path.join(build_dir, "main-clean.bin"),
os.path.join(build_dir, "main-clean-append.bin"),
verify_filename, verify_filename,
#"main-clean.exe", # at the end as it may still shutdown? #"main-clean.exe", # at the end as it may still shutdown?
] ]
@@ -41,8 +56,9 @@ def make_c_to_asm(c_file, asm_file, asm_clean_file, payload_len):
"/c", "/c",
"/FA", "/FA",
"/GS-", "/GS-",
"/Fa{}/".format(os.path.dirname(c_file)),
c_file, c_file,
], check=True, stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL) ])
if not os.path.isfile(asm_file): if not os.path.isfile(asm_file):
print("Error") print("Error")
return return
@@ -102,6 +118,7 @@ def make_shc_from_asm(asm_clean_file, exe_file, shc_file):
path_ml64, path_ml64,
asm_clean_file, asm_clean_file,
"/link", "/link",
"/OUT:build\main-clean.exe",
"/entry:AlignRSP" "/entry:AlignRSP"
], check=True, stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL) ], check=True, stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL)
if not os.path.isfile(exe_file): if not os.path.isfile(exe_file):
@@ -187,6 +204,9 @@ def verify_shellcode(shc_name):
if not os.path.exists(os.path.dirname(verify_filename)): if not os.path.exists(os.path.dirname(verify_filename)):
print("Error, directory does not exist for: {}".format(verify_filename)) print("Error, directory does not exist for: {}".format(verify_filename))
return return
# remove indicator file
pathlib.Path(verify_filename).unlink(missing_ok=True)
subprocess.run([ subprocess.run([
path_runshc, path_runshc,
@@ -195,8 +215,6 @@ def verify_shellcode(shc_name):
time.sleep(SHC_VERIFY_SLEEP) time.sleep(SHC_VERIFY_SLEEP)
if os.path.isfile(verify_filename): if os.path.isfile(verify_filename):
print("---> Verify OK. Shellcode payload verified (file was created)") print("---> Verify OK. Shellcode payload verified (file was created)")
# better to remove it immediately. If cleanup on start is not performed,
# there may be false positives
os.remove(verify_filename) os.remove(verify_filename)
return True return True
else: else:
@@ -222,14 +240,16 @@ def inject_exe(shc_file, exe_in, exe_out):
def verify_injected_exe(exefile): def verify_injected_exe(exefile):
print("---[ Verify infected exe: {} ]".format(exefile)) print("---[ Verify infected exe: {} ]".format(exefile))
# remove indicator file
pathlib.Path(verify_filename).unlink(missing_ok=True)
subprocess.run([ subprocess.run([
exefile, exefile,
], stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL) # , check=True ], stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL) # , check=True
time.sleep(SHC_VERIFY_SLEEP) time.sleep(SHC_VERIFY_SLEEP)
if os.path.isfile(verify_filename): if os.path.isfile(verify_filename):
print("---> Verify OK. Infected exe verified (file was created)") print("---> Verify OK. Infected exe verified (file was created)")
# better to remove it immediately. If cleanup on start is not performed, # better to remove it immediately
# there may be false positives
os.remove(verify_filename) os.remove(verify_filename)
else: else:
print("---> Verify FAIL. Infected exe did not create file.") print("---> Verify FAIL. Infected exe did not create file.")
supermega.py
+10 -10
View File
@@ -85,13 +85,13 @@ def main():
with open(options["payload"], 'rb') as input2: with open(options["payload"], 'rb') as input2:
data_payload = input2.read() data_payload = input2.read()
l = len(data_payload) l = len(data_payload)
make_c_to_asm("source/main.c", "main.asm", "main-clean.asm", l) make_c_to_asm(main_c_file, main_asm_file, main_asm_clean_file, l)
if options["generate_asm_from_c"]: if options["generate_asm_from_c"]:
make_shc_from_asm("main-clean.asm", "main-clean.exe", "main-clean.bin") make_shc_from_asm(main_asm_clean_file, main_exe_clean_file, main_bin_clean_file)
if options["test_loader_shellcode"]: if options["test_loader_shellcode"]:
test_shellcode("mean-clean.bin") test_shellcode(main_bin_clean_file)
# SGN seems buggy atm # SGN seems buggy atm
#if options["obfuscate_shc_loader"]: #if options["obfuscate_shc_loader"]:
@@ -102,7 +102,7 @@ def main():
# return # return
if options["dataref_style"] == DataRefStyle.APPEND: if options["dataref_style"] == DataRefStyle.APPEND:
with open("main-clean.bin", 'rb') as input1: with open(main_bin_clean_file, 'rb') as input1:
data_stager = input1.read() data_stager = input1.read()
with open(options["payload"], 'rb') as input2: with open(options["payload"], 'rb') as input2:
@@ -111,26 +111,26 @@ def main():
print("--[ Integrate Stager: {} Payload: {} (sum: {})]".format( print("--[ Integrate Stager: {} Payload: {} (sum: {})]".format(
len(data_stager), len(data_payload), len(data_stager)+len(data_payload))) len(data_stager), len(data_payload), len(data_stager)+len(data_payload)))
with open("main-clean-append.bin", 'wb') as output: with open(main_bin_clean_append_file, 'wb') as output:
output.write(data_stager) output.write(data_stager)
output.write(data_payload) output.write(data_payload)
print("---[ Final shellcode available at: {} ]".format("main-clean-append.bin")) print("---[ Final shellcode available at: {} ]".format(main_bin_clean_append_file))
if options["verify"]: if options["verify"]:
print("--[ Verify final shellcode ]") print("--[ Verify final shellcode ]")
if not verify_shellcode("main-clean-append.bin"): if not verify_shellcode(main_bin_clean_append_file):
return return
if options["exec_final_shellcode"]: if options["exec_final_shellcode"]:
print("--[ Test Append shellcode ]") print("--[ Test Append shellcode ]")
test_shellcode("main-clean-append.bin") test_shellcode(main_bin_clean_append_file)
# copy it to out # copy it to out
shutil.copyfile("main-clean-append.bin", os.path.join("out/", "main-clean-append.bin")) shutil.copyfile(main_bin_clean_append_file, os.path.join("out/", os.path.basename(main_bin_clean_append_file)))
if options["inject_exe"]: if options["inject_exe"]:
inject_exe("main-clean-append.bin", options["inject_exe_in"], options["inject_exe_out"]) inject_exe(main_bin_clean_append_file, options["inject_exe_in"], options["inject_exe_out"])
if options["verify"]: if options["verify"]:
print("--[ Verify final exe ]") print("--[ Verify final exe ]")
verify_injected_exe(options["inject_exe_out"]) verify_injected_exe(options["inject_exe_out"])