Malware Research

12 June 2024 20:41

You said no bro books etc if you have send me

Malware Research

12 June 2024 20:36

nothing is better then using and messing with it and reading some books and arch, gentoo wiki and Linux documentation can help you

Malware Research

12 June 2024 20:15

wdym by roadmap, just learn linux if you want to administrate it i guess

Malware Research

12 June 2024 20:02

Is their any Linux or network admins in this group?

Malware Research

12 June 2024 11:40

A Chinese-founded company, Zoom, illegally provided user privacy to the U.S. government
Twitter：Stephen_H1487/status/1796384382330269981

Malware Research

11 June 2024 20:24

Yes. the old seashell isn't working.

Malware Research

11 June 2024 20:21

Any known iOS RAT for latest versions?

Malware Research

11 June 2024 17:00

If anyone is proficient in Android, I recently had possible malloc vulns being exploited against one of my phones through the X app.

Malware Research

10 June 2024 18:31

And it on windows 11

Malware Research

10 June 2024 18:30

Which details are needed ?

Malware Research

10 June 2024 16:23

Who knows how to remove this malware that switches crypto wallet addresses from a windows machine when they are copied

Malware Research

10 June 2024 14:22

And also am checking on my main machine so I can run the script with no concern

Malware Research

10 June 2024 14:18

because a JS file for the browser doesn't execute the same (or at all) in a random sandbox

Malware Research

10 June 2024 14:14

Somehow when I submit the hash on vt nothing comes back

Malware Research

10 June 2024 14:13

if you start from the domain search itself, it has a JS, then the JS leads to your file, it redirects again or downloads more JS

Malware Research

12 June 2024 20:39

Can you send links direct message me

Malware Research

12 June 2024 20:33

just try those LPI exams

Malware Research

12 June 2024 20:11

Can any one share Linux admin rood map ?

Malware Research

12 June 2024 14:32

User Linda has 1/3 warnings; be careful!
Reason:
stay on topic

Malware Research

11 June 2024 21:07

Hello everyone.
Can anyone advise how to remove vmprotected 3.6.0 obfuscation from the .sys (rootkit) file and debug it ?

Malware Research

11 June 2024 20:22

it's for a homework?

Malware Research

11 June 2024 17:00

In case someone wants to have a look I can send you the logs.

Malware Research

11 June 2024 08:38

HiJackThis+ with boot from Safe Mode, UVs, or FRST, if you knowledgeable enough to analyze the logs. Otherwise, it's better to ask help in special places like BleepingComputers or HJT help section: https://github.com/dragokas/hijackthis/issues . Those clipper is often uses thread injection technique in system processes. If that's Trojan.Win64.Miner.pef those who have access in restricted area at BC may find my research there. I found fork of it it also distributed in X as a propose of beta-tester Web3 job.

Malware Research

10 June 2024 18:31

It simply replaces any wallet address I copy with a different one .

Malware Research

10 June 2024 18:30

A clipper, is what they are called. But without further details, we cant help

Malware Research

10 June 2024 14:25

I found a researcher who has been tracking the same malware. They named it balada injector.

Malware Research

10 June 2024 14:20

both are not nice to read

Malware Research

10 June 2024 14:18

Js deobfuscation is a headache. I think pure assembly is better lol

Malware Research

10 June 2024 14:13

Also the traffic is through https. I got no clue how to decrypt that lol. Wayback machine saved the day.

Malware Research

10 June 2024 14:13

seems to tally with VT observations