36
}
return(n);
}
Reverse-Engineered Source Code
After Control Flow Obfuscation
By Dotfuscator Professional Edition
public virtual int _a(Object A_0) {
int local0;
int local1;
local0 = this.a – (c) A_0.a;
if (local0 != 0) goto i0;
goto i1;
while (true) {
return local1;
i0: local1 = local0;
}
i1: local0 = System.String.Compare(this.b, (c) A_0.b);
goto i0;
}
This tool has additional functionality such as String Encryption and Pruning. If
you interested in more information about this (and more information about other
tools described in this book), please refer to the vendor's documentation and web
site.
At the bottom line, the Dotfuscator and other similar “protectors/obfuscators”
might be a very powerful metamorphic engine if used by malware writers.
2.12.4 The language transformers.
Now, it is time for Java "metamorphic engine”.
The “Excelsior JET” program [25] can transform Java application to binary
executables for Microsoft Windows and Linux on Intel x86 platform. The
“Excelsior JET” compiles your Java class files into native Intel x86 instructions
and can do transformation of Java applications into conventional Windows EXE
and DLLs. In addition, the “Excelsior JET” can reorder code and data segments
of the resulting executables for faster startup and memory use reduction; turn
your Java applications into Windows services using the supplied API and tools;
bind resources (images, audio, etc.) to the resulting executables and many more
features as stated on the vendor's web site.
There are many more "language transformers" available for various languages
like:
 |
 |
 |