Emulating Shellcodes - Chapter 1

 There are many basic shellcodes that can be emulated from the beginning from the end providing IOC like where is connecting and so on. But what can we do when the emulation get stuck at some point?

The console has many tools to interact with the emulator like it was a debugger but the shellcode really is not being executed so is safer than a debugger.

target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin -vv 

In some shellcodes the emulator emulates millions of instructions without problem, but in this case at instruction number 176 there is a crash, the [esp + 30h] contain an unexpected 0xffffffff.

There are two ways to trace the memory, tracing all memory operations with -m or inspecting specific place with -i which allow to use registers to express the memory location:

target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin  -i 'dword ptr [esp + 0x30]'

Now we know that in position 174 the value 0xffffffff is set.

But we have more control if we set the console at first instruction with -c 1 and set a memory breakpoint on write.

This "dec" instruction changes the zero for the 0xffffffff, and the instruction 90 is what actually is changing the stack value.

Lets trace the eax register to see if its a kind of counter or what is doing.

target/release/scemu -f ~/Downloads/shellcodes_matched/drv_shellcode.bin  --reg eax 

Eax is not a counter, is getting hardcoded values which is probably an API name:

In this case this shellcode depend on previous states and crash also in the debugger because of  register values. this is just an example of how to operate in cases where is not fully emulated.

In next chapter will see how to unpack and dump to disk using the emulator.

More information

• Hack Tools For Ubuntu
• New Hacker Tools
• Hackers Toolbox
• Hacking Tools For Games
• Hacking Tools For Pc
• Easy Hack Tools
• Hacking Tools For Windows Free Download
• Nsa Hack Tools Download
• Hack Tools For Pc
• Hacker Tools Apk
• Nsa Hacker Tools
• Hacker Tools Free
• Hacking Tools For Pc
• Nsa Hack Tools Download
• Pentest Tools Open Source
• Pentest Tools List
• Hack App
• Hack Tools Pc
• Install Pentest Tools Ubuntu
• Physical Pentest Tools
• Hacking Tools Windows
• Pentest Tools Port Scanner
• Pentest Tools Github
• Hack App
• Hacker Tools Apk
• Pentest Tools
• Pentest Tools For Ubuntu
• Hacker Tools For Mac
• What Are Hacking Tools
• Bluetooth Hacking Tools Kali
• Pentest Tools Android
• Github Hacking Tools
• Hacker Tools For Mac
• Top Pentest Tools
• Hack Tools Online
• Pentest Box Tools Download
• Pentest Tools Android
• What Are Hacking Tools
• Hack App
• Underground Hacker Sites
• Hacker Security Tools
• Pentest Recon Tools
• Hacker Tools 2019
• Hacker Tools Free Download
• Hackrf Tools
• Easy Hack Tools
• Pentest Tools Windows
• Pentest Recon Tools
• Pentest Tools Url Fuzzer
• What Are Hacking Tools
• How To Make Hacking Tools
• New Hack Tools
• Physical Pentest Tools
• Pentest Tools Download
• How To Make Hacking Tools
• Hacking Tools Online
• Pentest Tools Tcp Port Scanner
• Hacking Tools Name
• Tools 4 Hack
• Hack Tools Download
• Hacker Tools Hardware
• Hacker Tools 2020
• Pentest Tools Apk
• Hacking Tools Kit
• Hack Tools
• Best Hacking Tools 2020
• Hacking Tools Download
• Pentest Tools Find Subdomains
• Hack Tools
• Hacking Tools For Kali Linux
• What Is Hacking Tools
• Pentest Tools Online
• What Are Hacking Tools
• Pentest Box Tools Download
• Free Pentest Tools For Windows
• Hacker Tools Apk Download
• Pentest Tools For Android
• Hack Tools For Ubuntu
• Hacker Tools Apk
• Pentest Reporting Tools
• Pentest Tools Android
• Hacker Tools For Ios
• Pentest Tools Nmap
• Black Hat Hacker Tools
• Hacker Hardware Tools
• Hacking Tools Windows 10
• Pentest Tools Windows
• Hack Tools Download
• Pentest Tools Alternative
• Pentest Tools Url Fuzzer
• How To Make Hacking Tools
• Pentest Tools Android
• Beginner Hacker Tools
• Kik Hack Tools
• Pentest Reporting Tools
• Pentest Tools Android
• Hacking Tools For Windows Free Download
• Hacker Tools Software
• Hacking Tools For Windows 7
• Hacking Tools For Kali Linux
• Tools For Hacker
• Tools For Hacker
• Physical Pentest Tools
• Hacking Tools For Pc
• Hacking Tools Download
• Easy Hack Tools
• Pentest Tools Android
• Hacker Tools Github
• Hacking Tools For Games
• Hacking Tools For Kali Linux
• How To Hack
• Hack Tools Online
• Hacks And Tools
• Pentest Tools Windows
• Hacking Tools Software
• Pentest Reporting Tools
• Hacker Tools 2020
• Hacker Tools Hardware
• Hack Tool Apk No Root
• Hacking Tools For Kali Linux
• Hacker Tools Mac
• Hack Tools For Games
• Hacker Tools 2020
• Underground Hacker Sites
• Pentest Tools Github
• Hak5 Tools
• Top Pentest Tools
• Ethical Hacker Tools
• Hacker Tools Software
• Hacking Tools 2020
• Hack Tools For Pc
• Hacker Tools For Ios
• Kik Hack Tools
• Hack And Tools
• Hack Tools Mac
• Termux Hacking Tools 2019
• Hacker Tools Linux
• Hack Website Online Tool
• Pentest Reporting Tools
• Pentest Tools Windows
• How To Hack
• Hacking Tools Software
• Hacking Tools Online
• Hacking Tools Kit
• Nsa Hack Tools Download
• Pentest Tools
• Pentest Tools Android
• Hacker Techniques Tools And Incident Handling
• Hacker
• Hacking Tools
• How To Make Hacking Tools
• Hacking Tools For Beginners
• Ethical Hacker Tools
• Hackers Toolbox
• Hack Tools
• Hacker Tools For Ios
• Hacker Tool Kit
• Pentest Tools Linux
• Hack App
• Hacking Tools For Pc
• Nsa Hacker Tools