9618
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
User Zeugmay has 1/3 warnings; be careful!
Reason:
add context to link
it's important for ban not to assume anything but have straight answers
Читать полностью…
I guess he meant jailbreak gpt so you can use it for illegal works😅
Читать полностью…
Hi
I hope you’re doing well!
I’m a postgraduate researcher,
conducting survey on Incident response reediness and we’re urgently short on responses with the deadline fast approaching.
Could I ask for your favor to fill it out? Your expertise would be invaluable. It will only take a few minutes:
https://app.onlinesurveys.jisc.ac.uk/s/nottingham/assessment-response-readiness
Thank you so much for your help!
Is that an accidental exposure of credentials or a compromised account? 🤔
I feel like it's the latter and want to activate Yoshi
User Paes has 1/3 warnings; be careful!
Reason:
stay on-topic
hello. try to keep talk on topic and make sure to read the rules
Читать полностью…
greetings friends, malware sample request, 7d5b6bcc9b93aedc540e76059ee27841a96acb9ea74a51545dfef18b0fcf5b57, 6fc672288e68146930b86c7a3d490f551c8d7a7e8ba3229d64a6280118095bea, 'ad9044d9762453e2813be8ab96b9011efb2f42ab72a0cb26d7f98b9bd1d65965' thank you so much!
/warn add context to the link and remove tracking
Читать полностью…
It is a somewhat modular Trojan. If I remember correctly, the server injects a few DEX modules on first request to implement additional commands for uploading or downloading files on the device, exfiltrating SMS data, getting contact list or enabling the microphone, among other things.
Читать полностью…
You could check if the "protocol" depicted in these posts still applies. "Packets" are formed by two ASCII-encoded length values (i.e., you see "510" instead of hex 01 FE in a network trace), each one followed by a null byte, and then two gzipped blobs of data (starting with hex 1F 8B) which have the specified lengths. Connection transport should be ordinary TCP over an arbitrary port number.
https://insinuator.net/2022/09/spymax-the-android-rat-and-it-works-like-that/
https://www.stratosphereips.org/blog/2021/2/26/dissecting-a-rat-analysis-of-the-spymax
There's something I need and the only way I'll get it is through a jailbreak coz it's against the chat gpt ethics
Читать полностью…
Hello @snuff_ik, welcome to the Malware Research group! Please read the pinned message before you post!
Читать полностью…
New FedBan
Fed: Libra's Empire
FedAdmin: ❤🦦
User: Asd
User ID: 6786784852
Reason: illegal activity
Does wifi adaptor with Chipset rt3070l can use in Monitor mode?
Читать полностью…
In the constantly evolving world of technology, data security in the healthcare sector has become more critical than ever. In my article, we discuss the implications and challenges faced by health insurance companies and healthcare institutions in the digital age.
Join this essential reflection for any IT manager, healthcare executive, and anyone interested in the future of data protection. Read now and join the conversation about the future of digital security in healthcare!
https://www.linkedin.com/pulse/an%C3%A1lise-de-seguran%C3%A7a-e-privacidade-na-%C3%A1rea-da-sa%C3%BAde-1%C2%BA-paes-gomes-h0tcf?utm_source=share&utm_medium=member_android&utm_campaign=share_via
New FedBan
Fed: Libra's Empire
FedAdmin: Libra
User: Anil Patil
User ID: 230269444
Reason: dont spam
User Anil has 2/3 warnings; be careful!
Reason:
add context to the link and remove tracking
It try to connect via TCP - sends heartbeat, but not establish full connection with C2. Main problem i cant manage installed malware in admin console to make other activities like open file manager or use camera
Читать полностью…
Hi Guys and Girls,
I am a 3yr exp Blue team professional, and now looking to start malware analysis.
Any guidance is appreciated.