Python script to automatically deobfuscate malware code
Switch branches/tags
Nothing to show
Clone or download
Latest commit 4c1a391 Jul 23, 2018
Type Name Latest commit message Commit time
Failed to load latest commit information. Update Jul 23, 2018 Add files via upload Jul 21, 2018


usage: [-h] [-m {replace,decompress,split,ascii}] file

Deobfuscates Emotet's powershell payload

positional arguments: file file with obfuscated code

optional arguments: -h, --help show this help message and exit -m {replace,decompress,split,ascii}, --method {replace,decompress,split,ascii} Specify obfuscation method

Written by Lasq /