mirror of
https://github.com/horsicq/Detect-It-Easy.git
synced 2026-06-24 01:54:08 +00:00
5819fc9bdb
Renamed and reorganized numerous rule files in db/PE and db/MSDOS to use consistent prefixes (e.g., compiler_, installer_, packer_, etc.) and moved some files to db_extra. Also deleted the obsolete IBM_VisualAge_PL_I.6.sg file. This improves maintainability and clarity of the rule database.
12 lines
No EOL
348 B
JavaScript
12 lines
No EOL
348 B
JavaScript
// Detect It Easy: detection rule file
|
|
// Author: hypn0 <hypn0@mail.ru>
|
|
|
|
meta("installer", "Codegear Installer");
|
|
|
|
function detect() {
|
|
if (PE.compareEP("60be........8dbe........5783cd..eb$$8b1e83ee..11db72..b8........01db75..8b1e") && PE.compareOverlay("........'GRCSETUPINFORMATION'")) {
|
|
bDetected = true;
|
|
}
|
|
|
|
return result();
|
|
} |