Uzumaki

Prerequisites & Requirements

• Python: Intermediate proficiency, specifically with marshal, random seeding, and bytecode (.pyc) structures.
• Network Analysis: Basic familiarity with Wireshark and the HTTP protocol.
• Reverse Engineering: Fundamental understanding of XOR encryption and code obfuscation.

What will you learn?

• Automate the extraction and reassembly of fragmented files from pcapng captures.
• Reverse-engineer deterministic randomization used for file shuffling.
• Decompile and analyze Python bytecode to uncover hidden malware logic.
• Identify and bypass common obfuscation techniques used in ransomware.

Tools

• Analysis: Wireshark
• Automation: Python 3.8 (with pyshark and requests libraries)