Skip to content

KDot227/SomalifuscatorV2

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

414 Commits

.github

.github

 
 

.vscode

.vscode

 
 

assets

assets

 
 

src

src

 
 

tests

tests

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

requirements.txt

requirements.txt

 
 

setup.bat

setup.bat

 
 

test_all.py

test_all.py

 
 

Repository files navigation

SomalifuscatorV2 (Batch is cool)





READ

If you are AT&T or another major coporation please reach out to me I would like a job im poor.

How To Use

Download python (any version past 3.10)
Clone repo or download as zip (Then extract repo from zip (Yes people don't do that))
Run setup.bat
Have fun obfuscating!

IMPORTANT
When running somalifuscator for the first time you will have a .json file named settings. as you can guess these are your settings. If you are having any issues with scripts I recommend turning on debug mode (which will lower obfuscation levels) and trying to figure out the issue.

If you have any issues please make a issue on github and I'll try to get to it as soon as possible.

Detections 😈

Runtime test via scanner.to results

Scantime test via avcheck.net results

Scantime test via Virustotal.com results

So far it's esentially fud when using the fud mode and only detected by 2 av when using the normal mode. Fud mode slightly brings down protection but I intend to fix that within the next update.

Another interesting this is how Virus total currently thinks that the file is Javascript (It obviousily isn't)

But what if someone tries to deobfuscate 🤓

Have fun and goodluck. If you end up making a full deobfuscator plz show me cause that's impressive

Features

Anti VM Literially checks if the current computer is a VM and if it is it exits
Anti Echo Looks for any variation of the word ECHO. If it's found it exits. Also some of the other settings make it very very hard to echo commands and understand output
Anti Byte Change Checks to make sure the first 3 bytes are UTF-16 BOM
Environment variable obfuscation Uses built in Windows Environment Variables to help obfuscate code
Built in var support I went through the dedication to list out nearly every built in var + make a regex that can find them all for multiple instances.
Errorlevel continuation Using errorlevel won't break the code since using goto and labels dont establish an error level unless the label can't be found (which it always should be able to be found)
Bitwise Opperations (Xor, Not) XOR and NOT are both being used (I wish I could do MBA but batch sucks)
Hot asf ngl from what I've seen, it's the best in the world and it'll probably stay that way

If you like this repo please give it a star ⭐

Credits

KDot227 (literally everything)
Baum (Inspiration for the idea of the project)

Also @ John Hammond cause he's cool and I wanna see him deobfuscate this

About

Most advanced and poorly coded windows batch obfuscator ever made (aka the best)

sped.lol

Topics

powershell batch obfuscator bat fud obfuscators batch-obfuscation batch-obfuscator kdot batch-fud obfuscator-batch bat-obfuscator bat-obf undetected-obfuscation

Resources

Readme

License

Apache-2.0 license
Activity

Stars

227 stars

Watchers

4 watching

Forks

32 forks
Report repository

Releases 1

AutoBuild Latest
Apr 26, 2024

Sponsor this project

Packages

No packages published

Languages