From 99b0d4fbd37406498ff83de215b25242bae8f4a4 Mon Sep 17 00:00:00 2001
From: younsle <dnsdudrla97@naver.com>
Date: Sun, 6 Dec 2020 19:16:29 +0900
Subject: [PATCH] crash message box

---
 src/.esp.log         |   2 +-
 src/_test_.txt       |   0
 src/crashAllInfo.txt |  14 +++----
 src/fuzz_hash.py     |  96 +++++++++++++++++++++++++------------------
 src/test.png         | Bin 0 -> 25907 bytes
 src/test.txt         | Bin 1131 -> 1131 bytes
 6 files changed, 63 insertions(+), 49 deletions(-)
 create mode 100644 src/_test_.txt
 create mode 100644 src/test.png

diff --git a/src/.esp.log b/src/.esp.log
index 1016af6..79b00ac 100644
--- a/src/.esp.log
+++ b/src/.esp.log
@@ -1,2 +1,2 @@
-ESP: 0019ff28 (   1703720) -> 2@@PP,@L@8@@tP,@Ll)CuP,CuuCwP,MP,@aDwquCwJsEw;Dw@P,Actx 2  (stack)
+ESP: 0019ff28 (   1703720) -> 2@@P ;@r7@8@@t ;@r7l)Cu ;CuuCw ;h` ;@aDwC<uCw0sEw;Dw@ ;Actx 2  (stack)
   
\ No newline at end of file
diff --git a/src/_test_.txt b/src/_test_.txt
new file mode 100644
index 0000000..e69de29
diff --git a/src/crashAllInfo.txt b/src/crashAllInfo.txt
index 5ddc369..701b988 100644
--- a/src/crashAllInfo.txt
+++ b/src/crashAllInfo.txt
@@ -1,22 +1,22 @@
-0x00d832c5 xchg [eax],eax from thread 16800 caused access violation
+0x00d832c5 xchg [eax],eax from thread 26552 caused access violation
 when attempting to write to 0x00000000
 
 CONTEXT DUMP
   EIP: 00d832c5 xchg [eax],eax
   EAX: 00000000 (         0) -> N/A
-  EBX: 002c5000 (   2904064) -> @]Owx(@[Owpv0]OwP(pm @HOw3OwaJ? (heap)
-  ECX: c44cb0bc (3293360316) -> N/A
+  EBX: 003b2000 (   3874816) -> @]Owx(@[Owpv0]OwP(pm @HOw3OwaJ? (heap)
+  ECX: 3772be1e ( 930266654) -> N/A
   EDX: 00401000 (   4198400) -> N/A
   EDI: 00401000 (   4198400) -> N/A
   ESI: 00401000 (   4198400) -> N/A
   EBP: 00d80ef4 (  14159604) -> N/A
-  ESP: 0019ff28 (   1703720) -> 2@@PP,@L@8@@tP,@Ll)CuP,CuuCwP,MP,@aDwquCwJsEw;Dw@P,Actx 2  (stack)
-  +00: 0019ffcc (   1703884) -> DwquCwJsEw;Dw@P,Actx 2 4|N&DTq24J6[IY-22B,0_P8\^VD( (stack)
+  ESP: 0019ff28 (   1703720) -> 2@@P ;@r7@8@@t ;@r7l)Cu ;CuuCw ;h` ;@aDwC<uCw0sEw;Dw@ ;Actx 2  (stack)
+  +00: 0019ffcc (   1703884) -> DwC<uCw0sEw;Dw@ ;Actx 2 4|N&DTq24J6[IY-22B,0_P8\^VD( (stack)
   +04: 00d832d3 (  14168787) -> N/A
   +08: 00401000 (   4198400) -> N/A
   +0c: 00401000 (   4198400) -> N/A
   +10: 00d80ef4 (  14159604) -> N/A
-  +14: 0019ff50 (   1703760) -> 8@@tP,@Ll)CuP,CuuCwP,MP,@aDwquCwJsEw;Dw@P,Actx 2 4| (stack)
+  +14: 0019ff50 (   1703760) -> 8@@t ;@r7l)Cu ;CuuCw ;h` ;@aDwC<uCw0sEw;Dw@ ;Actx 2 4| (stack)
 
 disasm around:
 	0x00d832ae push eax
@@ -34,5 +34,5 @@ disasm around:
 SEH unwind:
 	0019ffcc -> 00d832d3: push ebp
 	0019ffe4 -> 77449990: mov edi,edi
-	ffffffff -> 7745734a: nop
+	ffffffff -> 77457330: nop
 
diff --git a/src/fuzz_hash.py b/src/fuzz_hash.py
index 79cea0c..8734553 100644
--- a/src/fuzz_hash.py
+++ b/src/fuzz_hash.py
@@ -366,6 +366,7 @@ def __init__(self):
 		self.programPath = ''
 		self.samplePath = ''
 		self.step = 0
+		self.check = 0
 		# mainwindow btn slot
 		self.btn_main_1.clicked.connect(self.openProgramPath)
 		self.btn_main_2.clicked.connect(self.openSamplePath)
@@ -391,30 +392,23 @@ def openCrashFile(self):
 			try:
 				with open('crashAllInfo.txt', 'r') as f:
 					self.textBrowser_2.append(f.read())
+					self.crashMessageBox()
 			except:
 				self.textBrowser_2.append("not crash")
-				# continue
 			
 			try:
 				with open('.esp.log', 'r') as f:
 					self.textBrowser.append(f.read())
 			except:
 				self.textBrowser.append("is input?")
-				# continue
 							
 			time.sleep(3) 
-
-			# add step is the vuln detected before 'crashAllInfo file into the emtpy comapre so alert!!""
-			# event 
-			if self.step == 10:
-				self.showdialog()
+		
 			if self.step >= 100:
 				print("FIN")
-				# message BOx GO?
-
-
-			self.step += 1
-			self.progressBar.setValue(self.step)
+			else:
+				self.step += 1
+				self.progressBar.setValue(self.step)
 			
 	# next stacked -> stack thread (0)
 	def enterData(self):
@@ -423,47 +417,67 @@ def enterData(self):
 				1. file_fuzzer class instance
 				2. openCrashFile
 		'''
+		# You did not write down the file path. (break)
+		if 0 == len(self.programPath) & 0 == len(self.samplePath):
+			self.doPathMessageBox() # 
+			return
+		else:			
+			# print(self.programPath)
+			# print(self.samplePath)
+			fuzzer = file_fuzzer(str(self.programPath), str(self.samplePath))
+			self.stacked.setCurrentIndex(1) 		
+
+			nextStackThread = threading.Thread(target=fuzzer.fuzz)
+			nextStackThread.setDaemon(1) #True is Program exit together
+			nextStackThread.start()	
+			
+			# textBrowser_2 testing file save to load
+			openCrashFileThread = threading.Thread(target=self.openCrashFile)
+			openCrashFileThread.setDaemon(0)
+			openCrashFileThread.start()
 
 
-        # translation sub layout
-		print("Loading next Stacked")
-        # fuzzing class (file_fuzzer)
-	
-		fuzzer = file_fuzzer(str(self.programPath), str(self.samplePath))
-		self.stacked.setCurrentIndex(1) 		
 
-		nextStackThread = threading.Thread(target=fuzzer.fuzz)
-		nextStackThread.setDaemon(1) #True is Program exit together
-		nextStackThread.start()	
-		
-		# textBrowser_2 testing file save to load
-		openCrashFileThread = threading.Thread(target=self.openCrashFile)
-		openCrashFileThread.setDaemon(0)
-		openCrashFileThread.start()		
+
+	# message box ok
+	def msgbtn(self):
+		print "Button pressed is:"
 	
-	# messagebox
-	def showdialog(self):
-		msg = QMessageBox()
-		msg.setIcon(QMessageBox.Information)
-		msg.setText("CRASH DETECTED")
-		msg.setInformativeText("")
-		msg.setWindowTitle("CRASH DETECTED")
+	# crash messagebox
+	def crashMessageBox(self):
+		crashMsg = QMessageBox()
+		crashMsg.setIcon(QMessageBox.Information)
+		crashMsg.setText("CRASH DETECTED")
+		crashMsg.setInformativeText("")
+		crashMsg.setWindowTitle("CRASH DETECTED")
 
 		try:		
 			with open(".hash.log", 'r') as f:
-				msg.setDetailedText(f.read())
+				crashMsg.setDetailedText(f.read())
 		except:
-			msg.setDetailedText("NOT CRASH")
+			crashMsg.setDetailedText("NOT CRASH")
 
-		# msg.setDetailedText("MD5 %s" % CRASH_HASH)
-		msg.setStandardButtons(QMessageBox.Ok | QMessageBox.Cancel)
-		msg.buttonClicked.connect(self.msgbtn)
+		# crashMsg.setDetailedText("MD5 %s" % CRASH_HASH)
+		crashMsg.setStandardButtons(QMessageBox.Ok | QMessageBox.Cancel)
+		crashMsg.buttonClicked.connect(self.msgbtn)
 			
-		retval = msg.exec_()
+		retval = crashMsg.exec_()
 		print "value of pressed message box button:", retval
 			
-	def msgbtn(self):
-		print "Button pressed is:"
+
+	
+	# not push file path messagebox
+	def doPathMessageBox(self):
+		msg = QMessageBox()
+		msg.setIcon(QMessageBox.Critical)
+		msg.setText("FILE PATH")
+		msg.setWindowTitle("INPUT FILE PATH")
+
+		# msg.setStandardButtons(QMessageBox.Ok | QMessageBox.Cancel)
+		msg.buttonClicked.connect(self.msgbtn)
+		retval = msg.exec_()
+		print "value of pressed message box button:", retval
+		
 
 		
 def main():
diff --git a/src/test.png b/src/test.png
new file mode 100644
index 0000000000000000000000000000000000000000..b4decf755e7ee0a9fffeb4afc0959435a2e71e07
GIT binary patch
literal 25907
zcmeHQYg8526&|i=(RD?Ly42JMwZ#VpjISz2V+J2cs8XZRD!v*(lZcPNN))3Yx-343
zx{RVOU$trK>X;~46?}q;#Wq*VvPOlffJH)G^$Afxkm)%ych1b2nRD;Vow;yn;-Ac#
zJ9GB=_Wt&__c=2Y*8h59c-uBFx1lJiZN&I7Z&6gMXo_ml-lr8f(`)X5ao|7RiD3~_
ze89gIKC$a4Du9X@Lr+;Y`~K~c_xHB$n0Dt#)ldBW$M)}gx6h5;pG^pfm^5b0xbPyY
zb=|JmfB9Z&SU6{2*!Y`+XO%3!e#dqrd02hG8>=WUi?`Kk<qv%P>}P!ZYKko2^wQ_!
zEZ&l{;Aff^&ZL$_#@Kc=BwdhQ0f*%8NoB)RS(+Z5614A3_0y=8B^CduuE2()#EZQw
z*}r%^J2q+Px%w%ClWLFK3dUwc56_+ta7!-|jV1R@jhva(WqPqSWdHKS^0?TfemU#<
z=YHGz#aZzp%-X8FAuWqH1XYxL+-+8JhndA20*|z?rJb%zdvy5ZC)357XweVQA*s=R
z%Z86kuIoCpxJ~~aJ)V3RUpwjD&`o8Bz?~_@Uxn>URi7ZRy<|e_!K-CQHkH*h99(Vt
zIIH|ng<oRBicP_6&Ub5ekLBEtPmv!grzLma{uo<e&Yn^GQ|ccVtUsF`e5B<4+Rih;
zXwM%u+<BCpX`PP(rZ|{6x%A%mHM`4(HM|JQsV`v5Drd*n{_NO@iy67Is?J~TsR+3+
z!mZVLSMNQ^F32kXa7pN>;*0;O9DZVE@{6bCUuKjIJ9qMQO3i<RU%A^wZQA@0H#z`!
zH9Q=)Ddp_4)8$=fg&ZiqU6|k-(u1wdtk|3wUuzrE<JKzzNf29vgS=p$5qrC*usu)A
zEM62Eo?*MVd+~`qF}Cu{8H)k*X8?LZcIFldbeg7xn>qLK(9_C>v8-=M$*9~rl|@<Q
zmGd?hCR{$Wi|F)Q>3QIa<U{3^PsYN_ZTlC^>(?%f9HXt!Pn-J}$NNVgzPreZO+msS
zKYzdIo@vKgk$%qvzyI>#pI#FDFS(VYzQ0#iV8ZwXlGAwTe(IGKSGFjKG`s=xoE<IZ
zS(epgo?#T;bby{{9++bV`k9KJ5k^H?z@cYZL(aEaU5Pyry;N-Uqo<@0U2(oK^T@IA
zz`1#vHk<hj_y-_>;-<komw1#)Vsc~XcfL;aCgwe?qPXG;&ZlWbPP&PDdeLi*J%FZw
z;ODyNHZgjZ1>Cfnulb-zqDTv|7nu!hiu@2YAD+kJ#(77<d=LUoA{ho=+}xZGT_dSq
zB6>(GOfc2ai;i=E9=M3Np>#esD)KUJ9-T%93g>Gwk8F61d39=W=xJF8E(wm?(1ZAZ
z06B9$oV2rM3$`bCOw4mWrMK6E6GmN^_SmaKFywqV6Dz6H<virf`G(AEX*WzPxb~1!
zlzFjtbDwXu8eV45v<G#%NHF1n3iBOkK6Wb?z(%JY$Q50x2NG7>5);UrWC_5su*SJ7
z@$3+I=d)@nT-Cg181A%Hm}jFqALXor*rNdXHQQEG)%o(Ju17i_1;`cW!#X5T%U#TG
z@?MYY+A~>JS#V){Vh=Jv&oKDb5^JBi1LhlYzI1q!^ZB)em&GjVp>+?MId_1Yx36Gy
ziLR^rdMf4}l^n2FfzKRX><aU>IA6#Nvz)J-IV7O=l0yp<!aU?D=&@odMk$lHr%UUM
zy+@;W*DA-&ovxwH6^3!K-b32Ev)NKFIV>B%Vw#St9+p%bH67+X*gSO+y})Bb=5?wb
z^thOlKPH}b(N)rdSaJX*Agkf;cGaV0K1YKQVh{T<=hV{~doUrI*IH-h(eDnKuiw19
zktU$mVjk{?kt*J#d0F2I?*hmIp?Se2pQ?L2A#FQd+-l&;Ex{9T15ZlBMnsS8R|;7m
zZntyfMsYU412~2%dWp>0%{L-?gbW^NH&02sQ8b2osE3Akhw~-b;{ZK;$l$sF^GjCM
z*lRQ2B-PJq6%<LAdF~++o-{Ck9D1v^T`tKoP9^pXqxL(Z9ug|<Rv0*B-nI8Ql<1*Y
z$;u=$k0y*A@Ui!#R|&A`IbgmLy~?^l6M8dZk1^64#sQwuVji}WDl>;}XjJsd?F{qH
zGmJ!5c<MQGKEucejrc(j-N3}aM2;I;oKH$T5EBjPDGJ}^!bsrMJj+Vn--6vLLZ&PB
z1pYWRuj}<OAXc1D(G&^JN57kE9^?YaJhlooWFCe9Uve1icBD`L(ahk1Hs-6oyT`eK
zcRtV<+$qS0L+67XN#l!cC~)$aXfy93dj1s<33}&mE)u3_0(uvh8Jx=V=J9lwW>+S0
zkB?6Qf7mz}ksV!mj}i~Q;0EPQTi%PWb7LJ5kbmRUGwOVXaaMAiC7yHY5$d@IpqG>!
ztXje3Ri~b~7cImd5YYG{3uLF18{pZIx_Qx+f_YgfaEI&wvLogT2aRZ6>KIQn57l25
z1&1X^hvvgwWvOuMk{!)&s{;lj+K`#wB-E3}9#jcp#gi@?%yK@VozTR5;8M|Fm~)$@
z>On00K7%Io4nC9sj?pi=qAQJ>Z~B7!BYJ603wrLsvLj3pQ4dg9ExB>o0b(Vx7NTpm
zdC$KmhR_pK5l63RraTip+AJ{EY{BJ=-dBdPnm{m*7L_JApZw+`=r5ctvJ5@TZ@$d8
zFEI_EhwH>fDLK%PAXFH&oF^Wwe0xoz&?ZpNT@?@R6l;?ma3$sxq+wj*QG^vPxXXjl
zLy6Ufz8SqPj@1p1bUrNp#V>?+0fdw@HxR-?2XWRTJt4L?TF}$FwwV|P)>QkJs%z-M
z{k)7hS3u&Y;l$;pbhAbadeVaxz#l^GZ|vAZe@kTFv3a13x|mP?a@|AF%eHSEqxZ4^
z{4B=}kBU9^tqp|W!OVvqY@V@4+|Uqva?@=r@8M>#2J_}LUT}L8fkp?7W_}d~rAhvD
z&AsL!Wch;?FbORc5B3KE;8it^UoEJ=B;#7eLtU-5yoVsMehbC6QOw($Zn2WM$vk8a
z8X6v`%Z_+WW1<%sg{CMq52kLfvmC8RB}e+~SzGK0D;^*#QuAv4fO`|qgUxfF75pI4
zqm2bQdfAIwYSe?-Cy0!C;_)fKZIl?;XfdVRfzR5^f11s2&3MEn8>=PnOLHIGwoTj?
z-C^yO2VX8;5g2BxI3BkmFs5X|i4Q(qIH_gA-dDS|{VLRQct%W7U1cXET;4w78#sUS
zSr^=8>Ezb(vTeUO^(C*Y&+l%zZg0C`GboURFJc2N??mR`o}wa;+z7uP^G1AMNG;O%
z>8lF2e!y&(F4MRh?Qb;o0ef<9`o7neG=9L(15U)=nh=O8s_fuR?+Y1Qp?x)l1cvm%
zw@bWaGFsq={&9%%M*d7H2Y={xO7>h=Kw$!W7_v1A_u7N#Dewu=(E}gilrIjs=#QT9
zLx3;gq@8TgA%Ohq@VSKoAAO3H`!H=JxsP!e4(^SSABv}4H0;sja$gJiO^Ch{zQx;l
z^sQEs^ns3>mp*_~NJcrkF!;DCLSLB=A52Oz2Tjta9(~T?Lhi#*s_27E`LXD8U;%u{
z5H-*H_`yMe^1Cbgz^)xWF*;cE83xP;r<nksRG9F>rwZR`;d2*!FlV!(-)!JxAC-AF
ze98^Ek4vkkMjt4YW9b7IP~d+dEVMmhN@BGG)_saH*!5|UK0oneU8%@xkv@6uLtui6
zny>u2q7Qaah;<)R{$`W=y5NJl&yw1n#)Ho|@A*aYV>MK3(<|}~?>(@>rxId~g-^XJ
z0CSeNJ@^}`|6kI_wK2GRrSQ>rH==qpaqeqqdiAXL4YxhOfs&S0P=3{hlS>DY{9qqd
z^ePtu_zj-Rg>T!qx6;9)Cm;Te0DC|+CIXy4+|*U1l9UP9RQWAnITP^DXa!e*wZ9G>
zkp5``yDNY(#R$ObPL@C5E*<byXGnz4tC<`=uHg`V-pUIZ(_+$x&aZehYW~z$iH-=^
z(!S>VCtsf)kbh%9e)WU0iq0`B(>vX??PkxuJ})*YG=Ev}iMzh<4pf~bVDOfXh40w1
z2jp)ab-o;~Sb_)TT-tmCSj~-{Hej#9c|y8BuCc&1?Q8iv55$cu8o0)GJS*<pKcB|h
z9u*#4c|Ya#+{GhXSJm9yHD0&@;{bF*PLI@$+1_>S-@Z=MgN}Z&xl8o*{RMyST{14d
z<+j>b+nlKE_^4A~99bV+od_c4VEQpOYfwMtQeHyM6x;HnaV>X5=KdwFU7xh`aU-t{
zWLKp8A&x!Ue|np%q?NpvWoW0J6!q6nYfHF$j^?f{yi#~H%vOJ9^*3!o>MFWS`;L87
zl2WzfL2qTs3umIj=eFF@amv&sMWc@R4Vv@xc|-2L_@c7EFHeYDyZuE~!|{WoOSdbs
zM7Z1gVXsW~-*p|QJ}aoZ`N`h&VDJ|py8q_-&EF-}WuESKDXKlD6B1`cMV3B(aKX3C
z*6?)WwB(?jU0ZFRocr0>B}p?_pEECGrBgCQ=|`4MQB3?||BvoRWW1<Ljye^Taeq$L
zVA}&<`XHK<>>#zG?~?m{Ga?U^pDIkac4Op~$`R~umtB)nSD0MhHB0!KZ=M~qeZK$P
zdxKBjtA4Gs@RNd7rJ-&1YzSGpDY(G@>jk|OR1s!AV&|&fZ+B0>KIc~;LshZWx3lC@
Z)qP`ItnglV6gHg^V<(O|95#3L{{Y}6Ot1g|

literal 0
HcmV?d00001

diff --git a/src/test.txt b/src/test.txt
index 51dbee0a902cc9839d3913d23fb9fbf1b0532c23..8dd134bce35f9d3559c19246506941c56dd3cf7b 100644
GIT binary patch
literal 1131
zcmY$bP%Ti+$WzTz%>a@^f%6{-&>RX9qMH|hb`3~SF#rMC@xwEOBAAqvxC%Y>f|3F$
b20%iT2MFk!{6RKSGtW6vErK0sRUQBU2m5Zk

delta 98
zcmaFO@tR|TE|a6<<UpoyMuy3bOm!0{@PPP+Ons9R7!8>i7$!RUvhV=G#6VeQAT?Q#
tY2CyLg3SN_{|9Pvm~6!8#srjPRN(_DQY}!;$WzT@U|^W6$TSaV762{T8OZ<u