Forwarded from vx-underground
> check tele
> "smelly i think someone sent me malware"
> "they sent me weird .zip"
> "be careful"
> wtf i love malware
> download file
> look inside
> .txt + alternate data stream file
> ads doesnt work with 7z
> ok lol
> look inside
> 7z x "dox[.]zip" -so > payload.vbs
> winhttp request to github
> github\minecraftstuff\discordemojis.txt
> download discordemojis.txt
> look inside
> heavily obfuscated .bat file
> bonk with stick
> powershell script
> ???
> checks for av stuff
> does steganography
> downloads from ibb.co
> look inside
> quasar rat
> hides in made fonts directory in roaming
most work ive seen put into a malware payload in awhile with 2 stages and stego, usually its FAKE_GAME_INSTALLER.JPEG.EXE
> "smelly i think someone sent me malware"
> "they sent me weird .zip"
> "be careful"
> wtf i love malware
> download file
> look inside
> .txt + alternate data stream file
> ads doesnt work with 7z
> ok lol
> look inside
> 7z x "dox[.]zip" -so > payload.vbs
> winhttp request to github
> github\minecraftstuff\discordemojis.txt
> download discordemojis.txt
> look inside
> heavily obfuscated .bat file
> bonk with stick
> powershell script
> ???
> checks for av stuff
> does steganography
> downloads from ibb.co
> look inside
> quasar rat
> hides in made fonts directory in roaming
most work ive seen put into a malware payload in awhile with 2 stages and stego, usually its FAKE_GAME_INSTALLER.JPEG.EXE
Forwarded from Rerum Novarum // Intel, Breaking News, and Alerts 🇺🇸
🇺🇸🇮🇱⚡️- President Trump shared an article written by disgraced Jewish activist Gavin Wax who last year led a public doxing and harassment campaign against Young Republican activists who personally opposed him last Fall.
Despite widespread calls for Wax to be fired from his job in the Trump Admin he remains in place and now openly endorsed by the President.
Despite widespread calls for Wax to be fired from his job in the Trump Admin he remains in place and now openly endorsed by the President.
Forwarded from King Koopa's Shellposting Kingdom (Cristiano Rosa)
Forwarded from placeholder
aiwen's gemerald extraction facility
someone set up a bot to forward every message I sent to this channel someplace else and I personally find it amusing. My memes are too fire I guess
Help! I'm trapped in these logs scrapped by a fat antifa troon