Skip to content

ASkyeye/Cronos

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Cronos

c assembly windows

This project was co-authored by

idov31 YXEL

Description

PoC for a new sleep obfuscation technique (based on Ekko) leveraging waitable timers to RC4 encrypt the current process and change the permissions from RW to RX to evade memory scanners.

A more detailed explanation will be available in the blog post (COMING SOON).

POC

Usage

To use it, all you have to do is to include Cronos in your project and use it like so:

#include "Cronos.h"

int main() {
    int timesToExecute = 1337;
    int seconds = 10;

    for (int i = 0; i < timesToExecute; i++) {
        CronosSleep(seconds);

        // YOUR CODE HERE!
    }
}

Setup

To compile it you will need:

After you have all of the above, navigate to the project's directory and build it with the makefile, the EXE will be in the bin directory.

Contributors

Thanks a lot to those people that contributed to this project:

Resources

About

PoC for a new sleep obfuscation technique leveraging waitable timers to evade memory scanners.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • C 83.8%
  • Assembly 12.8%
  • Makefile 3.4%