13-05-2021

Python File To Executable And Dmg

Python

Nov 10, 2014  HOW TO RUN WINDOWS APPLICATIONS ON MAC (Convert.exe to.dmg) Girl With A Mac. Short tutorial on how to convert.exe (windows) files to.dmg (Mac) files. How to Convert any Python File.

Author: In Ming Loh (inming.loh@countercept.com - @tantaryu)
Company: Countercept (@countercept)
Website: https://www.countercept.com

Introduction

Make Python Script Executable

A script that helps researcher to unpack and decompile executable written in python. However, right now this only supports executable created with py2exe and pyinstaller.

This script glues together several tools available to the community. Hopefully, this can help people in their daily job. Several YARA rules are available to determine if the executable is written in python (This script also confirms if the executable is created with either py2exe or pyinstaller).

Dmg:: ems (Africa) Sandton, South Africa 31 Events dmg events (Saudi Arabia) Jeddah, Saudi Arabia 7 Events Interested Geographies SouthEast Asia, North America, Western Europe, Middle East, Southern Africa, Eastern Europe, East Asia, UK, India Subcontinent, Northern Europe, Northern Africa. Dmg events is a leading organiser of face-to-face events and a publisher of trade magazines. Dmg events organises over 80 events across 25 countries diverse industries including Construction, Energy, Coatings, Transport, Hospitality & Design. From the global gas market to the oil sands of Alberta, dmg:: events provides conferences that provoke and educate, and exhibitions that showcase the best products and services that the industry has to offer. Our events are organised from offices in London, United Kingdom, Dubai, UAE. Dmg events global energy london. Mar 11, 2020  The only event in the middle east region that connects professionals from the facilities management, building maintenance, hygiene, health and safety, energy.

Python File To Executable And Dmg Free

Requirements

  • Python 2.7 or later.
  • Install all the dependency needed:
    pip2 install --user -r requirements.txt
    or if you fancy to have your dependency installed with root permission
    sudo pip2 install -r requirements.txt
File

Getting Started

  • python python_exe_unpack.py -i [malware.exe]

    • pyinstaller
      • A folder will be created with the original filename concatenated with '_extracted'. For example: 'malware.exe_extracted'.
      • The main python file that contains the logic will usually be the file without any extension (In the folder that concatenated with '_extracted'). In the following example, 'hello' is the one that contains the main python logic:
        -rw-rw-r-- 1 testuser testuser 70K Nov 14 13:08 bz2.pyd
        -rw-rw-r-- 1 testuser testuser 993K Nov 14 13:08 _hashlib.pyd
        -rw-rw-r-- 1 testuser testuser 111 Nov 14 13:08 hello
        -rw-rw-r-- 1 testuser testuser 1009 Nov 14 13:08 hello.exe.manifest
        -rw-rw-r-- 1 testuser testuser 1.1K Nov 14 13:08 Microsoft.VC90.CRT.manifest
        -rw-rw-r-- 1 testuser testuser 220K Nov 14 13:08 msvcm90.dll
        -rw-rw-r-- 1 testuser testuser 557K Nov 14 13:08 msvcp90.dll
        -rw-rw-r-- 1 testuser testuser 638K Nov 14 13:08 msvcr90.dll
        -rw-rw-r-- 1 testuser testuser 628K Nov 14 13:08 out00-PYZ.pyz
        drwxrwxr-x 2 testuser testuser 12K Nov 14 13:08 out00-PYZ.pyz_extracted
        -rw-rw-r-- 1 testuser testuser 5.2K Nov 14 13:08 pyiboot01_bootstrap
        -rw-rw-r-- 1 testuser testuser 2.5K Nov 14 13:08 pyimod01_os_path
        -rw-rw-r-- 1 testuser testuser 12K Nov 14 13:08 pyimod02_archive
        -rw-rw-r-- 1 testuser testuser 22K Nov 14 13:08 pyimod03_importers
        -rw-rw-r-- 1 testuser testuser 0 Nov 14 13:08 pyi-windows-manifest-filename hello.exe.manifest
        -rw-rw-r-- 1 testuser testuser 2.6M Nov 14 13:08 python27.dll
        -rw-rw-r-- 1 testuser testuser 10K Nov 14 13:08 select.pyd
        -rw-rw-r-- 1 testuser testuser 234 Nov 14 13:08 struct
        -rw-rw-r-- 1 testuser testuser 671K Nov 14 13:08 unicodedata.pyd
      • pyinstaller has an option that can encrypt python bytecode. This script will try to decrypt it and decompile the decrypted code.
    • py2exe
      • The result of unpacking and decompiling will be located in folder 'unpacked' or the location you specify.
      • If error like this shows 'Error in unpacking the exe. Probably due to version incompability (exe created using python 2 and run this script with python 3)', try setting your python to a different version than the one you are using. Eg: 'alias python=python2' or 'alias python=python3'

  • python python_exe_unpack.py -p [pyc file]

    Dark souls jagged ghost blade. The Jagged Ghost Blade has the rare curse effect, making it a valuable weapon when going through New Londo. Although it has an unremarkable Strength scaling, it's a viable weapon early in the game for its high base damage. It quickly loses its luster as players level up more and are better able to take advantage of good stat scaling on other weapons. Jagged Ghost Blade is a Weapon in Dark Souls and Dark Souls Remastered. Jagged blade wielded by New Londo ghosts. Violent thrust attack.' 'One of the cursed weapons. Inflicts damage to ghosts.' How to Get / Where to Find the Jagged Ghost Blade. Dropped by dual blade ghost (1% chance - New Londo Ruins) Notes: Give to Frampt to receive 100 souls. If you're allowing buffs, a 40/40 quality weapon with a 60 faith darkmoon blade or lightning blade buff and sacred oath, whether from Sunlight Straight Sword or otherwise. Since that's a large amount of stats, I'd say a 40 Strength or 40 Dexterity with 60 faith buff and a Heavy or Sharp weapon works just as well. Ghost Blade - Dark Souls. Ghost Blade is a Weapon in Dark Souls and Dark Souls Remastered. The ghosts of New Londo clutch this wickedly sharp dagger with their bony hands and make mincemeat of the living.' 'One of the cursed weapons which can inflict damage upon ghosts.' Much of the weapons found in the DLCs are just undeniably better than in the base game, the Frayed Blade is a prime example. Even with removing the Dark damage it still has more AR. And that's not even counting the length and the weapon arts: a ranged attack AND an unparriable(I think) barrage of slashes that should've gone to the Berserker Blade(with the name and history, it makes much more sense.

    • In the above example, sometimes the python file that contains the main logic will not be in the format that uncompyle6 accept (Missing python magic numbers). The above command will prepend magic numbers and decompile it (If magic number is already preprended it will not add it and just proceed with decompiling).

Credits

  • Extreme Coders for their pyinstxtractor.py script to help unpack pyinstaller executable.
  • Extreme Coders for their instruction on how to decrypt encrypted python byte code: https://0xec.blogspot.sg/2017/02/extracting-encrypted-pyinstaller.html
  • unpy2exe
  • uncompyle6