-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy pathUploadUnpackAndRun.py
More file actions
63 lines (53 loc) · 2.29 KB
/
UploadUnpackAndRun.py
File metadata and controls
63 lines (53 loc) · 2.29 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
# AnyRun API documentation:
# https://any.run/api-documentation/
import sys, os, requests, json
# Upload, unpack and run each file
def upload_unpack_run(filename: str) -> str:
with open(filename, 'rb') as f:
return requests.post( \
"https://api.any.run/v1/analysis",
files = {
'file': f.read()
},
headers = {
"Authorization": f"API-Key {os.environ['API_KEY']}"
},
data = {
"env_os": "windows",
"env_bitness": "64",
"env_version": "10",
"env_type": "complete",
"opt_privacy_type": "bylink",
"obj_ext_startfolder": "desktop",
# all the magic happens here
"obj_ext_cmd": r"""powershell -c "Move-Item -Path %FILENAME% .\f.zip; mkdir C:\Users\admin\Desktop\f; &'C:\Program Files\WinRAR\WinRAR.exe' -p1234 x -ibck .\f.zip *.* .\f | Wait-Job; $files = Get-ChildItem -Recurse -Path "f"; foreach ($file in $files){&$file.FullName};"""
}
).text
def process_response(response):
json_data = json.loads(response)
if json_data.get('error', False):
error_message = json_data.get('message', 'Unknown error')
print(f'Error: {error_message}')
else:
task_id = json_data['data']['taskid']
url = f'https://app.any.run/tasks/{task_id}'
print(f'URL: {url}')
def main() -> None:
if len(sys.argv) < 2:
print ("[!] Usage example: python UploadUnpackAndRun.py filename.zip")
return
filename = sys.argv[1]
process_response(upload_unpack_run(filename))
if __name__ == "__main__":
main()