14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
P.S. Your BTC stash (which according to court documents has been seized, but is speculated you still have hidden somewhere) is worth several billion dollars. Please give us like, $100, or something, for a pizza party.
Thanks,
Hello,
We've received a couple of e-mails lately regarding vx-intelligence on Telegram. We are not vx-intelligence. No idea who that is.
¯\_(ツ)_/¯
We broke the site by testing in prod. We'll fix it tomorrow.
Quality assurance is for cowards
He had quite literally the easiest sentencing ever. He was charged for possession of child pornography, dozens of wire fraud charges, aggravated identity theft, etc.
All he had to do was get a job or education, go to therapy, agree to electronic supervision, and not do crime
Imagine Ross Ulbricht is freed, discovers TikTok, brain rot, and Discord, and requests to be put back in prison
Читать полностью…
This is a reminder that there is a difference between Pegasus RAT (old, builder and source code archived on VXUG) and Pegasus Spyware produced by NSO Group.
You do not have the source code to Pegasus Spyware from NSO Group. You're not the Mossad.
Every so often some goober messages us saying they've got the source code to Pegasus Spyware.
WHY WOULD ANDROID AND IOS SPYWARE BE WRITTEN IN C# AND COMPILE INTO A .EXE
Hello,
The site is mostly restored. We're finalizing the migration (167GB of VirusShare blocks).
Following this we will begin the migration of 17TB of the virus exchange database.
https://vx-underground.org/
This is a reminder to everyone that your malware payload does not need to be ultra-1337 for it to be effective or evasive.
In a bit of irony, the more sophisticated you try to make your malware be, more the IOCs you're introducing into your code base.
The goal is to write clean, simplistic, environment specific malware. If you introduce dozens of anti-debug techniques, stack spoofing, sleep obfuscation, VEH system call invocation, server-side or client-side polymorphism, and offensive EDR techniques you're only introducing more things your binary can be identified by from static analysis. If you introduce further methods, like encrypting sections of your binary on disk, you're once again only adding to the pile of shit that makes your binary stick out.
Also, don't let the elitist nerds lie to you — if you handcraft your malware is x86 it WILL be caught lightning fast. Handcrafted assembly looks completely different under the microscope (Ghidra, IDA, whatever) and can make YARA rules easier to make.
Pouring one out for the homies who had weeks of shit posts lined up memeing the death of TikTok
Читать полностью…
Photo sent to us from _FaceFTW.
This is by FAR the rarest kitty cat we've ever seen.
RIP to the homie TikTok.
We'll miss all of your brainrot, pseudo celebrities, and hyper-invasive data collection strategies.
Thanks to daaximus. When I was writing this my compiler kept trying to optimize segments of my code out. He spotted it. Smart guy. Smarter than me.
Also, also, everyone who wrote this using try-catch's or Python or AI is a coward
Nearly 30* sorry. The article doesn't explicitly list each track released. We also didn't research it more beyond this article.
Читать полностью…
Tonight on the vx-underground talk show: our featured guest will be _MG_
_MG_ is the creator of the infamous OMG Cable which is sold on Hak5. We'll be talking about hardware hacking, hardware malware.
We'll also have our intern and hotdog analyst present.
9PM EST.
Ross Ulbricht, congratulations on your Presidential Pardon.
We are praying for you.
We ask God for your loved ones to not expose you to TikTok, AI, or Fortnite. You've been gone too long — your brain won't be able to handle it.
Amen.
Ross Ulbricht's Xitter is being spammed with accounts which appear to be associated with him (image 1). However, the accounts are not. When you try to view the "official" Ross Ulbricht Telegram channel it asks to verify your identity (image 2).
It gives free malware! ♥️♥️♥️
Ross Ulbricht, the creator of the infamous Silk Road, has been pardoned by Donald Trump.
Читать полностью…
Conor Fitzpatrick a/k/a Pompompurin, the ex-administrator to Breach forums, violated his parole agreements almost immediately after his plea deal.
He now faces in excess of 20 years in prison. His next court date in is February.
United States media outlets are saying Donald Trump intends on, honest to God, pardoning Ross Ulbricht. Initially Trump said he'd do it on day 1 — he didn't. Representatives say he still intends on pardoning him
There's a real world chance Ross Ulbricht could discover brain rot
This is a reminder that there is a difference between Pegasus RAT (old, builder and source code archived on VXUG) and Pegasus Spyware produced by NSO Group.
You do not have the source code to Pegasus Spyware from NSO Group. You're not the Mossad.
Thank you to the people who continue to send us cat photos from compromised government e-mails.
It means a lot to us.
> still migrating terabutts of malware
> touch grass
> *fast forward 4 hours*
> get on pc
> whats_new_on_twitter.png.exe
> yappin city about tictoc-toe
> politicians mad tictoc coming back
> people callin 911 about the ban
> some dude sets a politicians office on fire
praying to god we have the first president of the united states to perform a rug pull
Читать полностью…
We'll never forget when, upon initial installation, it was infinite scrolling of half naked women twerking, street fights, and educational videos about turtles.
It was surreal. We never understood it. We uninstalled in less than 2 days.
We're having some problems with our migration and Claude "AI" is not being helpful. 🙄
Читать полностью…
Here is my implementation of a keylogger without if, else, loops, switches, etc.
In the attached threads you'll see some cool submissions too from daaximus and x86matthew.
However, neither are as ridiculous and overcomplicated as mine.
https://pastebin.com/raw/uuNQ6zep
https://x.com/vxunderground/status/1879395134321954958
Someone compromised something and leaked 30 never been before and unreleased Eminem songs.
https://hypebeast.com/2025/1/eminems-team-condemns-song-leaks-info
Tonight on the vx-underground talk show our intern and our Chief Hotdog Analyst will be joining to discuss:
1. Is there malware in tires? Can Goodyear tires prevent malware?
2. Do hotdogs pose a threat to national security?
3. Taking calls from callers