40630
The largest collection of malware source, samples, and papers on the internet. Password: infected https://vx-underground.org/
On Monday someone sent me a URL to a website trying to do click-fix targeting MacOS. I missed the message because the X DM system is a broken piece of shit.
The website is 100% malicious, but the final C2 part is dead. Staging payload still works.
I MISSED FREE MAC MALWARE
Would it be the dumbest thing I've done? Maybe
Would it be cool and badass? Yes
Yeah, these guys are not the brains behind the operation. I can't imagine someone technically savvy enough to develop ATM malware to then brag on social media about it
Читать полностью…
I've updated malwaresourcecode.com
I've demonstrated some unusual ways to achieve rand() (random integer) using RtlUniform, IOCTL Cng, IOCTL KsecDD, and CryptographicBufferStatics
Why? Because I like weird stuff
Love you
Firefox is adding AI to the web browser.
Yeah, I'm killing myself tonight.
https://www.phoronix.com/news/Mozilla-New-CEO-AI
I have a website for my malware source code. I have named it "malwaresourcecode", a very unique and inspiring name
malwaresourcecode.com
I'm actually laughing. One of the compromises is so dumb.
Her and her colleagues were responsible for compromising A CAR WASH in the United States (Florida). They modified car wash systems and system placements
What kind of petty shit is this? This is like a small business owner who charges $6 a car wash. Imagine being the poor bastard who owns the business and being informed by the United States government that your small business was compromised by the Russian Federation because ???
Tbf tho I was like, 16 at the time. I'm in my 30s now. If I had to enroll now id probably just walk in, sit down, poop my pants, and lock in. Idk
Читать полностью…
Dear Telegram nerds,
I've been AFK because it's been the holiday season. I've mostly been memeing to posts on Xitter. I'm not sure if any of you give a fuck, but tomorrow or Monday I'm doing a pseudo random giveaway thingie. I'm giving away $119,000 of cybersecurity courses. I'm gifting 400 people Cyber Warfare Live Infinity lab things.
https://x.com/vxunderground/status/1994830660704358684
Correction: 250,000+ upvotes.
If Xitter was a real place Tim Sweeney would be in serious trouble. After seeing this insane RATIO he probably wiped tears from his eyes with $100 bills while resting in his 5th Lamborghini
https://x.com/Bricker_Man/status/1994041026575798322
I was sitting here and I was like, "I wonder if any vendors have released any malware research papers? It's a major holiday in the United States, surely it's slowed down"
I check my MISP thingie and 27 papers released in the past 2 days
WHO ARE YOU PEOPLE
Big news for stinky nerds.
I've got a massive fuckin' giveaway. I've got a voucher for either a COMPTIA SEC+ or a ISC2 Systems Security Certified Practitioner (SSCP).
Both of these are great for your career.
But, I'm not going to give this shit away to some random fucking nerd in a comment section. This is the type of gift that could accelerate someones career and change someones life.
Some giveaways people burn, watch YouTube shorts, and shoot-the-shit with their friends on Discord calls like a bunch of bums. This is going to vetted. When I gift this to someone I expect them to follow through with it.
If you're gifted a career changing gift and you squander it I WILL lose my mind.
More information coming soon.
Some silly stuff happening this Thanksgiving.
Mixpanel, a company that lets your company perform analytics on your ChatGPT slop, has been compromised. However, because Mixpanel requires you having an OpenAI account, and does analysis on your ChatGPT slop, some media outlets are mischaracterizing it as an OpenAI compromise.
Mixpanel has stated several times this is NOT an OpenAI breach presumably because they don't want Sam Altman and his group of bazillbobillionaires to physically beat Mixpanel executives to death with a shovel
I haven't returned to the idea in so long I didn't realize these nerds kind of did it. It's not a full POC, but it's closed to what I've been toying with for awhile
https://www.praetorian.com/blog/leveraging-microsoft-text-services-framework-tsf-for-red-team-operations/
> make post about trying to contact Tren De Aragua
> get DMs
> "Uhhh hey, Smelly. TdA is very dangerous. I really don't think you should get involved with them
Bro, you think I'd actually try to contact them? They fucking murder people.
Also, I don't judge a book by it's cover, okay? I don't wanna sound like a hater but these individuals do not look friendly and I have a feeling they won't like my cat pictures
Me wondering if I should try to contact Tren De Aragua, a violent, transnational prison-formed street gang which operates as a cartel, rival to the infamous MS13, who is involved in murder for hire, kidnapping, maiming, drug trafficking, prostitution, money laundering, bribery, and extortion.
... so I can send them cat pictures and ask for their ATM malware
United States Department of Justice, Nebraska, indicts over 50 people involved in transnational gang TdA for deploying malware onto ATMs for "ATM Jackpotting"
Wtf that's badass (except the murder, extortion, maiming, etc. just interested in the malware)
https://www.justice.gov/usao-ne/pr/tren-de-aragua-members-and-leaders-indicted-multi-million-dollar-atm-jackpotting-scheme
I JUST WANT A REGULAR COMPUTER. LEAVE ME ALONE.
Читать полностью…
Hi,
I've made updates to that website where I share my malware proof-of-concept and malware source code snippets. I have no idea what to call it yet other than malwaresourcecode-dot-com.
I've added updated definitions of the Process Environment Block and Thread Environment Block. My previous definitions were extremely outdated. New definitions are the work of m417z
.
I've introduced new string hashing code segments. These are all well-known and famous string hashing algorithms. I've written them to be more Windows-specific. None make usage of the CRT in the event you are writing PIC.
Moving forward, all code will have a basic usage example. Newly updated string hashing methods display show basic usage.
For the curious: are all these string hashing methods necessary? No. Most will use Djb2, Rotr32+13, or LoseLose. However, if you want to write slightly more unique malware code, or you're just curious what they look like, they're there for you to poke with a stick. I had a lot of fun rewriting them and looking at them (math is for nerds)
https://malwaresourcecode.com/
Hello,
I have updated malware city. New malware has arrived. Please greet the malware. They're new in town.
https://vx-underground.org/Updates
The United States government has indicted a state-sponsored Threat Actor named Victoria Eduardovna Dubranova a/k/a Vika a/k/a Sovasonya
tl;dr she is facing 30 years to LIFE IN PRISON.
She is a citizen of Ukraine, however she acted on-behalf of the Russian Federation. Her colleagues were members of the Russian Federations military.
Initially I planned on doing write-up on her indictment, discuss her charges, etc, but the United States Department of Justice has documented her being tied to 99 offensive cybersecurity campaigns.
NINETY-NINE. 99.
It's 38 pages detailing her crimes, and this isn't even the full court documents because some are still sealed. The list of charges goes back to 2022.
She kind of got fucked over though, her criminal complaint is her and a bunch of other people who (in some capacity) were associated with the Russian government. By all accounts, it appears Ms. Dubranova was primarily responsible for video editing, managing money, running social media profiles, and misinformation campaigns.
She's in big trouble though because her associates (who she aided and abetted) in one instance compromised an ICS/SCADA in for a children's water park in the Netherlands, tampered with water temperature, and intentionally modified the chlorination levels.
In another instance, her colleagues compromised an oil and gas company, modified system temperatures, and caused an unknown amount of damage to the company.
In yet another instance, her colleagues compromised (another) oil and gas company, depleted onsite chemical supplies, and increased injection rates into oil wells
In yet another (another) instance, her colleagues compromised a public water system in the United States (Indiana), activated all pumps, and tampered with public water supply.
In yet (yet) another (another) instance, her colleagues compromised (another) public water system in the United States (Texas), shutdown pump set points, which resulted in the loss of 200,000 gallons of water for people in the State of Texas
In yet another (another one), her colleagues compromised an ICS/SCADA system in the United States (Pennsylvania), which resulted in the damage to a water treatment system, tampering with water pumps and levels of parasitic acid contamination
SHE'S TIED TO 99 OF THESE DAWG. SHE'S IN SO MUCH TROUBLE. SHE'S COOKED. IT'S GAME OVER.
Hello,
I'm a little behind schedule, but I've pushed a pretty big update to vx-underground. Please look at it and download the malware (or don't, whatever)
https://vx-underground.org/Updates
Tbh bro girls who go into computer stuff are way fuckin braver than me
A long time ago I was considering going into healthcare. I enrolled in this nursing class thingie.
I went into the enrollment place and it was literally all women and 1 super buff Chad looking dude.
I walked into the room. I glanced in. The women turned and looked at me, this weird stinky nerd, and I got so nervous I turned around and left
P much pooped my pants. Idk why I got so scared. But it was scary.
Thank you, young art student person place or thing.
It is very nice.
I didn't see the face behind everything originally because I don't have my glasses on (I'm old and stinky).
Post
See new posts
Conversation
vx-underground
@vxunderground
Big drama on the internet today (a very real and serious place)
On Steam video games that have used AI to aid in the assistance of the game are given a "made with AI" tag.
Tim Sweeney, CEO of Epic Games, thinks this is a poor decision and says they will not be doing this on their platform
As you could probably imagine, this has made gamers go fuckin spazzo on Epic Games. Gamers have concluded Steam has (once again) won the "battle" by doing nothing.
Mr. Sweeney was ruthlessly flamed on social media for it. Some reposts got as many as 150,000 upvotes.
Will this make Epic Games change their mind? Probably not, no
Is it fun to throw tomatoes at wealthy people, politicians, and large businesses? Yes
To the person who keeps sending me e-mails from the alleged compromised Papa Johns email,
I can't tell if you're memeing or not. You keep e-mailing journalists and stuff but the e-mail is flagged as failing domain authentication. I don't know what you're doing.
"SAM, I SWEAR I DIDNT SAY U WERE COMPROMISED. IM SORRY SAM, PLEASE DONT BREAK MY LEGS"
Читать полностью…
Letting bro hide until the coast is clear. Fuck the police
Читать полностью…
It's not even like, super cool or 1337. It's just something that's been bugging me for years. I was annoyed that no one produced code for it and I didn't get it working. It was like an itch I couldn't get to go away.
Читать полностью…