Malware Research

07 June 2024 10:44

https://www.darkreading.com/threat-intelligence/sexi-ransomware-desires-vmware-hypervisors this ransomware gang is known for encrypting files with various new extensions looks like or maybe .wpdone is one of them ?

Malware Research

07 June 2024 10:18

By any chance does the ransom note contain a link to session.org?

Malware Research

06 June 2024 21:08

Has anyone seen ransomware extension “.WPDONE”?

Malware Research

06 June 2024 07:49

https://www.linkedin.com/posts/bar-magnezi-ab0987217_malware-analysis-agent-tesla-activity-7204163661110661120-xlGJ?utm_source=share&utm_medium=member_ios

I welcome you to jump into my analysis and give me your thoughts 😉

Malware Research

05 June 2024 16:44

https://www.bleepingcomputer.com/forums/t/646476/wannacry-wncry-wanacrypt0r-wana-decrypt0r-ransomware-help-support-topic/page-18

since you are seeking ransomware support, your message is off topic. this shall be the last message on this

read through the above link and do other Googling yourself to seek out answers

Malware Research

05 June 2024 16:26

which place to ask for recover my account?

Malware Research

05 June 2024 16:13

Sup? I am reversing WannaCry that infected a Virtual Machine and I found those common files mssecsvc.exe, mssecsvr.exe, tasksche.exe, qeriuwjhrf and some of them should have those "*wnry*" strings. But when I use strings or cat in them I can´t find a single "*wnry*" strings but all those strings are on pagefile.sys.
Why am I not able to find them in mssecsvc.exe, mssecsvr.exe, tasksche.exe or qeriuwjhrf ? I know they are not supposed to be packed and being in pagefiles.sys means they were loaded into the virtual memory of the machine.

Malware Research

03 June 2024 09:07

User Old dirty bastard has 1/3 warnings; be careful!
Reason:
no maldev

Malware Research

03 June 2024 03:22

Nice one.. thanks for sharing

Malware Research

02 June 2024 22:04

Hello Hindi Q, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

02 June 2024 10:33

Hello @mmotorock, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

02 June 2024 03:45

Virushshare, virustotal(subscription), and simple goggling will provide with a comprehensive list of sites hold such info

Malware Research

01 June 2024 12:25

Misinformation brought as a fact 😭

Malware Research

01 June 2024 11:48

is there anyone that can find the phone number of this id 2082862780 ?

Malware Research

01 June 2024 05:27

@relaxide oh wow

Malware Research

07 June 2024 10:40

No idea, tbh
I'm lack of the details
Have any ideas?

Malware Research

06 June 2024 21:32

Hi
I have multiple pe file as malware.
How to understand the similarity between them.

Malware Research

06 June 2024 12:49

Hello @votadlos, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

05 June 2024 17:08

User Sagar has 1/3 warnings; be careful!
Reason:
ransomware support is off topic here. read the Bleeping Computer support topic

Malware Research

05 June 2024 16:26

you could try Facebook

Malware Research

05 June 2024 16:23

Can anyone help to recover a hacked facebook account?

Malware Research

05 June 2024 11:47

Hello @Turn_on_2011, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

03 June 2024 03:30

https://github.com/Black-Hell-Team/TheBhTiNjector

TheBhTiNjector is an file binder multiplataform that can concatenate two or more files of some extensions that preserve the integrity of the files. And it also allows us to insert shellcodes into our files, very useful for malware dev. It already comes with an example of a shellcode that allows you to execute the binary after being linked with an image, that is, when the victim opens the image, the shellcode executes the binary that you linked. Having these examples for Windows, but and Linux. It is also possible to link an icon to your binaries so that it appears on the desktop.

If you like the project, contribute to it, make a pullrequest and we will review it and if everything is ok we will accept it ;-)

Malware Research

03 June 2024 01:11

Hello BEPIPA, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

02 June 2024 20:30

4n4lDetector v2.8

Download:
https://github.com/4n0nym0us/4n4lDetector/releases/tag/v2.8

Malware Research

02 June 2024 05:40

NIST NSRL. It's used in forensics to whitelist files to reduce the number of files to analyze and to stop second guessing if a file is legitimate or not

Malware databases should be plenty. Please refer to our GitHub repo for those databases

Malware Research

02 June 2024 03:05

Do you guys know where I can find a large and diverse set of both begnin and malicious files? I woul dlike to gather some features and need both cases. thanks

Malware Research

01 June 2024 12:24

New FedBan
Fed: Libra's Empire
FedAdmin: Libra
User: ho3ein
User ID: 5869261857
Reason: no skids

Malware Research

01 June 2024 05:28

Can ask something in private? Nothing about laming ahaha, just semi personal question

Malware Research

01 June 2024 05:27

but now is already fixed