Deobfuscation issues with obscure obfuscator (can't find any info)

Question

Deobfuscation issues with obscure obfuscator (can't find any info)

twilight-sparkle-irl opened this issue 2 years ago · 1 comments

twilight-sparkle-irl commented 2 years ago

Hi, I'm trying to deobfuscate some malware that appears to be using a custom obfuscator. I'm unsure if you take requests, but here's the code I found, referencing "unityobf."

(This is a malware sample, running in an electron environment! Please be careful, only hold with tongs.)

index.js

Answer 1 · 2023-02-02T22:05:02.000Z

the obfuscator is https://github.com/MichaelXF/js-confuser and there are some deobfuscator transformers in this repo for it but they probably wont work anymore