题目描述:菜鸡拿到了一个被加壳的二进制文件
拿去查壳,发现有upx壳。
┌──(v5le0n9㉿kali)-[~/Desktop]
└─$ upx -d simpleunpack
Ultimate Packer for eXecutables
Copyright (C) 1996 - 2020
UPX 3.96 Markus Oberhumer, Laszlo Molnar & John Reiser Jan 23rd 2020
File size Ratio Format Name
-------------------- ------ ----------- -----------
912808 <- 352624 38.63% linux/amd64 simpleunpack
Unpacked 1 file.
┌──(v5le0n9㉿kali)-[~/Desktop]
└─$ file simpleunpack
simpleunpack: ELF 64-bit LSB executable, x86-64, version 1 (GNU/Linux), statically linked, for GNU/Linux 2.6.32, BuildID[sha1]=d2fb1adb997339317fc68e2cf960b9d38627423c, not stripped
64位二进制文件,拿去IDA找main函数看看,直接在汇编代码里找到了flag。
flag{Upx_1s_n0t_a_d3liv3r_c0mp4ny}