Malware Research

01 June 2024 05:26

I remember uploading my programs to virustotal virtual boxes, and there I collected information on how these machines were detecting our malware at the time, the amazing thing I found was that at that time the vulnerability was in mouse inactivity on their machines, and we bypassed these machines in a similar way:

POINT pos1, pos2;

g_winapi.GetCursorPos(&pos1);
g_winapi.Sleeping(2000);
g_winapi.GetCursorPos(&pos2);

if ((pos1.x == pos2.x) && (pos1.y == pos2.y))
g_winapi.ExitProcess(1);

Malware Research

01 June 2024 05:24

That s are advanced concept for me

Malware Research

01 June 2024 05:23

and on 2024 we have systems like "anti-analysis", "anti-debugging"

Malware Research

01 June 2024 05:22

obfusication of malware code, droppers of dlls, hiddne imports, you just cannot detect this

Malware Research

01 June 2024 05:19

If u want to use tor you have to know to thing: a Good malware cannot be detected

Malware Research

01 June 2024 05:18

cleaned up all messages

Malware Research

01 June 2024 04:53

Well, you definitely need an antivirus program. I would also recommend you to use Tor

Malware Research

31 May 2024 23:20

What do you exactly mean by this?

Malware Research

31 May 2024 22:24

Jo hablo portugues es un poco parecido al español.

Malware Research

31 May 2024 22:14

Someone speak spanish?

Malware Research

31 May 2024 03:44

New FedBan
Fed: Libra's Empire
FedAdmin: ❤🦦
User: Simo
User ID: 5324413521
Reason: illegal activity

Malware Research

31 May 2024 02:02

Can you help me to hack this app

Malware Research

30 May 2024 15:04

that's related to browsers right? or a PDF file can trigger it?

Malware Research

30 May 2024 15:03

I haven't seen them since 2015 or 2016, so I doubt so

but PDF with phishing links still exist 🙈

and yes, they get past the filters. I don't know this tech (email gateways) well enough to know why

Malware Research

30 May 2024 14:06

thank you @Libranalysis and @xiaomayi

Malware Research

01 June 2024 05:25

I know what u mean but I don’t know in deep that concept

Malware Research

01 June 2024 05:23

With a Good obfuscation the api call will not be detected

Malware Research

01 June 2024 05:22

I have try to code malware

Malware Research

01 June 2024 05:22

Thanks, i know i can’t became a malware analyst, but when i start study i see that: Good virus are undetectable. My pc is full of malware, yes, but i know is my fault ahahah

Malware Research

01 June 2024 05:18

Sorry, maybe if u need an antivirus for the crap u download u can’t use tor

Malware Research

01 June 2024 05:17

anyway, off topic. please move to /channel/LibraLair to continue

Malware Research

01 June 2024 00:35

My question is what additional security can I use on my PC other than VPN?

Malware Research

31 May 2024 22:55

I have a number of questions, what cybersecurity can I use other than a VPN to do serious things?

Malware Research

31 May 2024 22:22

aqui pura gente que habla ingles

Malware Research

31 May 2024 07:24

User Adrian has 1/3 warnings; be careful!
Reason:
stay on-topic please

Malware Research

31 May 2024 02:02

There transit a lot of money

Malware Research

31 May 2024 01:56

Some one who play poker bros here ??

Malware Research

30 May 2024 15:04

there was a recent pdf.js vulnerability

Malware Research

30 May 2024 14:12

is #4 still a thing? I mean do modern anti phishing email kits let PDFs w/ JS pass by?

Malware Research

30 May 2024 13:30

those are many years ago, and till date, I've never quite seen them already, probably since around 2015/2016

1. To create phishing pages
2. To create phishing + drive-by downloads
3. For drive-by downloads
4. PDF JS malware

But I've seen some cases of:

1. Injection into ads that the website uses. If user doesn't have adblocker or similar protection, it could lead to drive-by downloads or on payment pages, stealing of their credit card details
2. Injection into websites to compromise them. Similar impact as #1