Home
Forums
New posts
Search forums
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Search forums
Menu
Log in
Register
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Home
Forums
CARDING & HACKING
HOSTING & BOTNET
One of the ways to extract traffic in 2023
Message
<blockquote data-quote="Ghosthunter" data-source="post: 540" data-attributes="member: 6"><p>Let's start, I think, with the basics and the very beginning. Current file types for infection at the moment:</p><p></p><p><strong>Name.exe</strong></p><p></p><p>A regular encrypted file, usually disguised as a token. Personally, I use a dropper and inflate the file itself to 20-50 MB. I put the launch in 20-30 seconds, since some events may trigger on the instant runexe. So that's the best option for me. Since I started crypting myself, I sometimes have detectors too. 0-2 out of 26 in scanttime and 0-3 in runtime. You can talk about cryptocurrencies for a long time, but not the point, there are a whole bunch of services and people who do this at a professional level. As a small example: A person assured me that he had an absolutely crystal file, but after he changed the region in Windows....</p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.ab40b7492703589b29b527f15a27ccee.png" alt="image.png.ab40b7492703589b29b527f15a27ccee.png" class="fr-fic fr-dii fr-draggable " style="" /></p><p></p><p></p><p>he immediately had detectors. So when using crypts, keep in mind that for the most part, almost all avs and even more so vds have regional databases too. I personally crypt for myself under the USU or under France. (although I know the attack from chekzily base under the YUSA machine)</p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.6c0680afeec82e30e1e3f5b3505e4048.png" alt="image.png.6c0680afeec82e30e1e3f5b3505e4048.png" class="fr-fic fr-dii fr-draggable " style="" /></p><p></p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.50621c236ce82394c9c3480d2a33990b.png" alt="image.png.50621c236ce82394c9c3480d2a33990b.png" class="fr-fic fr-dii fr-draggable " style="" /></p><p></p><p>Carders Club</p><p></p><p>Let's take a closer look at what can be done with the exe</p><p></p><p>First, to get around the total virus itself, you need to inflate the file over 650 MB, since up to 650 MB can be uploaded to <a href="https://www.virustotal.com/gui/home/upload" target="_blank">virustotal</a>.</p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.55cdf13d16ca51bf4ee2aa50ad5acede.png" alt="image.png.55cdf13d16ca51bf4ee2aa50ad5acede.png" class="fr-fic fr-dii fr-draggable " style="" /></p><p></p><p></p><p>It is convenient for some people to spill files like this, because some people start scanning files, which can already protect them at least with this and increase the life of the crypt. There will always be detections for the total virus, because they have a global database, since they are regional on avcheck and other file scanning resources (mostly in the USA).</p><p></p><p>Using files of 650 MB+ is not always convenient, much less replacing them, and so we start using launchers.</p><p></p><p>Walking around the forum, I came across such an interesting thing.</p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.e82faaee0f37569c11dde24eed6adddb.png" alt="image.png.e82faaee0f37569c11dde24eed6adddb.png" class="fr-fic fr-dii fr-draggable " style="" /></p><p></p><p></p><p>It was quite interesting, so I decided to try it out and see what happens.</p><p></p><p><img src="https://forum.exploit.in/uploads/monthly_2022_07/image.png.8e3f99de21a7267908666d823c0aeab5.png" alt="image.png.8e3f99de21a7267908666d823c0aeab5.png" class="fr-fic fr-dii fr-draggable " style="" /></p></blockquote><p></p>
[QUOTE="Ghosthunter, post: 540, member: 6"] Let's start, I think, with the basics and the very beginning. Current file types for infection at the moment: [B]Name.exe[/B] A regular encrypted file, usually disguised as a token. Personally, I use a dropper and inflate the file itself to 20-50 MB. I put the launch in 20-30 seconds, since some events may trigger on the instant runexe. So that's the best option for me. Since I started crypting myself, I sometimes have detectors too. 0-2 out of 26 in scanttime and 0-3 in runtime. You can talk about cryptocurrencies for a long time, but not the point, there are a whole bunch of services and people who do this at a professional level. As a small example: A person assured me that he had an absolutely crystal file, but after he changed the region in Windows.... [IMG alt="image.png.ab40b7492703589b29b527f15a27ccee.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.ab40b7492703589b29b527f15a27ccee.png[/IMG] he immediately had detectors. So when using crypts, keep in mind that for the most part, almost all avs and even more so vds have regional databases too. I personally crypt for myself under the USU or under France. (although I know the attack from chekzily base under the YUSA machine) [IMG alt="image.png.6c0680afeec82e30e1e3f5b3505e4048.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.6c0680afeec82e30e1e3f5b3505e4048.png[/IMG] [IMG alt="image.png.50621c236ce82394c9c3480d2a33990b.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.50621c236ce82394c9c3480d2a33990b.png[/IMG] Carders Club Let's take a closer look at what can be done with the exe First, to get around the total virus itself, you need to inflate the file over 650 MB, since up to 650 MB can be uploaded to [URL='https://www.virustotal.com/gui/home/upload']virustotal[/URL]. [IMG alt="image.png.55cdf13d16ca51bf4ee2aa50ad5acede.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.55cdf13d16ca51bf4ee2aa50ad5acede.png[/IMG] It is convenient for some people to spill files like this, because some people start scanning files, which can already protect them at least with this and increase the life of the crypt. There will always be detections for the total virus, because they have a global database, since they are regional on avcheck and other file scanning resources (mostly in the USA). Using files of 650 MB+ is not always convenient, much less replacing them, and so we start using launchers. Walking around the forum, I came across such an interesting thing. [IMG alt="image.png.e82faaee0f37569c11dde24eed6adddb.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.e82faaee0f37569c11dde24eed6adddb.png[/IMG] It was quite interesting, so I decided to try it out and see what happens. [IMG alt="image.png.8e3f99de21a7267908666d823c0aeab5.png"]https://forum.exploit.in/uploads/monthly_2022_07/image.png.8e3f99de21a7267908666d823c0aeab5.png[/IMG] [/QUOTE]
Name
Verification
Post reply
Home
Forums
CARDING & HACKING
HOSTING & BOTNET
One of the ways to extract traffic in 2023
Top