API tools faq
paste
Advertisement
Madmouse

the polymorphic engine skeleton so far

Madmouse
Jun 27th, 2016
143
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
ASM (NASM) 0.46 KB | None | 0 0
raw download clone embed print report
  1. engine:
  2. mov rcx, 4
  3.  
  4. call prng_seed
  5. eloop:
  6. ; copy address in lookup table iterator
  7. mov r9, qword [r8]
  8.  
  9. ; flip a coin
  10. call prng
  11. and rax, 2
  12.  
  13. ; modify operation
  14. jnz b_jmp15
  15.  
  16. shr r10, 32
  17. mov dword [r9], r10d
  18. jmp end_jmp15
  19. b_jmp15:
  20. mov dword [r9], r10d
  21. end_jmp15:
  22.  
  23. ; flip a coin
  24. call prng
  25. and rax, 2
  26.  
  27. ; shift in nops if zero
  28. jnz no_shift
  29. shl dword [r9], 16
  30. or dword [r9], 0x9090
  31. no_shift:
  32.  
  33. ; iterate to next address
  34. add r8, 8
  35. loop eloop
  36.  
  37. ret
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!