Python script to automatically deobfuscate malware code
Switch branches/tags
Nothing to show
Clone or download
Latest commit 4c1a391 Jul 23, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
README.md Update README.md Jul 23, 2018
deobfuscate.py Add files via upload Jul 21, 2018

README.md

deobfuscate

usage: deobfuscate.py [-h] [-m {replace,decompress,split,ascii}] file

Deobfuscates Emotet's powershell payload

positional arguments: file file with obfuscated code

optional arguments: -h, --help show this help message and exit -m {replace,decompress,split,ascii}, --method {replace,decompress,split,ascii} Specify obfuscation method

Written by Lasq / malfind.com