14367
The largest collection of malware source, samples, and papers on the internet. Password: infected Website: https://www.vx-underground.org/ vx-underground Telegram chatroom link: https://t.me/+njfLzUrqos01ZWNh
Even if it is a well-known idea, or the code is rewritten in a different programming language — whatever happened to just coding for fun?
pic related:
Experimenting with a (maybe new?) string obfuscation technique that uses C floating-point numbers fractionals.
The idea is you'd create a dynamically allocated array of FLOATs. Each ordinal in the array would store 2 ASCII encoded characters in the FLOATs fractional.
As an example, to store the string "LOCALAPPDATA" you'd allocate a FLOAT array. The data would look like:
0.76007900 (L, O)
1.67006500 (C, A)
2.76006500 (L, A)
4.80008000 (P, P)
5.68006500 (D, A)
6.84006500 (T, A)
7.00000000 (NULL)
tl;dr unnecessarily convoluted crap
"If I ran Silk Road, I wouldn't have been caught"
Читать полностью…
Ross Ulbricht, congratulations on your Presidential Pardon.
We are praying for you.
We ask God for your loved ones to not expose you to TikTok, AI, or Fortnite. You've been gone too long — your brain won't be able to handle it.
Amen.
Ross Ulbricht's Xitter is being spammed with accounts which appear to be associated with him (image 1). However, the accounts are not. When you try to view the "official" Ross Ulbricht Telegram channel it asks to verify your identity (image 2).
It gives free malware! ♥️♥️♥️
Ross Ulbricht, the creator of the infamous Silk Road, has been pardoned by Donald Trump.
Читать полностью…
Conor Fitzpatrick a/k/a Pompompurin, the ex-administrator to Breach forums, violated his parole agreements almost immediately after his plea deal.
He now faces in excess of 20 years in prison. His next court date in is February.
United States media outlets are saying Donald Trump intends on, honest to God, pardoning Ross Ulbricht. Initially Trump said he'd do it on day 1 — he didn't. Representatives say he still intends on pardoning him
There's a real world chance Ross Ulbricht could discover brain rot
This is a reminder that there is a difference between Pegasus RAT (old, builder and source code archived on VXUG) and Pegasus Spyware produced by NSO Group.
You do not have the source code to Pegasus Spyware from NSO Group. You're not the Mossad.
Thank you to the people who continue to send us cat photos from compromised government e-mails.
It means a lot to us.
> still migrating terabutts of malware
> touch grass
> *fast forward 4 hours*
> get on pc
> whats_new_on_twitter.png.exe
> yappin city about tictoc-toe
> politicians mad tictoc coming back
> people callin 911 about the ban
> some dude sets a politicians office on fire
praying to god we have the first president of the united states to perform a rug pull
Читать полностью…
We'll never forget when, upon initial installation, it was infinite scrolling of half naked women twerking, street fights, and educational videos about turtles.
It was surreal. We never understood it. We uninstalled in less than 2 days.
We're having some problems with our migration and Claude "AI" is not being helpful. 🙄
Читать полностью…
We'll see some cool proof-of-concept, or someone happy to share something they learned (even if it's well known by others), and the comments we see people leave are so rude.
Like, damn bro, just fuckin' be happy for someone that they're learning, or growing, and sharing ideas
Hello,
We fixed it in prod (we're not cowards)
Thanks,
P.S. Your BTC stash (which according to court documents has been seized, but is speculated you still have hidden somewhere) is worth several billion dollars. Please give us like, $100, or something, for a pizza party.
Thanks,
Hello,
We've received a couple of e-mails lately regarding vx-intelligence on Telegram. We are not vx-intelligence. No idea who that is.
¯\_(ツ)_/¯
We broke the site by testing in prod. We'll fix it tomorrow.
Quality assurance is for cowards
He had quite literally the easiest sentencing ever. He was charged for possession of child pornography, dozens of wire fraud charges, aggravated identity theft, etc.
All he had to do was get a job or education, go to therapy, agree to electronic supervision, and not do crime
Imagine Ross Ulbricht is freed, discovers TikTok, brain rot, and Discord, and requests to be put back in prison
Читать полностью…
This is a reminder that there is a difference between Pegasus RAT (old, builder and source code archived on VXUG) and Pegasus Spyware produced by NSO Group.
You do not have the source code to Pegasus Spyware from NSO Group. You're not the Mossad.
Every so often some goober messages us saying they've got the source code to Pegasus Spyware.
WHY WOULD ANDROID AND IOS SPYWARE BE WRITTEN IN C# AND COMPILE INTO A .EXE
Hello,
The site is mostly restored. We're finalizing the migration (167GB of VirusShare blocks).
Following this we will begin the migration of 17TB of the virus exchange database.
https://vx-underground.org/
This is a reminder to everyone that your malware payload does not need to be ultra-1337 for it to be effective or evasive.
In a bit of irony, the more sophisticated you try to make your malware be, more the IOCs you're introducing into your code base.
The goal is to write clean, simplistic, environment specific malware. If you introduce dozens of anti-debug techniques, stack spoofing, sleep obfuscation, VEH system call invocation, server-side or client-side polymorphism, and offensive EDR techniques you're only introducing more things your binary can be identified by from static analysis. If you introduce further methods, like encrypting sections of your binary on disk, you're once again only adding to the pile of shit that makes your binary stick out.
Also, don't let the elitist nerds lie to you — if you handcraft your malware is x86 it WILL be caught lightning fast. Handcrafted assembly looks completely different under the microscope (Ghidra, IDA, whatever) and can make YARA rules easier to make.
Pouring one out for the homies who had weeks of shit posts lined up memeing the death of TikTok
Читать полностью…
Photo sent to us from _FaceFTW.
This is by FAR the rarest kitty cat we've ever seen.
RIP to the homie TikTok.
We'll miss all of your brainrot, pseudo celebrities, and hyper-invasive data collection strategies.
Thanks to daaximus. When I was writing this my compiler kept trying to optimize segments of my code out. He spotted it. Smart guy. Smarter than me.
Also, also, everyone who wrote this using try-catch's or Python or AI is a coward