1
00:00:00,760 --> 00:00:09,940
Come back in the previous lessons we have or the reverse engineer could create Rodian and the Chalco.

2
00:00:10,540 --> 00:00:16,090
So in this video, you are going to test the Chalco using Shakara run entity, too.

3
00:00:16,690 --> 00:00:21,710
So going down these Projecto Shakara Cohran to and putting in your mouth.

4
00:00:21,740 --> 00:00:29,620
Therefore, the after unzipping inside it, you find the dumby, which is the shark would wish we had

5
00:00:29,980 --> 00:00:33,400
extract it from the malware, the Trojan.

6
00:00:34,300 --> 00:00:36,370
And then you have a compound backstory.

7
00:00:37,090 --> 00:00:38,830
And also shellcode run it.

8
00:00:40,390 --> 00:00:48,730
We are going to use Sherko run it to test the chocolate if we had done this Shakuri study to be.

9
00:00:49,180 --> 00:00:57,920
So we need to complete the 32 bit settings, open the that script with that plus plus.

10
00:00:58,450 --> 00:01:02,290
And you will see that the setting has been set to machine six.

11
00:01:04,870 --> 00:01:14,260
Now we can open this dumby youth has agreed to do a Strecker proper for metal sherkat that can be used

12
00:01:14,650 --> 00:01:16,720
in site your Chalco runner.

13
00:01:17,950 --> 00:01:25,990
So go to HD and fire HD dumping bin into your HD hex editor.

14
00:01:27,250 --> 00:01:29,230
Confirm that is the proposal quote.

15
00:01:32,690 --> 00:01:34,970
Now we can export this in a proper format.

16
00:01:35,750 --> 00:01:38,630
So just select the spots that you want to export.

17
00:01:40,860 --> 00:01:42,960
Everything and then click on file.

18
00:01:44,110 --> 00:01:47,290
And then click on a spot, see?

19
00:01:49,510 --> 00:01:56,110
So severe in the show, around three to four there a difference, her name is dumb, see King on Safe.

20
00:01:57,810 --> 00:02:03,360
Now you can close your HD and check that day's a new far down the sea.

21
00:02:04,570 --> 00:02:05,780
So now we'll open this.

22
00:02:06,010 --> 00:02:07,540
Right click and open this.

23
00:02:09,030 --> 00:02:16,530
And that is your sherkat properly formatted, so this selecting verrity.

24
00:02:19,380 --> 00:02:25,920
And then open your show, Corunna, Sasko, Reichling and Open, you've got that plus plus.

25
00:02:27,170 --> 00:02:28,820
And then there is a template here.

26
00:02:30,010 --> 00:02:34,520
This base down here you are, new Chalco.

27
00:02:35,910 --> 00:02:40,210
Now we are going to rename this Raw Data to become better.

28
00:02:40,920 --> 00:02:43,860
So just copy the name from the template up here.

29
00:02:45,450 --> 00:02:46,380
Come down here.

30
00:02:47,650 --> 00:02:51,240
Delete his name and then paste a new name here.

31
00:02:53,360 --> 00:02:56,600
Now you can delete the template every.

32
00:02:59,870 --> 00:03:08,090
Check to see that this is one hundred eighty seven bytes and make sure that you also change this to

33
00:03:08,090 --> 00:03:09,560
match the bite here.

34
00:03:09,710 --> 00:03:11,810
So in this case, since to enacting the change.

35
00:03:12,920 --> 00:03:17,000
Now, remember to save it, and now we can, Bill.

36
00:03:18,040 --> 00:03:20,170
This CBP into an AC.

37
00:03:21,790 --> 00:03:26,260
So to be that, we need to open X 86 Netiv common problem.

38
00:03:27,910 --> 00:03:31,830
And come to this for the salicylate news, foudre greatly.

39
00:03:32,230 --> 00:03:32,710
Copy.

40
00:03:33,670 --> 00:03:42,940
And then come down to the bottom left corner and search for new teeth and you will find very sexy,

41
00:03:42,940 --> 00:03:43,630
funny teeth.

42
00:03:43,760 --> 00:03:44,830
AC, DC native.

43
00:03:45,610 --> 00:03:50,610
You won the X 86 90 because we are comparing it to be chocolate.

44
00:03:51,790 --> 00:03:52,780
So over here.

45
00:03:52,780 --> 00:03:54,070
So like the ABCs.

46
00:03:57,000 --> 00:03:58,860
And then checked the directory.

47
00:03:59,670 --> 00:04:08,580
Right click paste into that Deare to confirm that you have to compile the script.

48
00:04:09,210 --> 00:04:16,890
Now we can call it, compile it, enter, and you shall call HCFA.

49
00:04:18,990 --> 00:04:20,360
Now you can sell shellcode.

50
00:04:23,080 --> 00:04:25,300
Chalco Rana Iyesi hit enter.

51
00:04:25,990 --> 00:04:36,370
He didn't again, and Daniel Sherkat launches your Microsoft Paint program and your show also has exited.

52
00:04:36,640 --> 00:04:38,360
We have an area that is OK.

53
00:04:38,410 --> 00:04:45,070
It is to be expected because remember, Sherkat has got these XIC function.

54
00:04:45,410 --> 00:04:47,080
They created the Trojan.

55
00:04:47,680 --> 00:04:51,130
We have created jump to bypass the excuse function.

56
00:04:51,580 --> 00:04:52,840
This is to be expected.

57
00:04:53,650 --> 00:04:59,470
So this is how you can test the Chalco that we have done from a Trojan.

58
00:05:00,130 --> 00:05:01,390
Thank you for watching.