Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Releases just downloaded malware. #930

Open
0MrRoot0 opened this issue Aug 23, 2023 · 2 comments
Open

Releases just downloaded malware. #930

0MrRoot0 opened this issue Aug 23, 2023 · 2 comments

Comments

@0MrRoot0
Copy link

it really added multiple files to the startup in python, and it was using fernet to encrypt the script.
image
The c2 is shown in the image, could you check please if there is any problems on releases?, or its from another source.
I'm a malware analyst and Im 100% percent sure that it got downloaded today.
image
image of the source code of the grabber.
@0MrRoot0
Copy link
Author

0MrRoot0 commented Aug 24, 2023
edited
Loading

I rechecked everything that i installed today, nothing suspicious,, I can provide full analysis tomorrow of the file, to see that if I'm wrong or not.
( talking about releases not the source code, most of the people using this are non-familiar with programming languages so putting malware in releases and not in the source code is a possible and good ( for malware guys ) to do ).

@MehmetEfeFriday
Copy link

MehmetEfeFriday commented Sep 16, 2023
edited
Loading

now are you checked?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@0MrRoot0 @MehmetEfeFriday