vx-underground
It's the slopocalypse. OSINT nerd Harrris0n has created "Firehound". He (or others, I don't know) have begun the daunting task of hunting AI slop in the Apple app store. They have identified (as of this writing) 198 iOS apps which leak information on usersβ¦
Look at this and tell there is a God
https://gist.github.com/vxunderground/52cd17f363f83792243be814c1e85b30
https://gist.github.com/vxunderground/52cd17f363f83792243be814c1e85b30
Gist
Sample information
GitHub Gist: instantly share code, notes, and snippets.
π’37π₯°14π±11β€5π4π1π1
I've been receiving messages from both Lockbit ransomware group and ALPHV ransomware group for months.
I've been so preoccupied with my newborn son I thought it was an imposter.
They've been trying to tell me stuff, and I just kept sending cat pictures. They eventually gave up and started replying with pictures of cats too.
Β―\_(γ)_/Β―
I've been so preoccupied with my newborn son I thought it was an imposter.
They've been trying to tell me stuff, and I just kept sending cat pictures. They eventually gave up and started replying with pictures of cats too.
Β―\_(γ)_/Β―
π€£179β€37π₯°21π₯1
Today ALPHV ransomware group (who swears they've never rebranded) informed me they've made a new ransomware group with a new and cool and badass name.
I learned a few things.
1. ALPHV follows me on social media. They pay attention to my posts (including kitty cat pictures).
2. ALPHV informed me that they're no longer going to use TOR for ransomware leaks or negotiations because "the FBI can fuck it". Instead everything they do will be stored on the blockchain.
Using the blockchain for malware, and malware accessories, isn't a new malware concept, however it is a relatively ... rare ... or more exotic TTP. If my memory serves me correctly (which it rarely does), the North Korean government has used cryptocurrency blockchains for malware delivery mechanisms and C2 persistence.
They told me they'll be using ICP (Internet Computer Protocol) blockchain.
I initially thought they meant "Insane Clown Posse" blockchain. For a brief moment in time I thought the Juggalos were getting involved in ransomware.
I'm not a cryptocurrency nerd, but they said they use ICP blockchain because ICP can "run smartcontract on server". I have no idea what this means.
What does all of this mean? I don't know. I've been out of the loop on cybercrime TMZ.
I learned a few things.
1. ALPHV follows me on social media. They pay attention to my posts (including kitty cat pictures).
2. ALPHV informed me that they're no longer going to use TOR for ransomware leaks or negotiations because "the FBI can fuck it". Instead everything they do will be stored on the blockchain.
Using the blockchain for malware, and malware accessories, isn't a new malware concept, however it is a relatively ... rare ... or more exotic TTP. If my memory serves me correctly (which it rarely does), the North Korean government has used cryptocurrency blockchains for malware delivery mechanisms and C2 persistence.
They told me they'll be using ICP (Internet Computer Protocol) blockchain.
I initially thought they meant "Insane Clown Posse" blockchain. For a brief moment in time I thought the Juggalos were getting involved in ransomware.
I'm not a cryptocurrency nerd, but they said they use ICP blockchain because ICP can "run smartcontract on server". I have no idea what this means.
What does all of this mean? I don't know. I've been out of the loop on cybercrime TMZ.
π₯°67π29β€10π10π’3β€βπ₯1π1
This media is not supported in your browser
VIEW IN TELEGRAM
Yes, Dmitry Yuryevich Khoroshev, the alleged leader of Lockbit ransomware group, FBI Most Wanted, and sanctioned by the United States Department of Treasury, was attempting to contact me online.
For months I believed him to be an imposter.
This is what I kept sending him:
For months I believed him to be an imposter.
This is what I kept sending him:
π₯°110β€23π12π7π€3β€βπ₯2π₯1π±1π’1
vx-underground
Yes, Dmitry Yuryevich Khoroshev, the alleged leader of Lockbit ransomware group, FBI Most Wanted, and sanctioned by the United States Department of Treasury, was attempting to contact me online. For months I believed him to be an imposter. This is what Iβ¦
> be Dmitry Yuryevich Khoroshev
> bounty of $10,000,000 by FBI
> believed to possess of $4,000,000,000 as a result of criminal extortion
> linked to botnets, money laundering, the russian government, bullet proof hosting
> tries to contact me
> send weird cat videos
imagine unironically being like, a fucking cyber cartel boss and some fucking retard american just keeps sending you cats
> bounty of $10,000,000 by FBI
> believed to possess of $4,000,000,000 as a result of criminal extortion
> linked to botnets, money laundering, the russian government, bullet proof hosting
> tries to contact me
> send weird cat videos
imagine unironically being like, a fucking cyber cartel boss and some fucking retard american just keeps sending you cats
β€119π€£109π₯°28π9π6π₯5β€βπ₯1π1π«‘1
This one year old post has been bothering me.
I felt great discomfort someone hasn't been demented enough to do HTTP stuff as close to the metal as possible with the Windows sockets API (in regards to malware stuff).
I'm not done yet, this code is ... sort of(?) ... in a debug state.
This code connects to HTTPBin, performs a TLS handshake, verifies the web certificate, then performs a simple HTTP GET. The way my code is organized the stage is set to perform HTTP POST to demonstrate data exfiltration to a remote HTTP host.
The next step is basically taking a file, reading it to memory, then uploading it to a remote host and ensuring it was received successfully.
Following the completion of the HTTP post, I'll transform the entire code base into being more position independent. In other words, trying to recreate Windows APIs (like QueryContextAttributesW) to avoid unnecessary (not really "unnecessary", but less hooking opportunities, looks unusual) abstractions. I'll also manually recreate GetProcAddress and do string hashing because ???
When I'm done with this low-level Windows socket C HTTP post example, this code base will probably be well over 3,000 lines of code.
tl;dr 3,000 lines of C or 12 lines of Python code (I tested it, it's literally 12 lines of Python code).
The code so far:
https://gist.github.com/vxunderground/f55edb02b0dbda148f9a3b88669b23c8
I felt great discomfort someone hasn't been demented enough to do HTTP stuff as close to the metal as possible with the Windows sockets API (in regards to malware stuff).
I'm not done yet, this code is ... sort of(?) ... in a debug state.
This code connects to HTTPBin, performs a TLS handshake, verifies the web certificate, then performs a simple HTTP GET. The way my code is organized the stage is set to perform HTTP POST to demonstrate data exfiltration to a remote HTTP host.
The next step is basically taking a file, reading it to memory, then uploading it to a remote host and ensuring it was received successfully.
Following the completion of the HTTP post, I'll transform the entire code base into being more position independent. In other words, trying to recreate Windows APIs (like QueryContextAttributesW) to avoid unnecessary (not really "unnecessary", but less hooking opportunities, looks unusual) abstractions. I'll also manually recreate GetProcAddress and do string hashing because ???
When I'm done with this low-level Windows socket C HTTP post example, this code base will probably be well over 3,000 lines of code.
tl;dr 3,000 lines of C or 12 lines of Python code (I tested it, it's literally 12 lines of Python code).
The code so far:
https://gist.github.com/vxunderground/f55edb02b0dbda148f9a3b88669b23c8
π₯°28π€7β€6π4π€―2π€2
My baby boy is the difficult age where he is learning several things simultaneously:
- How to grow teeth
- How to crawl
- Proto-communication
If you've never had a child, around 7 - 9 months (or later, each baby is different, but that's the average-average) babies will begin proto-communication.
They've picked up on people talking, and communicating back and forth, they understand the concept of sentence structure and vocal inflection being indicative of a question. Theyβunderstandβyouβpausingβbetweenβwords, or pausing and waiting for someone to reply back verbally.
My baby boy now tries to join in conversations because he doesn't want to feel left out. He doesn't understand we're having a conversation, he doesn't even understand words, but he understands the "prototype of communication", hence now, seemingly out of nowhere, he inserts himself into our conversations by screaming like a psychopath and babbling incoherent nonsense.
He favorite "word" is blowing raspberries (pressing your lips together and blowing) and "ge-ge-ge" (think of the GE in "geese") or quite literally screaming as loud as he can.
Another interesting thing about proto-communication is he tries to initiate conversations now. Unfortunately, he does not possess manners. Additionally, he does not respect me as a person, place, or thing. This results in him attempting to start conversations with me, while I'm asleep, at 3 in the morning.
It's very interesting watching my baby boy grow. I remember when my wife first got pregnant and we confirmed the pregnancy visually via ultrasound. He was tiny, probably no greater than the size of a pea. His fetus kind of looked like a little sea horse, or something, and under the ultra sound we could see his little heart beating.
Now we look at him. He is much larger than a pea. He no longer looks like a sea horse (thankfully). He is screaming in my face at 3 in the morning because he wants to "talk". If he isn't screaming at my face at 3 in the morning, he's practicing his hand-eye coordination by trying to feed himself ... by putting food all over his face ... or in his pants ... or in his hair ...
As difficult as it can be being a parent, and as much as you "suffer", there is something oddly rejuvenating about the experience and it somehow (in ways I don't understand yet) makes you feel young again.
- How to grow teeth
- How to crawl
- Proto-communication
If you've never had a child, around 7 - 9 months (or later, each baby is different, but that's the average-average) babies will begin proto-communication.
They've picked up on people talking, and communicating back and forth, they understand the concept of sentence structure and vocal inflection being indicative of a question. Theyβunderstandβyouβpausingβbetweenβwords, or pausing and waiting for someone to reply back verbally.
My baby boy now tries to join in conversations because he doesn't want to feel left out. He doesn't understand we're having a conversation, he doesn't even understand words, but he understands the "prototype of communication", hence now, seemingly out of nowhere, he inserts himself into our conversations by screaming like a psychopath and babbling incoherent nonsense.
He favorite "word" is blowing raspberries (pressing your lips together and blowing) and "ge-ge-ge" (think of the GE in "geese") or quite literally screaming as loud as he can.
Another interesting thing about proto-communication is he tries to initiate conversations now. Unfortunately, he does not possess manners. Additionally, he does not respect me as a person, place, or thing. This results in him attempting to start conversations with me, while I'm asleep, at 3 in the morning.
It's very interesting watching my baby boy grow. I remember when my wife first got pregnant and we confirmed the pregnancy visually via ultrasound. He was tiny, probably no greater than the size of a pea. His fetus kind of looked like a little sea horse, or something, and under the ultra sound we could see his little heart beating.
Now we look at him. He is much larger than a pea. He no longer looks like a sea horse (thankfully). He is screaming in my face at 3 in the morning because he wants to "talk". If he isn't screaming at my face at 3 in the morning, he's practicing his hand-eye coordination by trying to feed himself ... by putting food all over his face ... or in his pants ... or in his hair ...
As difficult as it can be being a parent, and as much as you "suffer", there is something oddly rejuvenating about the experience and it somehow (in ways I don't understand yet) makes you feel young again.
π₯°120β€35π―7π2π1π’1
vx-underground
My baby boy is the difficult age where he is learning several things simultaneously: - How to grow teeth - How to crawl - Proto-communication If you've never had a child, around 7 - 9 months (or later, each baby is different, but that's the average-average)β¦
Okay, I'm done schizo ranting about being a Dad.
Back to your regularly scheduled programming of malware and kitty cats.
I just wanted to share this with someone, even if it means screaming into the void of the internet, because I don't have many friends in real life anymore who I can schizo rant about stuff to (I'm old).
Back to your regularly scheduled programming of malware and kitty cats.
I just wanted to share this with someone, even if it means screaming into the void of the internet, because I don't have many friends in real life anymore who I can schizo rant about stuff to (I'm old).
β€βπ₯85β€25π₯°15π4π€3π2π―2π’1
I was watching this YouTube video of this Russian dude who traveled to North Korea to go sightseeing.
North Korea is notoriously strict on what visitors can and cannot do. Throughout most of the trip he risked his own safety by illegally filming around North Korea on his cell phone.
At one point during the trip he managed to sneak away from his appointed North Korean tour guide. He approached a group of people sitting down, ... just kind of hanging around ..., doing something.
They were very friendly to him.
During the conversation he asked them what they'd like to do in the future. One of the men said, "I hope some day to travel. I really want to see Yugoslavia"
The fuckin' Russian guy looked at him like this when he said "Yugoslavia"
North Korea is notoriously strict on what visitors can and cannot do. Throughout most of the trip he risked his own safety by illegally filming around North Korea on his cell phone.
At one point during the trip he managed to sneak away from his appointed North Korean tour guide. He approached a group of people sitting down, ... just kind of hanging around ..., doing something.
They were very friendly to him.
During the conversation he asked them what they'd like to do in the future. One of the men said, "I hope some day to travel. I really want to see Yugoslavia"
The fuckin' Russian guy looked at him like this when he said "Yugoslavia"
π₯°68π55π’15β€9π€£8π€―4
vx-underground
I was watching this YouTube video of this Russian dude who traveled to North Korea to go sightseeing. North Korea is notoriously strict on what visitors can and cannot do. Throughout most of the trip he risked his own safety by illegally filming around Northβ¦
how-do-we-tell-him-mr-krabs.gif
77.3 KB
For those who don't get it because they're unfamiliar with Europe, or history, or live under a rock like Patrick Star: Yugoslavia hasn't existed since 1992.
π₯°56π27π’16β€5π€£5π4π₯2π€2
My post about the Russian dude visiting North Korea has escaped my core audience and I've got a bunch of random people being like, "PfffT tHaT dIdNt HaPpEn"
What the fuck?
Do you think I'm some kind of anti-North Korean account and I'm dedicating my free time to anti-North Korean posts?
Why would I (or anyone for the matter) go out of their way to lie about something visually documented on YouTube?
Whenever I didn't IMMEDIATELY respond for requests to a link for the video, people began being like, "sEe? iT dIdNt HaPpEn!". Yeah, bro. Let me drop everything I'm doing with my work, and my family, to argue with you fucking dorks on the internet.
I know I shouldn't be this annoyed... but there has been a few occasions now where when I mention North Korea I've got a bunch of schizos trying to disprove anything remotely critical of North Korea. I can't tell if it's unironically a psyop or deranged basement dwellers.
Here's the video, you jackass:
https://www.youtube.com/watch?v=inebLA3HqPo
What the fuck?
Do you think I'm some kind of anti-North Korean account and I'm dedicating my free time to anti-North Korean posts?
Why would I (or anyone for the matter) go out of their way to lie about something visually documented on YouTube?
Whenever I didn't IMMEDIATELY respond for requests to a link for the video, people began being like, "sEe? iT dIdNt HaPpEn!". Yeah, bro. Let me drop everything I'm doing with my work, and my family, to argue with you fucking dorks on the internet.
I know I shouldn't be this annoyed... but there has been a few occasions now where when I mention North Korea I've got a bunch of schizos trying to disprove anything remotely critical of North Korea. I can't tell if it's unironically a psyop or deranged basement dwellers.
Here's the video, you jackass:
https://www.youtube.com/watch?v=inebLA3HqPo
YouTube
North Korea / The Lies and Truth of Kim Jong Un / How People Live (2019)
π₯ INCREDIBLE VIDEOπ https://youtu.be/l-_i0xDDsZE - Somalia: Piracy / How People Live / Hijacking and Ransoms
North Korea Vlog Episode 1. The lies and truth about Kim Jong-un. See the Real Life in North Korea in my documentary. Are you planning to travelβ¦
North Korea Vlog Episode 1. The lies and truth about Kim Jong-un. See the Real Life in North Korea in my documentary. Are you planning to travelβ¦
π€£45π36π₯°12π₯7β€6π«‘5π―4π3π3π’1
Hello,
I appreciate everyone who offers to buy me a beer, or something, if I ever attend a cybersecurity conference. I understand the gesture and I understand it is in good faith.
Unfortunately, in a past life I had a pretty bad drinking problem (and kind of a gambling problem). I've been sober for 11 years.
Thank you
Pic unrelated
I appreciate everyone who offers to buy me a beer, or something, if I ever attend a cybersecurity conference. I understand the gesture and I understand it is in good faith.
Unfortunately, in a past life I had a pretty bad drinking problem (and kind of a gambling problem). I've been sober for 11 years.
Thank you
Pic unrelated
β€132π«‘47π7π₯3π2π’2π₯°1π―1
just received an email from my ISP saying downloading illegally is illegal
Wtf since when???
Wtf since when???
π€£118π11π€7π«‘4π€―3β€2π1π₯°1