vx-underground

09 Feb 2024 20:01

We've updated our Windows malware paper collection

- 2023-11-22 - ETW internals for security research & forensics
- 2024-02-08 - Bypassing ApplyOnce limitation in GPO with key removal
- 2024-02-08 - Executing CSharp Assemblies from C code
- 2024-02-09 - Sudo On Windows

vx-underground

09 Feb 2024 03:29

The new Windows 11 sudo.exe is displaying something strange in IDA 🤔🤔🤔 what could it mean

vx-underground

08 Feb 2024 18:57

Hello,

As is tradition, we accidentally did an oopsie. Our search function is botched and downloads on files aren't working. We pushed some code to prod without actually testing if the file download part worked.

Testing code before pushing to prod is for nerds

Thanks,

vx-underground

08 Feb 2024 11:13

We apologize if you visit vx-underground and you're greeted with a Cloudflare waiting room (queue system).

We've been getting DDoS'd for the past 7 hours+, the longest we've ever been DDoS'd

tl;dr toothbrush's all across the globe have begun attacking us

vx-underground

08 Feb 2024 09:05

If you don't have a Valentine for Valentine's Day, we'll be your Valentine.

vx-underground

07 Feb 2024 23:59

We have conducted the largest DdoS attack in history. We are sending 572^265 TiBs/second using 3 hamsters and an old soggy toothbrush we found on the side of the road

(Toothbrush not pictured)

vx-underground

07 Feb 2024 20:06

Give us toothbrush malware samples or you're a goddamn liar >:(

https://www.zdnet.com/home-and-office/smart-home/3-million-smart-toothbrushes-were-just-used-in-a-ddos-attack-really/

vx-underground

07 Feb 2024 03:20

We spoke with Lockbit ransomware group regarding the allegations of murder. Lockbit administration staff said they never explicitly stated they wanted the XSS administrator murdered - they said they will do as they deem fit when they get his personal information.

vx-underground

07 Feb 2024 00:36

Some researchers are questioning the validity of this statement, asserting that these are the result of a malware stealer

vx-underground

06 Feb 2024 16:57

To our beloved scraping friends,

We now have a sitemap to make your lives easier.

🫡🫡🫡🫡

vx-underground

06 Feb 2024 09:34

Binance has announced they're delisting XMR

vx-underground

06 Feb 2024 04:08

Finland's National Bureau of Investigation (NBI) identified and arrested an individual by getting his fingerprints ... from a photograph made by a phone.

Attached image is where they got his fingerprints

More information: https://yle.fi/a/74-20058572

vx-underground

06 Feb 2024 02:39

vx-underground harddrive cloner station is now live

Benefits include

- Poor wire management
- Extreme heat coming from area
- Probably an electrical fire hazard
- On the floor so dog trips over it
- Nested below cheap $40 desk that bends and wobbles

vx-underground

05 Feb 2024 23:01

Imagine if we had a Human Resources department

vx-underground

05 Feb 2024 21:49

Alternate title: this man is experiencing a drug-induced psychosis, those are not real Apple Vision Pro's

vx-underground

09 Feb 2024 17:11

Today James Forshaw (tiraniddo) did a quick assessment on the new Windows 11 Sudo.exe.

Despite his quick assessment, the blog post is wonderful. It is an excellent read. We recommend it:)

tl;dr fancier ShellExecute 😭

https://www.tiraniddo.dev/2024/02/sudo-on-windows-quick-rundown.html

vx-underground

09 Feb 2024 00:51

Problem has been resolved. Please continue downloading malware.

vx-underground

08 Feb 2024 18:29

Some nerd is visiting vx-underground, with a wilderness background, to bamboozle us into believing they're outside.

We should have known Apple Vision Pro nerds wouldn't go outside 😡

vx-underground

08 Feb 2024 10:56

We've updated the vx-underground Malware Analysis collection. We've added 86 new papers.

Thanks to our friends over at @malpedia for helping us stay up-to-date every month.

Check it out here: https://vx-underground.org/Papers/Malware%20Defense/Malware%20Analysis

vx-underground

08 Feb 2024 06:57

Cloudflare is cool and badass

vx-underground

07 Feb 2024 22:14

We've updated the vx-underground Windows malware paper collection

- 2024-01-22 - Demonstrating proxy DLL loading
- 2024-01-24 - Demonstrating Remote TLS Callback Injection
- 2024-02-01 - Unmanaged .NET Patching
- 2024-02-02 - GetProcAddress usage via ordinal

vx-underground

07 Feb 2024 07:26

The IGN Twitter account is compromised. It's remarkable how sneakily Epsilon group took control.

The Discord in their Twitter profile is not IGNs. It links to a Discord server Epsilon group controls.

vx-underground

07 Feb 2024 01:42

Lockbit ransomware group conflict with XSS forum administration is escalating. Lockbit ransomware group is threatening to have XSS forum administrator murdered (???).

We have never witnessed such a visceral reaction to being banned from a forum and being labeled a scammer.

vx-underground

07 Feb 2024 00:24

A Threat Actor operating under the name "Poopingman" claims to have compromised "JoinTheRealWorld" also known as "Hustler's University". It is a website owned by Andrew Tate.

vx-underground

06 Feb 2024 15:50

Hello,

Per request our search functionality has now returned! Hooray!

vx-underground

06 Feb 2024 04:54

Update on cloner station

- It puts out a lot of heat
- Cable management has worsened

vx-underground

06 Feb 2024 03:08

the vx-underground search functionality will be returning and go live in the next few days

(assuming it doesnt crash and burn)

vx-underground

05 Feb 2024 23:19

We've updated the vx-underground APT collection for January, 2024.

Check it out here: https://vx-underground.org/APTs/2024

vx-underground

05 Feb 2024 21:52

The NSA as they're watching your degeneracy in-real-time through your Apple Vision Pro's

vx-underground

05 Feb 2024 21:48

You can now debug your code as you run errands