threadtear
threadtear copied to clipboard
ZKM Des Cipher String Obfuscation
can't deobuscate jar file. Obfuscation is similar to zkm. jar file: https://workupload.com/file/bFVafRnQCEd
This looks like latest ZKM with string obfuscation using DES cipher. Will maybe do this, but currently don't know how to generate string obf with DES cipher samples. Maybe it's ZKM 12+ only, idk.
You can use "remove unnecessary try catch blocks" though if you want a better overview.
I need more samples to make a deobfuscator for this one. Edit: not needed anymore.
I've got a handful of ZKM 13 samples if you'd like. Looking to deob these.
The problem with newer ZKM files is that it uses method parameters as decryption values that are stored before method invocation (at the references), and it also combines resource and string obfuscation.
Should be partially unblocked when ArgumentInliner is merged from #23.