Xzre Save

XZ backdoor reverse engineering

Project README

xzre

Reverse engineering of the XZ backdoor

The goal of this project is to document the functions, data structures and inner working of the XZ backdoor malware, with the goal of understanding how it works, the tricks used, and serve as a reference for other analyses.

NOTE: this repository includes a copy of the original liblzma_la-crc64-fast.o found in liblzma 5.6.1

This project builds a binary, xzre, that is linked against the malicious object file in order to instrument and call into the malware code, particularly the x64 disassembler.

Although no side effects have been observed, it's recommended to run this code only in a sandbox/virtual machine until the full code has been understood.

Open Source Agenda is not affiliated with "Xzre" Project. README Source: smx-smx/xzre

Stars

Open Issues

Last Commit

1 week ago

Repository

smx-smx/xzre

License

GPL-3.0

Homepage

https://smx-smx.github.io/xzre/

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/xzre"><img src="https://www.opensourceagenda.com/projects/xzre/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022