Malware Research

10 June 2024 14:12

It has cap. I looked at at it but it seems that the scrambled js is the submission so the rest of the traffic does not include that

Malware Research

10 June 2024 09:55

Hello @nulluser_404, welcome to the Malware Research group! Please read the pinned message before you post!

Malware Research

10 June 2024 09:25

If you go to the content tab, you could see obfuscated codes

Malware Research

10 June 2024 09:25

The md5dum returns only one anyrun analysis.

Malware Research

10 June 2024 05:57

Looks like VirusTotal may have it

Malware Research

10 June 2024 03:26

You can search for other versions of it

Malware Research

10 June 2024 03:14

Try this: https://web.archive.org/web/20240609152549/https://four.startperfectsolutions.com/scripts/sold.js

Malware Research

10 June 2024 02:51

hxxps://four.startperfectsolutions.com/scripts/sold.js anyone can help me get this sample ?

Malware Research

09 June 2024 21:31

You can use an app on your Android to scan for the camera once your device is connected to the same WiFi network

Malware Research

09 June 2024 21:28

And then you can locate the IP address of the camera and log into it from a web browser

Malware Research

09 June 2024 21:27

If I’m connected to the WiFi of that place can I get access to it

Malware Research

09 June 2024 21:21

Please I’m not doing anything illegal I want to help my friend

Malware Research

09 June 2024 20:29

How can get access to cctv cameras

Malware Research

07 June 2024 20:38

Hi guys,

Does anyone know anything about dAn0n ransomware? TTP?

Malware Research

07 June 2024 11:07

Thanks for the suggestion!

Malware Research

10 June 2024 14:09

does the anyrun sample has a PCAP? you might be able to extract out the file from the PCAP

Malware Research

10 June 2024 09:25

I didn't pivot off the communicating or referrer files/URLs, those may also yield something

Malware Research

10 June 2024 09:25

I think VT only has the response body, not the actual file

Malware Research

10 June 2024 09:23

They way back machine has a bunch of snapshots. Vt didn’t return any for some reason.

Malware Research

10 June 2024 04:35

i saw a couple 2 versions

Malware Research

10 June 2024 03:18

While I was on there I am getting server error fml

Malware Research

10 June 2024 02:52

it is dead. only see a mention on anyrun but they dont offer a sample

Malware Research

10 June 2024 00:11

User capekep has 1/3 warnings; be careful!
Reason:
stay on topic

Malware Research

09 June 2024 21:29

Can I use angry ip to scan

Malware Research

09 June 2024 21:27

You'll have to scan the network first

Malware Research

09 June 2024 21:22

You can only get access to the cameras if you have remote access to a Windows machine on the same network as the cameras

Malware Research

09 June 2024 21:17

Illegal, we cannot tell you.

Malware Research

07 June 2024 20:39

This ransomware is from the end of April of this year, it is relatively new and I can't find much information about it

Malware Research

07 June 2024 20:14

New FedBan
Fed: Libra's Empire
FedAdmin: ❤🦦
User: MRshinba
User ID: 5027212289
Reason: scam

Malware Research

07 June 2024 10:46

Only unique artefact is the link to session chat for connecting with their operator rest the extension is used as a "code" to initiate conversation with the operator for identifying the affected victim