mirror of
https://github.com/horsicq/Detect-It-Easy.git
synced 2026-06-24 01:54:08 +00:00
16 lines
No EOL
435 B
JavaScript
16 lines
No EOL
435 B
JavaScript
// Detect It Easy: detection rule file
|
|
|
|
// https://github.com/nexe/nexe
|
|
init("packer", "nexe");
|
|
|
|
function detect() {
|
|
if (!PE.isExportFunctionPresent("napi_wrap"))
|
|
return;
|
|
|
|
// Has overlay at all
|
|
bDetected = PE.isOverlayPresent() && PE.getOverlaySize() >= 0x100 && PE.findString(PE.section[1].FileOffset, PE.section[1].FileSize, "nexe~~sentinel") != -1;
|
|
|
|
_setLang("JavaScript", bDetected);
|
|
|
|
return result();
|
|
} |