ShellcodeHandler Generic LinkXOR

/*

; stuttgart linkxor variant
00402007   EB 15            JMP SHORT stuttgar.0040201E
00402009   B9 8BE61341      MOV ECX,4113E68B
0040200E   81F1 D8E71341    XOR ECX,4113E7D8
00402014   5E               POP ESI
00402015   807431 FF A2     XOR BYTE PTR DS:[ECX+ESI-1],0A2
0040201A  ^E2 F9            LOOPD SHORT stuttgar.00402015
0040201C   EB 05            JMP SHORT stuttgar.00402023
0040201E   E8 E6FFFFFF      CALL stuttgar.00402009

*/

	const char *linkDecoder = "\\xEB\\x15\\xB9(....)\\x81\\xF1(....)\\x5E\\x80\\x74\\x31\\xFF(.)\\xE2\\xF9\\xEB\\x05\\xE8\\xE6\\xFF\\xFF\\xFF(.*)";