BitMaster/upx-recovery-tool
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
29 Commits 5 Branches 0 Tags
2fa139e95fbcdf4ddb346e77508cb07b167d6a17
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Javier Rascon 2fa139e95f Added option fo assume input is UPX
2022-08-29 13:00:38 +02:00
.gitignore
Added .gitignore
2022-08-12 11:46:48 +02:00
LICENSE
Initial commit
2022-06-21 14:30:57 +02:00
README.md
Switch from elftools to lief
2022-08-29 12:12:17 +02:00
requirements.txt
Switch from elftools to lief
2022-08-29 12:12:17 +02:00
upx-recovery-tool.py
Added option fo assume input is UPX
2022-08-29 13:00:38 +02:00

README.md

upx-recovery-tool

upx-recovery-tool is a script that aims to repair the most common modifications done by malware creators to ELF UPX-compressed files done to prevent their automatic unpacking with a standard UPX tool.

Implemented UPX fixes / Features

This tool detects and repairs the following common modifications:

  • l_magic field of the l_info structure (UPX! magic value)
  • p_filesize and p_blocksize fields of the p_info structure
  • Overlay bytes

Dependencies

The script requires the following libraries listed on requirements.txt:

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme BSD-3-Clause 87 KiB
Languages
Python 74.1%
YARA 25.9%