Skip to content

Python 3 script unpacking statically x86 CryptOne packer. CryptOne versions: 2021/04 until ~now (2022/01)

License

Notifications You must be signed in to change notification settings

Tera0017/de-CryptOne-v2

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

de-CryptOne v.2

Is a python 3 script which unpacks statically x86 samples packed with CryptOne packer versions from ~2021/04 until now (2022/01).

Usage

~$ python3 decrypt1v2.py sample.bin

 

Example

 

Requirements (Latest tested)

  • Yara, Version 3.9.0
  • yara-python, Version 4.1.0
  • pefile, Version 2021.5.24

 

Support

In case some files are not working, please make sure it is packed with CryptOne, if yes please provide me the hash in a DM (@Tera0017).

Also, if you managed to obtain a x64 sample please send me over to add support.

Enjoy while unpacking ;)

About

Python 3 script unpacking statically x86 CryptOne packer. CryptOne versions: 2021/04 until ~now (2022/01)

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages