admin/SuperMega
1
0
Fork 0
mirror of https://github.com/dobin/SuperMega synced 2026-06-03 01:27:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

refactor: make inject mode configurable

Browse Source
This commit is contained in:
Dobin
2024-02-08 10:55:14 +00:00
parent 75c329c152
commit 865cfb5247
3 changed files with 14 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
helper.py
+1
View File
@@ -32,6 +32,7 @@ def clean_files():
os.path.join(build_dir, "main.asm"), os.path.join(build_dir, "main.asm"),
os.path.join(build_dir, "main.bin"), os.path.join(build_dir, "main.bin"),
os.path.join(build_dir, "main.c"), os.path.join(build_dir, "main.c"),
os.path.join(build_dir, "peb_lookup.h"),
#os.path.join(build_dir, "main.exe"), #os.path.join(build_dir, "main.exe"),
verify_filename, verify_filename,
phases/shctoexe.py
+2 -2
View File
@@ -2,7 +2,7 @@ from helper import *
import shutil import shutil
def inject_exe(shc_file, exe_in, exe_out): def inject_exe(shc_file, exe_in, exe_out, mode):
print("--[ Injecting: {} into: {} -> {} ]".format( print("--[ Injecting: {} into: {} -> {} ]".format(
shc_file, exe_in, exe_out shc_file, exe_in, exe_out
)) ))
@@ -12,7 +12,7 @@ def inject_exe(shc_file, exe_in, exe_out):
subprocess.run([ subprocess.run([
"python3.exe", "python3.exe",
"redbackdoorer.py", "redbackdoorer.py",
"1,1", mode,
shc_file, shc_file,
exe_out exe_out
], check=True, stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL) ], check=True, stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL)
supermega.py
+11 -2
View File
@@ -35,6 +35,12 @@ options_default = {
"copy_style": CopyStyle.SIMPLE, "copy_style": CopyStyle.SIMPLE,
"dataref_style": DataRefStyle.APPEND, "dataref_style": DataRefStyle.APPEND,
# injecting into exe
"inject_exe": True,
"inject_mode": "1,1",
"inject_exe_in": "exes/procexp64.exe",
"inject_exe_out": "out/procexp64-a.exe",
"try_start_loader_shellcode": False, # without payload (Debugging) "try_start_loader_shellcode": False, # without payload (Debugging)
"try_start_final_shellcode": False, # with payload (should work) "try_start_final_shellcode": False, # with payload (should work)
"try_start_final_infected_exe": True, # with payload (should work) "try_start_final_infected_exe": True, # with payload (should work)
@@ -75,6 +81,7 @@ options_verify = {
# injecting into exe # injecting into exe
"inject_exe": True, "inject_exe": True,
"inject_mode": "1,1",
"inject_exe_in": "exes/procexp64.exe", "inject_exe_in": "exes/procexp64.exe",
"inject_exe_out": "out/procexp64-a.exe", "inject_exe_out": "out/procexp64-a.exe",
@@ -84,13 +91,15 @@ options_verify = {
# cleanup # cleanup
"cleanup_files_on_start": True, "cleanup_files_on_start": True,
"cleanup_files_on_exit": False, # all is just in out/ "cleanup_files_on_exit": True, # all is just in out/
# doesnt work # doesnt work
"obfuscate_shc_loader": False, "obfuscate_shc_loader": False,
"test_obfuscated_shc": False, "test_obfuscated_shc": False,
} }
options = None options = None
main_c_file = os.path.join(build_dir, "main.c") main_c_file = os.path.join(build_dir, "main.c")
@@ -201,7 +210,7 @@ def main():
if options["inject_exe"]: if options["inject_exe"]:
debug_data["original_exe"] = file_readall_binary(options["inject_exe_in"]) debug_data["original_exe"] = file_readall_binary(options["inject_exe_in"])
inject_exe(main_shc_file, options["inject_exe_in"], options["inject_exe_out"]) inject_exe(main_shc_file, options["inject_exe_in"], options["inject_exe_out"], options["inject_mode"])
if options["verify"]: if options["verify"]:
print("--[ Verify final exe ]") print("--[ Verify final exe ]")
if verify_injected_exe(options["inject_exe_out"]): if verify_injected_exe(options["inject_exe_out"]):