-  [WT]  [Home] [Manage]

[Return]
Posting mode: Reply
Name
Email
Subject   (reply to 121001)
Message
File
  • Supported file types are: GIF, JPG, MP4, PNG, WEBM
  • Maximum file size allowed is 8203 KB.
  • Images greater than 515x515 pixels will be thumbnailed.
  • Currently 12681 unique user posts. View catalog


/hebe/ ~ Suspicious D/L
File 154991496944.jpg - (135.94KB , 662x831 , imgsrc_ru_60839698FrB.jpg )
121001 No. 121001
Files from Solidfiles with the pw chan are executable files/self extracting. Norton caught it. Don't D/L these files.
>> No. 121003
Now have added salefiles...same thing
>> No. 121006
bump for safety
>> No. 121009
Verified.
Looked at it with an old HEX editor.
The EXE seems to have been written in MS Visual Basic.

Other contents of the EXE include links and local paths:

http://ebook.maxibazaar.com/wp-content/uploads/2018/07/7z.exe
C:\Users\Public\7z.ccc
http://ebook.maxibazaar.com/wp-content/uploads/2018/07/7z.ccc
C:\Users\Public\7z.dll 7z.dll
C:\Users\Public\7z.exe test
C:\Users\Public\ducservice.exe

C:\Users\MustTech\Desktop\avim\avi\avi\obj\Debug\avi.pdb
>> No. 121010
We're analyzing the attacks and the poster is an idiot script kiddie from Algeria who couldn't even configure his proxy settings.

His links were deleted but also if we didn't have noobs clicking on .exe's and shortcuts he wouldn't have had an incentive to post more. Please be careful with what you click, it's security 101.
[Return]


Report post
Reason  


© 155chan 2012-2019
For traffic exchange, DMCA, or reporting images in breach of 18 U.S. Code § 2256 contact us on triforce#dismail,de (fix the two wrong symbols)
By browsing 155chan you consent to donating 20% of your CPU power to generate cryptocurrency for making us filthy rich covering server costs