14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
We'll never forget when, upon initial installation, it was infinite scrolling of half naked women twerking, street fights, and educational videos about turtles.
It was surreal. We never understood it. We uninstalled in less than 2 days.
We're having some problems with our migration and Claude "AI" is not being helpful. 🙄
Читать полностью…
Here is my implementation of a keylogger without if, else, loops, switches, etc.
In the attached threads you'll see some cool submissions too from daaximus and x86matthew.
However, neither are as ridiculous and overcomplicated as mine.
https://pastebin.com/raw/uuNQ6zep
https://x.com/vxunderground/status/1879395134321954958
Someone compromised something and leaked 30 never been before and unreleased Eminem songs.
https://hypebeast.com/2025/1/eminems-team-condemns-song-leaks-info
Tonight on the vx-underground talk show our intern and our Chief Hotdog Analyst will be joining to discuss:
1. Is there malware in tires? Can Goodyear tires prevent malware?
2. Do hotdogs pose a threat to national security?
3. Taking calls from callers
People are reporting Conduent, the entity which handles state-benefits, child support, medical billing, etc. is currently offline. It's outage was sudden and seemingly out of nowhere.
Let's see if it's user(s) error, a technical outage, or the worst thing to happen on a Friday
New infrastructure is up.
Papers have been migrated. Tomorrow, whenever we get to it, the site will be restored to show stuff we've migrated.
It's going to take some time to move the malware samples (it's big). Once that's done we'll restore the VXDB and then move back to kitty cat collections.
A long time ago I wrote code that would use callbacks to determine when a USB device with a valid filesystem was inserted.
If it did, it would copy itself to it.
tl;dr the malware is coming from the machine!!111
https://pastebin.com/raw/sVyz1Nsk
It's okay, mysterious husband described on LinkedIn, we're bums too and also collect cat pictures
Читать полностью…
try writing a keylogger on windows that doesn't use if-else statements, while loops, for loops, do while, etc. switch statements also arent allowed
Читать полностью…
Top free apps right now in the United States on the Google Play Store
Chat, we are cooked (Lemon8 is owned by TikTok)
This is the United States of Ameriburger, was worried the health insurance company was going to charge me $45,000 for that time I visited my doctor for a check-up
Читать полностью…
It's wonderful seeing people produce creative educational content.
Thank you, endingwithali for highlighting this exceptionally talented programmer and their unique educational courses
Had to censor the image though because of all the peepees, butts, and boobies
me explaining to my kids what it was like using dial up internet
Читать полностью…
RIP to the homie TikTok.
We'll miss all of your brainrot, pseudo celebrities, and hyper-invasive data collection strategies.
Thanks to daaximus. When I was writing this my compiler kept trying to optimize segments of my code out. He spotted it. Smart guy. Smarter than me.
Also, also, everyone who wrote this using try-catch's or Python or AI is a coward
Nearly 30* sorry. The article doesn't explicitly list each track released. We also didn't research it more beyond this article.
Читать полностью…
Tonight on the vx-underground talk show: our featured guest will be _MG_
_MG_ is the creator of the infamous OMG Cable which is sold on Hak5. We'll be talking about hardware hacking, hardware malware.
We'll also have our intern and hotdog analyst present.
9PM EST.
We ran string dump on Telegram and found some interesting messages. What does this mean, Telegram?
Читать полностью…
Every invited guest cancelled or is unable to attend the vx-underground talk show tomorrow.
To compensate for this we will be inviting a homeless person we found outside a gas station who tried to sell us methamphetamine
Stacey makes a great point.
Last weekend at a family gathering I sat across the dining room table from my 16 month old nephew.
I had multiple clear-cut career accomplishments in 2024. My 16 month old nephew? Zero.
He can't code
He can't drive
He poops his pants
He hasn't even tried to enroll in any formal higher education institutes
"How do you *do* that?!" I asked in shock. I asked, "how do you do nothing all day except go poo poo pee pee in your pants? You can't even code in PYTHON!"
He pooped his pants in response.
> have coding project idea
> complete it
> unhappy
guess ill just introduce unnecessary amounts of convolution into the code, make it basically unreadable to myself and others, and then forget how it works in a few weeks
¯\_(ツ)_/¯
In 2024 we didn't:
- Get any certificates
- Complete any college courses
- Get featured in documentaries
- Win awards
Actually, we haven't gotten any of these in years.... :(
RansomHub ransomware group claims to have ransomed EUROCERT*. However, we believe this name is misleading because the domain listed, EUROCERT-dot-pl, does not appear to be an authority of the European Union.
(We have no idea how the EU works, maybe wrong)
Info via AlvieriD
All services will be restored on Wednesday.
Thank god, we're bored as hell
> get letter in the mail
> from health insurance place
> oh_no.png
> open mail
> health insurance company says data was in a security breach
oh thank god, was worried it was something important
Hello,
Our backend is currently down because we're migrating hosts. Our frontend is still up, hence why you can see the "BBIAB" message.
tl;dr used too much data, moving to dedi
non-tl;dr (long read)
We initially used Wasabi as our backend because it's cheaper than a lot of hosting providers. Wasabi is good if you have data stored, but you don't intend on your egress exceeding what is currently being stored. Your egress exceeding what is stored is a violation of Wasabi terms-of-service specifically in their data usage section.
Under normal conditions, due to our Cloudflare enterprise which was gifted to us from Cloudflare, we would not exceed our data storage in egress and everything would be fine and dandy. However, as we've begun aggregating malware for our virus exchange domain, we've begun consuming egress and data usage at a high rate. Our current flow works something like this:
1. Get file (malware malware, maybe not malware)
2. Submit to virus exchange database via API
3. Data goes inside virus exchange database
4. Data sent to VirusTotal for scanning
5. Wait 60 seconds (async, other files sent too)
6. Query VirusTotal results
7. If file is malware, store in database as SHA256
8. If not malware, dispose of file
9. Copy confirmed malware from virus exchange bucket to vx-underground malware ingestion bucket
10. File placed in daily ingestion queue data directory
Each day every malicious file received is thrown in a directory labeled the current date — usually named something like "Malware.{Year}.{Month}.{Date}". We eventually pull these directories down from our bucket using the AWS CLI and 7z ultra compress them. Once we 7z ultra compress them we move them to local backup instances. Once backup is completed we push it back to the vx-underground backend prod environment.
We began receiving warnings from Wasabi when we were ingesting 50,000 - 100,000 malware samples a day. We scaled it back to 15,000 - 30,000 malware samples a day. This still irritated them, so we now have to move to a new host who won't charged us a fortune for processing and moving so much data internally and externally.
We ultimately decided to move to TorGuard because they're a sponsor of ours, we have a good relationship with them and their team, and they're going to help us out with some malware-related stuff. We had planned on eventually moving to their infrastructure for awhile but we kept delaying it because moving so much data, modifying so much of our internal procedures, and laziness, made us dread the move.
Thank you, California government employee, for the cool e-mail and cool pictures
Читать полностью…