mikero123

Members
 View Profile  See their activity

  • Content Count

    11

  • Last visited

Posts posted by mikero123

  1. Posted

    ThreatFabric specialists told about the new ERMAC Trojan, which so far attacks only Polish users, but targets 378 banking applications and wallet applications.

    The researchers write that ERMAC is based on the sources of the well-known malware Cerberus and it is controlled by the group behind the malware BlackRock. In addition to common features with Cerberus, the new malware is distinguished by the use of obfuscation and Blowfish encryption for communication with the managing server.

    It is believed that the first attacks using ERMAC began at the end of August 2021, and then the malware masqueraded as a Google Chrome application. The researchers also witnessed how ERMAC disguises itself as antivirus, banking and multimedia applications, as well as delivery service applications and many others.

    campaigns.png

     

    The first mention of ERMAC appeared on the hack forum in the summer of this year. Then someone under the nickname DukeEugene offered potential customers to "rent a new botnet for Android with extensive functionality" for $ 3,000 per month.

    DukeEugene is one of the creators of BlackRock, a malware that ThreatFabric experts talked about last year. This malware, designed to steal data, combined the functions of an infostiler and a keylogger, and was created on the basis of another banking Trojan, Xerxes (which, in turn, is a derivative of LokiBot for Android, whose source code was made publicly available in May 2019).

    Experts note that they have not seen fresh samples of BlackRock for a long time, but ERMAC appeared. That is, probably, "Dukeeugene switched from using BlackRock to ERMAC."

    ERMAC, like other bankers, is designed to steal contact information, text messages, open arbitrary applications and launch overlays for a variety of financial applications (in order to obtain credentials). In addition, it has a number of new features that, for example, allow it to clear the cache of certain applications and steal accounts stored on the device.

    "The history of ERMAC proves once again how malware source code leaks can lead not only to the slow disappearance of these malware families, but also to the emergence of new threats and intruders," the experts conclude.

  4. Posted

     

    [align=center]Hello

    I always knew remote desktop protocol (RDP) is crackable and tried it but never really got hits but finally I decided to get better in this so I spent some time and checked all RDP cracking tools available on the internet, compared them and found the best possible way in my opinion to do this. And all this with one tool which isn't that popularized in cracking community.

     

    If you dont know what RDP is, it's remote desktop protocol where with valid credentials (IP, login, password) you can connect to someone's PC or server and from desktop do pretty much anything, it might be browsing their files, passwords or just using their computing power to run your programs which is usefull for crackers or crypto miners. When you get some hits you can continue cracking more RDPs on cracked ones  pepo_broly_sucks.png Just search remote desktop in your Windows smile.png[/align]

     

     

    thanks bro for this gracias

  5. Posted

    I did not crack it.Easy to use if you hate the SQLIDumpers Dork searcher lol.

    Virustotal : https://www.virustotal.com/#/file/3aad4931bc76e1d654e5fe3fc6a1a10277b0d66190a8547782a3d7fa117ccc27/detection

    Download :

     

    lets check this out , thanks

  8. Posted

    Quote

    Sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.

     

    Show support for a more advanced tutorial ++ I'm not going to waste my time if people just leech. The tutorial is inside hide tags to keep the thread active.

     

     

     

     

    lol

  11. Posted

    I LOVE GOD

     

    Welcome everyone, today we will be discussing; |Dorks|Sqli Dumper|. 

    First, As you already know, dorks are the key to good cracking with SQLi, 

    you see these people in All Forums, and they always are getting hundreds of HQ Accounts How!!? and why you can't do that too !?.

     Well now you can join them, you too can be a successful cracker. some guys talk about using paid programs to get HQ Dorks,

     but if you are just a normal guy, who want to make a HQ dorks without spending money, then this is for you.

    Second, If You are using a Dorks Generator I will tell you You are Just losing your time. Why!? I tell you! 

    when 10 people Genered the same list of dorks Do not call this private dorks because all of you, you will get the same Adds and the same Combos So don't call that Private !!?

    Ok Let's Stop Talking And Begin ^^

     I will showing you how to get the most HQ Dorks, Geting HQ Combos, all for free, using smart methods.

     So let us Begin but before I need You To Know That I brought you the best composants Of Dorks [|PageTypepageFormat|],

     and i need you to know That the keywords are indispensable for Geting HQ Dorks. The question is why!!? 

    because the [|PageType & pageFormat|] are the most Important in Dorks.

     i give exemple :

     

    Good Dorks But You will get shity Combos

    Spoiler 

    Quote

     [/color]

     

     

    This Tutorial took me a lot of time

     

    :fiesta:

    , thats actually vari nais