Skip to content

halos/Nymaim-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
IDA_nymaim_func_unwrap.py
IDA_nymaim_func_unwrap.py
 
 
nymaim_hasher.py
nymaim_hasher.py
 
 
nymaim_rz_deobfuscate.py
nymaim_rz_deobfuscate.py
 
 
readme.md
readme.md
 
 

Repository files navigation

Nymaim tools

  • IDA_nymaim_func_unwrap.py: IDA script to deobfuscate Nymaim funcion call wrappers
  • nymaim_rz_deobfuscate.py: Rizin script to deobfuscate Nymaim funcion call wrappers and register-push obfuscation
  • nymaim_hasher.py: Script to generate a dictionary with Nymaim's hashed strings using Rizin emulation

TODO

  • Make nymaim_hasher.py generic to parse any sample. Currently, it only works with sample a7370aa2833a7b4178b6494941aa5a9b31fef6b18c7cfa025ec2100d89132bc0

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages