vx-underground
47.6K subscribers
4.11K photos
438 videos
84 files
1.49K links
The largest collection of malware source, samples, and papers on the internet.

Password: infected

https://vx-underground.org/
Download Telegram
Blackhats be like "Oh, you're not a Fed? Prove it. Kill an innocent bystander in broad daylight. A Fed would never commit homicide in broad daylight."
🀣81πŸ‘13πŸ€ͺ5πŸ₯°4😁4πŸ€”3πŸ”₯2🀩2
We've updated the vx-underground malware sample collection. We've added 54,258 samples.

Special thanks to petikvx

Check it out here: https://www.vx-underground.org/malware.html
πŸ”₯14πŸ‘6
Methodist Family Health, a non-profit Arkansas-based child healthcare facility, has been ransomed by Avos ransomware group.

Methodist Family Health provides psychiatric assistance to children who have been abandoned, abused, or neglected.
😒104🀯12🀣5😱3πŸŽ‰2
We have never seen a ransomware group target a non-profit child healthcare facility - especially one which deals with children who are victims of abuse.
😒110🀯15🀣6😱3πŸ™3πŸ”₯2πŸ‘1πŸ€”1
This beat and video was produced by some random guy vx-underground encountered online on Telegram. The beat slaps.

https://www.youtube.com/watch?v=1xpd5c-uPAs
πŸ”₯12πŸ™3🫑1
🀣39πŸ€”6😒2😁1
March 6th: EUROPOL announced the arrest of 2 individuals tied to DoppelPaymer ransomware group. German authorities state the March 6th arrests were related to a ransomware attack which resulted in the death of a patient September 18th, 2020 at DΓΌsseldorf Hospital.
😒26πŸŽ‰3πŸ‘2🀣2
As well as the arrests, the German government has issued warrants for arrest of 2 individuals.

1. Igor Turashev, the alleged 2nd in command for Evil Corp.

2. Irina Zemlianikina, another ransomware operator associated with Evil Corp.
🀣59🀯10πŸ‘8❀1
The German government issued a warrant for Irina's arrest right before International Women's Day:(
🀣49πŸ₯°14🫑11😱2πŸ‘1😘1
The German government now posts images of wanted cyber criminals on posters in Berlin

Images via Joe Tidy / BBC
🀣59πŸ‘9😒6πŸ‘4πŸ€”1
vx-underground was briefly shown on National Geographic last week on an episode about cyber crime.

We are not a hacker forum.

The green links are links they clicked. National Geographic clearly has no interest in Windows malware papers.
🀣146😁9πŸ‘6🫑4
We've archived the vx-underground APT collection for the year 2022. You can now download every APT sample and paper from the year 2022 in bulk.

- 4,848 malware samples
- 480 papers
- 6.47GB (compressed)

Check it out here: https://samples.vx-underground.org/samples/Blocks/APT%20Collection/
πŸ‘13πŸ”₯7❀‍πŸ”₯2
Some individuals from Fiverr, an online freelancer marketplace, have contacted vx-underground.

A Threat Actor is social engineering freelancers, tricking them into running a loader which executes Redline stealer.

AnyRun Analysis: https://app.any.run/tasks/993103a3-2430-4b1c-8c6f-59a00913067d/
πŸ‘24πŸ‘5
Yesterday Rob Joyce, the Director of the United States National Security Agency (NSA), asked Twitter users to caption an old photo of him. He did not like our title caption:(
🀣116πŸŽ‰14😁10πŸ‘6❀3😒3🫑2
This media is not supported in your browser
VIEW IN TELEGRAM
More context on vx-underground being featured on National Geographic

Video courtesy of realhackhistory
🀣66πŸ”₯4πŸ‘2😁2🀯1
We've updated the vx-underground Windows malware kernel paper collection.

- Lord Of The Ring0 - Part 1 - Part 4

Check it out here: https://www.vx-underground.org/windows.html#kernel_mode
πŸ‘14❀7πŸ’―2πŸ”₯1
Lockbit ransomware group has ransomed a 3rd party parts manufacturer for SpaceX - they claim to possess over 3,000 proprietary schematics for SpaceX.

In the ransom announcement Lockbit issued a message to Elon Musk and SpaceX employees, taunting them.

Information via AlvieriD
πŸ”₯48🀣16πŸ‘7😱5πŸŽ‰1
Ring LLC, the home security and smart home company owned by Amazon, has been ransomed by ALPHV ransomware group.

They left a simple message to Ring: "There's always the option to let us leak your data".
🀣56😱5❀‍πŸ”₯3πŸ‘2πŸ‘1