vx-underground
ultra rare kitty cat
>be me
>work on crappy computer virus website
>uploading 200gb of bad computer programs
>bored
>listening to Primer 55
>looking at cat pictures
ok ttyl, gonna let stuff upload
>work on crappy computer virus website
>uploading 200gb of bad computer programs
>bored
>listening to Primer 55
>looking at cat pictures
ok ttyl, gonna let stuff upload
π58π14π«‘7π3π2π’2π1
vx-underground
Cats π€ Malware
wtf my cat has a computer virus
π±93π₯20π8β€3π2π’1π€1
April 14th, 2025, David M. Dorbish Jr., passed away as a result of a suspected drug overdose.
David M. Dorbish Jr. was a prolific online serial swatter who plead guilty to 15 charges in 2020.
David M. Dorbish Jr. was a prolific online serial swatter who plead guilty to 15 charges in 2020.
π₯96π«‘35π27π€£18π11π6π4β€2π’1
I hate seeing people write and/or say "cyber" in the context of cybersecurity i.e. "I'm studying for cyber right now".
The word "cyber" is an adjective β do you study big, tall, short, tiny, blue, stinky?
/me flips desk
The word "cyber" is an adjective β do you study big, tall, short, tiny, blue, stinky?
/me flips desk
π€£171π―30π13π€11π10π₯5β€3π3β€βπ₯2π’1
Updates to the vx-underground collection:
Papers:
- 2004-06-06 - Execution redirection thru Image File Execution Options key
- 2025-04-07 - Bypass WDAC WinDbg Preview
- 2025-04-17 - Notes on RtlGetUnloadEventTraceEx
Malwares:
- InTheWild.0152
- InTheWild.0153
- InTheWild.0154
- InTheWild.0155
- InTheWild.0156
- InTheWild.0157
- InTheWild.0158
- InTheWild.0159
Papers:
- 2004-06-06 - Execution redirection thru Image File Execution Options key
- 2025-04-07 - Bypass WDAC WinDbg Preview
- 2025-04-17 - Notes on RtlGetUnloadEventTraceEx
Malwares:
- InTheWild.0152
- InTheWild.0153
- InTheWild.0154
- InTheWild.0155
- InTheWild.0156
- InTheWild.0157
- InTheWild.0158
- InTheWild.0159
π₯35β€11π2π«‘2π’1
getting emotional right now, thinking of windows xp and listening to evanescence
https://www.youtube.com/watch?v=5anLPw0Efmo
https://www.youtube.com/watch?v=5anLPw0Efmo
YouTube
Evanescence - My Immortal (Official HD Music Video)
Official HD music video for βMy Immortal,β taken from the bandβs multi-platinum debut Fallen.
Evanescence are celebrating the 20th anniversary of Fallen with a series of special reissues via Craft Recordings.
Details/order: https://found.ee/fallen20
β¦
Evanescence are celebrating the 20th anniversary of Fallen with a series of special reissues via Craft Recordings.
Details/order: https://found.ee/fallen20
β¦
π€£85β€βπ₯43β€11π’9π€7π₯4π―2
Today virus exchange was banned from our (other) hosting provider (Wasabi). They claim our domain virus-dot-exchange has malware on it.
They cited 1 specific file hash and stated virus exchange is disabled until we can explain why we have 1 malware on the server
What the fuck?
They cited 1 specific file hash and stated virus exchange is disabled until we can explain why we have 1 malware on the server
What the fuck?
π€£307π19β€12π€―9π€8π₯4π3π3π―2π€2π2
vx-underground
Today virus exchange was banned from our (other) hosting provider (Wasabi). They claim our domain virus-dot-exchange has malware on it. They cited 1 specific file hash and stated virus exchange is disabled until we can explain why we have 1 malware on theβ¦
No idea what's going on, but the bucket they reference has millions upon millions of malicious binaries.
How did miss the other 36,999,999 malwares
How did miss the other 36,999,999 malwares
π€£197β€34π21π«‘7π3β€βπ₯1π€―1π’1
Discord CEO stepped down. The new upcoming CEO was previously the CEO of Activision. His resume includes the implementation of micro-transactions in Call of Duty.
Imagine if Discord suddenly introduces micro-transactions, like paying $10/month for unlimited call times π
Imagine if Discord suddenly introduces micro-transactions, like paying $10/month for unlimited call times π
π€£163π«‘36π’16π6π6β€1
vx-underground
Discord CEO stepped down. The new upcoming CEO was previously the CEO of Activision. His resume includes the implementation of micro-transactions in Call of Duty. Imagine if Discord suddenly introduces micro-transactions, like paying $10/month for unlimitedβ¦
TeamSpeak is in the restroom, shadowboxing in their underwear, praying to God that Discord does something stupid(er) and results in a user base collapse
β€114π36π26π―4π1π€£1π1
Hello,
To work in IT and/or cyber security...
You don't like have to like Linux, you don't have to like C (or Assembly), you don't have to like Mr Robot, you don't have to go to conferences or meetups, you don't have to prefer IRC over Discord, you don't have to have a fancy setup
You can like or dislike whatever you want. Don't feel pressured to think or behave a certain way.
ok ttyl love u, kissies
- smelly
To work in IT and/or cyber security...
You don't like have to like Linux, you don't have to like C (or Assembly), you don't have to like Mr Robot, you don't have to go to conferences or meetups, you don't have to prefer IRC over Discord, you don't have to have a fancy setup
You can like or dislike whatever you want. Don't feel pressured to think or behave a certain way.
ok ttyl love u, kissies
- smelly
β€253π€40π€£25π―14π10π₯°6π₯4π3π±3π«‘2π1
Windows 11 is the more secure and privacy focused Operating System
Only real privacy enthusiasts use it
Only real privacy enthusiasts use it
π€£119π99π―16π€13π€7β€2π’1
vx-underground
Windows 11 is the more secure and privacy focused Operating System Only real privacy enthusiasts use it
It's so privacy focused, it takes images of what you're doing every 90 seconds to ensure you're not making any opsec mistakes.
It then saves it in a super secure location (APP DATA) so then you can review it later if you want
It then saves it in a super secure location (APP DATA) so then you can review it later if you want
π€£168π31π₯7π7π±4β€3π€2
The naming convention "Trojan" easily confuses people i.e. Remote Access Trojan. Unfortunately, due to successful media campaigns, the term Trojan is now closely affiliated to condoms.
Instead we petition to formally change the term to something which is reminiscent of the term "Trojan Horse", and carries the same meaning
Suggestion: Horse
Example(s):
- Remote Access Horse
- Sophisticated Horse
- "... The Threat Actors inserted a Horse payload into the Word document..."
Laymen can easily identify a horse and they will understand the concept of a horse on the loose is very dangerous. You can explain to customers there is a horse loose in their computer and the horse is causing serious damage.
Instead we petition to formally change the term to something which is reminiscent of the term "Trojan Horse", and carries the same meaning
Suggestion: Horse
Example(s):
- Remote Access Horse
- Sophisticated Horse
- "... The Threat Actors inserted a Horse payload into the Word document..."
Laymen can easily identify a horse and they will understand the concept of a horse on the loose is very dangerous. You can explain to customers there is a horse loose in their computer and the horse is causing serious damage.
π€£125β€40π―9π€7π5π₯5π₯°1π’1
vx-underground
The naming convention "Trojan" easily confuses people i.e. Remote Access Trojan. Unfortunately, due to successful media campaigns, the term Trojan is now closely affiliated to condoms. Instead we petition to formally change the term to something which isβ¦
Imma be real with you, Chat. I've been unfathomably busy IRL and it's brought me immense joy schizo-posting satirical nonsense to thousands of people.
β€βπ₯129π₯°20β€9π8π3π2π€2π’1π«‘1
Earlier today we shared some information on a CEO of a cybersecurity company in Oklahoma, United States, allegedly intentionally deploying malware to a healthcare facility in Oklahoma City.
More details have been presented which paint a different picture than what was originally shared and it kind of complicates the issue presented.
Jeffrey Bowie, the Chief Executive Officer of cybersecurity firm Veritaco, had a warrant for his arrest issued by the United States Federal Bureau of Investigation for allegedly intentionally deploying malware to a client of Veritaco (St. Anthony Hospital). Interestingly, the FBI did not immediately notify Mr. Bowie of the arrest warrant β however they DID notify local media new stations. Mr. Bowie was informed of his arrest warrant by friends, family, and colleagues rather than law enforcement themselves.
Mr. Bowie has publicly released the "source code" of the malware allegedly deployed on the healthcare facility (attached image). The "malware" is a powershell script which takes images of the desktop computer every 20 seconds then sends the images back to a remote server owned by Mr. Bowie. The powershell script was deployed onto 2 machines in the healthcare facility and set to run via Windows task scheduler.
Mr. Bowie asserts the endpoint the "malware" sends data to was terminated in August, 2024. Hence, the code present is basically worthless.
1 of the computers (Computer "A") was publicly accessible and specifically designated for guests to use.
The 2nd computer (Computer "B") remained unlocked (???) was designated for sending and receiving PHI (?). Mr. Bowie asserts "unlike Computer A, no software was written."[sic]
Mr. Bowie has (as of this writing) not explicitly stated why the powershell script took screenshots every 20 seconds. Additionally, no details have been shared as to how long this "malware" has been present on machines.
Mr. Bowie asserts local media outlets have defamed his character and has stated he has placed his faith in judicial system and God to deem him not guilty of any wrong doing.
Image 1. of "malware" source code
Image 2. of him informing the hospital he has removed the "malware" from the 2nd computer
More details have been presented which paint a different picture than what was originally shared and it kind of complicates the issue presented.
Jeffrey Bowie, the Chief Executive Officer of cybersecurity firm Veritaco, had a warrant for his arrest issued by the United States Federal Bureau of Investigation for allegedly intentionally deploying malware to a client of Veritaco (St. Anthony Hospital). Interestingly, the FBI did not immediately notify Mr. Bowie of the arrest warrant β however they DID notify local media new stations. Mr. Bowie was informed of his arrest warrant by friends, family, and colleagues rather than law enforcement themselves.
Mr. Bowie has publicly released the "source code" of the malware allegedly deployed on the healthcare facility (attached image). The "malware" is a powershell script which takes images of the desktop computer every 20 seconds then sends the images back to a remote server owned by Mr. Bowie. The powershell script was deployed onto 2 machines in the healthcare facility and set to run via Windows task scheduler.
Mr. Bowie asserts the endpoint the "malware" sends data to was terminated in August, 2024. Hence, the code present is basically worthless.
1 of the computers (Computer "A") was publicly accessible and specifically designated for guests to use.
The 2nd computer (Computer "B") remained unlocked (???) was designated for sending and receiving PHI (?). Mr. Bowie asserts "unlike Computer A, no software was written."[sic]
Mr. Bowie has (as of this writing) not explicitly stated why the powershell script took screenshots every 20 seconds. Additionally, no details have been shared as to how long this "malware" has been present on machines.
Mr. Bowie asserts local media outlets have defamed his character and has stated he has placed his faith in judicial system and God to deem him not guilty of any wrong doing.
Image 1. of "malware" source code
Image 2. of him informing the hospital he has removed the "malware" from the 2nd computer
π€£68π€11π8π’5β€2π€―2π―1