[EXE2SHELLCODE] Converting your exe into shellcode

[Barmaleus]

Converting your exe to shell code(.NET supported).

Сконверчу ваш exe payload или другой(спрашивайте) в шелкод.

Похожую тему не нашел поэтому решил сделать. Прайс повыситься.

Не нужны будут не какие peloaderы и прочие шмонавки.

No need peloader and other like him.

Price 10$ - output - shellcode what u can use in your deals.

 

[pandora789]

stop trying to sell public shit

 

[Barmaleus]

stop trying to sell public shit

why public guy, no static detections, show me public without static detections, donut have static detections and other like him by more avs. And more yara rules and cfg to it, show me example of public tool what give u shellcode from an exe.

 

[Barmaleus]

Added compression +- 40% of exe size will be compressed. Added ETW patch.

 

[Peresvet]

whats the difference ? https://github.com/TheWover/donut

 

[Barmaleus]

whats the difference ? https://github.com/TheWover/donut

No static detect, other loader stub in c, removed some what not needed. Other encryption algorithm, no yara rule to cfg and other.

 

[whyban]

are you selling source ?

 

[Barmaleus]

are you selling source ?

No guy I just fucked 4days for sell source? Really? Xd no. More problems be with this loader in time when I started work, I just not sleepd.

 

[Peresvet]

No static detect, other loader stub in c, removed some what not needed. Other encryption algorithm, no yara rule to cfg and other.

so you just moved some bytes in shellcode?

 

[Barmaleus]

so you just moved some bytes in shellcode?

I said I just used donut for example. I not use donut shell code loader and init like in it, now x86 only support, I think will do x64. Size of loader +- 8-12kb. Encryption xor + compression.

I think to bypass donut yara rule u need just only rewrite loader.c and some in it, add junk code.

This thread for laugh.

 

[madness]

you can turn exe from rats like Quaster into shellcode ?

 

[Barmaleus]

you can turn exe from rats like Quaster into shellcode ?

yes

 

[Guest]

..

https://github.com/hasherezade/pe_to_shellcode

 

[Barmaleus]

..

https://github.com/hasherezade/pe_to_shellcode

its isn't shellcode guy its just need loader to load it, this programm just change pe header...
U can't use it by virtual alloc or .ps shellcode invoker.

 

[Barmaleus]

..

https://github.com/hasherezade/pe_to_shellcode

see no code obfuscation, no compression. peloader be better then this fucking tool.

 

[Barmaleus]

its isn't shellcode guy its just need loader to load it, this programm just change pe header...
U can't use it by virtual alloc or .ps shellcode invoker.

wine and windows automatically detect this as dos exe
with this tool u still have runtime and static detection or sandbox detection I think when decrypt your payload shellcode