-
-
Save 7shi/1e54400dcc3d41627015 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var fs = require("fs"); | |
| function convLE(len, v) { | |
| var ret = ""; | |
| for (var i = 0; i < len; ++i) { | |
| ret += String.fromCharCode(v & 0xff); | |
| v >>= 8; | |
| } | |
| return ret; | |
| } | |
| function convLEs(len, vs) { | |
| var ret = ""; | |
| for (var i = 0; i < vs.length; ++i) { | |
| ret += convLE(len, vs[i]); | |
| } | |
| return ret; | |
| } | |
| function zero(len) { | |
| var ret = ""; | |
| for (var i = 0; i < len; ++i) { | |
| ret += "\0"; | |
| } | |
| return ret; | |
| } | |
| function align(bytes, a) { | |
| var m = bytes.length % a; | |
| if (m == 0) return ""; | |
| return zero(a - m); | |
| } | |
| var idata = ""; | |
| // idt | |
| idata += convLEs(4, [0x2028, 0, 0, 0x2042, 0x2030]); | |
| idata += zero(5 * 4); | |
| // ilt | |
| idata += convLEs(4, [0x2038, 0]); | |
| // iat | |
| var putchar = 0x402000 + idata.length; | |
| idata += convLEs(4, [0x2038, 0]); | |
| // putchar | |
| idata += convLE(2, 0); | |
| idata += "putchar\0"; | |
| // DLL name | |
| idata += "msvcrt.dll\0"; | |
| var text = ""; | |
| text += "\x6a\x41"; // push 0x41 | |
| text += "\xff\x15"; // call [putchar] | |
| text += convLE(4, putchar); | |
| text += "\x58"; // pop eax | |
| text += "\xc3"; // ret | |
| var codes = ""; | |
| // DOS header | |
| codes += "MZ"; | |
| codes += convLEs(2, [0x90, 3, 0, 4, 0, 0xffff, 0, 0xb8, 0, 0, 0x40]); | |
| // PE offset | |
| codes += zero(0x3c - codes.length); | |
| codes += convLE(4, 0x80); | |
| // DOS stub | |
| codes += "\x0e"; // push cs | |
| codes += "\x1f"; // pop ds | |
| codes += "\xba\x0e\x00"; // mov dx, 0xe | |
| codes += "\xb4\x09"; // mov ah, 9 | |
| codes += "\xcd\x21"; // int 0x21 | |
| codes += "\xb8\x01\x4c"; // mov ax, 0x4c01 | |
| codes += "\xcd\x21"; // int 0x21 | |
| codes += "This program cannot be run in DOS mode.\r\r\n$"; | |
| codes += align(codes, 0x80); | |
| // nth.FileHeader | |
| codes += "PE\0\0"; | |
| codes += convLEs(2, [0x14c, 2]); | |
| codes += convLEs(4, [0x4da65f9b, 0, 0]); | |
| codes += convLEs(2, [0xe0, 0x102]); | |
| // nth.OptionalHeader | |
| codes += convLE (2, 0x10b); | |
| codes += convLEs(1, [10, 0]); | |
| codes += convLEs(4, [0x200, 0, 0, 0x1000, 0x1000, 0x2000, | |
| 0x400000, 0x1000, 0x200]); | |
| codes += convLEs(2, [5, 1, 0, 0, 5, 1]); | |
| codes += convLEs(4, [0, 0x3000, 0x200, 0]); | |
| codes += convLEs(2, [3, 0]); | |
| codes += convLEs(4, [0x100000, 0x1000, 0x100000, 0x1000, 0, 16]); | |
| codes += convLEs(4, [0, 0, 0x2000, idata.length]); | |
| codes += zero(14 * 8); | |
| // sects .text | |
| codes += ".text"; | |
| codes += align(codes, 8); | |
| codes += convLEs(4, [text.length, 0x1000, 0x200, 0x200, 0, 0]); | |
| codes += convLEs(2, [0, 0]); | |
| codes += convLE (4, 0x60000020); | |
| // sects .idata | |
| codes += ".idata"; | |
| codes += align(codes, 8); | |
| codes += convLEs(4, [idata.length, 0x2000, 0x200, 0x400, 0, 0]); | |
| codes += convLEs(2, [0, 0]); | |
| codes += convLE (4, 0xc0300040); | |
| codes += align(codes, 0x200); | |
| // .text | |
| codes += text; | |
| codes += align(codes, 0x200); | |
| // .idata | |
| codes += idata; | |
| codes += align(codes, 0x200); | |
| fs.writeFileSync("a.exe", codes, "binary"); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment