VBScript Splits&Array v.2.0 [0/56 - 100% FUD] - Janpr99

Mensajes: 987 Registrado: 20 Oct 2011, 21:39 Ubicación: MEMw[0xAC00]

por Janpr99 VIP

Buenas Chavales!
Les traigo esta herramienta para que fudeen sus servers de H-Worm Plus.
Trae 3 opciones Replace, ForNext y Array.
Para que quede claro. Esta herramienta NO cifra el server, solamente separa las secuencias de programación original que es donde los avs meten sus firmas.
Ejemplo: Dim Downloader ==> -D-i-m- -D-o-w-n-l-o-a-d-e-r
Por lo tanto, el server resultante, va a pesar entre unas 10 o 18 veces mas que el original (va desde los ~100kb hasta los ~200kb).
Para Replace y ForNext, eligen una palabra de entre 3 y 6 letras que sera la palabra que usara la herramienta para hacer los splits.
Si utilizan Array, cada carácter programado en el server original sera guardado en un indice diferente de la array. El indice 0 contiene el ultimo carácter del server original. El indice máximo contiene el primer carácter del server original.
Cada vez que genera un server todas las variables son randomizadas y tienen diferentes longitudes. También se randomizan los números.
Para que no se asusten: lleva el server original de H-Worm Plus en recursos, pero sin IP ni PORT.
Este, solamente es usado para crear el server FUD.
Espero que les guste.

Imagen:

Scan Server HWorm Plus Original:
Result: (30/57)
A-Squared(Emisoft AntiMalware) Worm.VBS.Dunihi.BC (B)
Agnitum Clean - Nothing Found
AhnLab V3 Internet Security Clean - Nothing Found
ArcaVir Clean - Nothing Found
Avast BV:Agent-AXJ [Trj]
Avg vir.VBS/Downloader.Agent
Avira VBS/Agent.BH.3 VBS script virus!
Ad-Aware Worm.VBS.Dunihi.BC
Baidu AV Clean - Nothing Found
BitDefender Worm.VBS.Dunihi.BC
BKav vir.VBS/Downloader.Agent/A
BullGuard Internet Security Clean - Nothing Found
ByteHero Potential Virus
ClamAv Clean - Nothing Found
Comodo TrojWare.VBS.Downloader.Zaprap.A@312741182
Dr. Web Clean - Nothing Found
eScan Clean - Nothing Found
eTrust-Vet vir.VBS/Downloader.Agent/A
eScan Internet Security Suite 14 Worm.VBS.Dunihi.BC (DB)
ESET NOD32 Clean - Nothing Found
Fortinet Clean - Nothing Found
Fprot Clean - Nothing Found
FSB Antivirus Clean - Nothing Found
F-Secure Worm.VBS.Dunihi.BC
Gdata Virus: Worm.VBS.Dunihi.BC (Engine A)
Immunet Antivirus Clean - Nothing Found
IObit Malware Fighter Clean - Nothing Found
K7Ultimate NetWorm ( 0040f5f81 )
Kaspersky Internet Security 2015 Worm.VBS.Dinihou.a
KingSoft Clean - Nothing Found
Malwarebytes Anti-Malware Clean - Nothing Found
McAfee VBS/Autorun.worm.aapj
Microsoft Security Essentials Worm:VBS/Jenxcus.K
nProtect Worm.VBS.Dinihou.a
NANO Antivirus Virus: Worm.VBS.Dunihi.BC (Engine A)
Netgate Clean - Nothing Found
Norton Internet Security VBS.Dunihi
Norman Clean - Nothing Found
Outpost Security Suite Pro Trojan.VBS.OldBot.A (Trojan)
Ozone AV Clean - Nothing Found
Panda Antivirus VBS/Safa
PC Tools Clean - Nothing Found
Quick Heal VBS/HBraker.NO
SUPERAntiSpyware Clean - Nothing Found
Solo Clean - Nothing Found
Sophos VBS/Dinihou-G
TotalDefense Clean - Nothing Found
Trendmicro Internet Security Malware detected
TrustPort Antivirus 2014 Clean - Nothing Found
Twister Antivirus 8 WScript.Shell.Reg.Run.DeleteFile
Unthreat AntiVirus BE Worm.VBS.Dunihi.BC
Vexira Worm.VBS.Dunihi.BC
Vipre Internet Security 2014 Worm.VBS.Jenxcus.ah (v)
VirIT Clean - Nothing Found
Webroot Clean - Nothing Found
Zillya Worm.VBS.Dunihi.BC
Zoner Clean - Nothing Found
360 Clean - Nothing Found

Filename: Server.vbs
File MD5 Hash: b666311dc64cde97d88e336cd38e0075
File SHA1: 90342393d0b029a42a9c3693cff6190958a23091
File Size: 14259 Bytes
Time Scanned: 30-01-16, 04:04:42
Scan provided by [Enlace externo eliminado para invitados]
Link to Scan: [Enlace externo eliminado para invitados]

Scan Replace:
Result: (1/57)
A-Squared(Emisoft AntiMalware) Clean - Nothing Found
Agnitum Clean - Nothing Found
AhnLab V3 Internet Security Clean - Nothing Found
ArcaVir Clean - Nothing Found
Avast Clean - Nothing Found
Avg Clean - Nothing Found
Avira Clean - Nothing Found
Ad-Aware Clean - Nothing Found
Baidu AV Clean - Nothing Found
BitDefender Clean - Nothing Found
BKav Clean - Nothing Found
BullGuard Internet Security Clean - Nothing Found
ByteHero Clean - Nothing Found
ClamAv Clean - Nothing Found
Comodo Clean - Nothing Found
Dr. Web Clean - Nothing Found
eScan Clean - Nothing Found
eTrust-Vet Clean - Nothing Found
eScan Internet Security Suite 14 Clean - Nothing Found
ESET NOD32 Clean - Nothing Found
Fortinet Clean - Nothing Found
Fprot Clean - Nothing Found
FSB Antivirus Clean - Nothing Found
F-Secure Worm:VBS/Njw0rm.B
Gdata Clean - Nothing Found
Immunet Antivirus Clean - Nothing Found
IObit Malware Fighter Clean - Nothing Found
K7Ultimate Clean - Nothing Found
Kaspersky Internet Security 2015 Clean - Nothing Found
KingSoft Clean - Nothing Found
Malwarebytes Anti-Malware Clean - Nothing Found
McAfee Clean - Nothing Found
Microsoft Security Essentials Clean - Nothing Found
nProtect Clean - Nothing Found
NANO Antivirus Clean - Nothing Found
Netgate Clean - Nothing Found
Norton Internet Security Clean - Nothing Found
Norman Clean - Nothing Found
Outpost Security Suite Pro Clean - Nothing Found
Ozone AV Clean - Nothing Found
Panda Antivirus Clean - Nothing Found
PC Tools Clean - Nothing Found
Quick Heal Clean - Nothing Found
SUPERAntiSpyware Clean - Nothing Found
Solo Clean - Nothing Found
Sophos Clean - Nothing Found
TotalDefense Clean - Nothing Found
Trendmicro Internet Security Clean - Nothing Found
TrustPort Antivirus 2014 Clean - Nothing Found
Twister Antivirus 8 Clean - Nothing Found
Unthreat AntiVirus BE Clean - Nothing Found
Vexira Clean - Nothing Found
Vipre Internet Security 2014 Clean - Nothing Found
VirIT Clean - Nothing Found
Webroot Clean - Nothing Found
Zillya Clean - Nothing Found
Zoner Clean - Nothing Found
360 Clean - Nothing Found

Filename: CryptedReplace.vbs
File MD5 Hash: 4c05971db20d1b5cc94328390d4c294b
File SHA1: 35adf5b4cd06bddf619d176b37ca055493ba69c4
File Size: 129517 Bytes
Time Scanned: 30-01-16, 02:57:34
Scan provided by [Enlace externo eliminado para invitados]
Link to Scan: [Enlace externo eliminado para invitados]

Scan ForNext:
Result: (1/57)
A-Squared(Emisoft AntiMalware) Clean - Nothing Found
Agnitum Clean - Nothing Found
AhnLab V3 Internet Security Clean - Nothing Found
ArcaVir Clean - Nothing Found
Avast Clean - Nothing Found
Avg Clean - Nothing Found
Avira Clean - Nothing Found
Ad-Aware Clean - Nothing Found
Baidu AV Clean - Nothing Found
BitDefender Clean - Nothing Found
BKav Clean - Nothing Found
BullGuard Internet Security Clean - Nothing Found
ByteHero Clean - Nothing Found
ClamAv Clean - Nothing Found
Comodo Clean - Nothing Found
Dr. Web Clean - Nothing Found
eScan Clean - Nothing Found
eTrust-Vet Clean - Nothing Found
eScan Internet Security Suite 14 Clean - Nothing Found
ESET NOD32 Clean - Nothing Found
Fortinet Clean - Nothing Found
Fprot Clean - Nothing Found
FSB Antivirus Clean - Nothing Found
F-Secure Worm:VBS/Njw0rm.B
Gdata Clean - Nothing Found
Immunet Antivirus Clean - Nothing Found
IObit Malware Fighter Clean - Nothing Found
K7Ultimate Clean - Nothing Found
Kaspersky Internet Security 2015 Clean - Nothing Found
KingSoft Clean - Nothing Found
Malwarebytes Anti-Malware Clean - Nothing Found
McAfee Clean - Nothing Found
Microsoft Security Essentials Clean - Nothing Found
nProtect Clean - Nothing Found
NANO Antivirus Clean - Nothing Found
Netgate Clean - Nothing Found
Norton Internet Security Clean - Nothing Found
Norman Clean - Nothing Found
Outpost Security Suite Pro Clean - Nothing Found
Ozone AV Clean - Nothing Found
Panda Antivirus Clean - Nothing Found
PC Tools Clean - Nothing Found
Quick Heal Clean - Nothing Found
SUPERAntiSpyware Clean - Nothing Found
Solo Clean - Nothing Found
Sophos Clean - Nothing Found
TotalDefense Clean - Nothing Found
Trendmicro Internet Security Clean - Nothing Found
TrustPort Antivirus 2014 Clean - Nothing Found
Twister Antivirus 8 Clean - Nothing Found
Unthreat AntiVirus BE Clean - Nothing Found
Vexira Clean - Nothing Found
Vipre Internet Security 2014 Clean - Nothing Found
VirIT Clean - Nothing Found
Webroot Clean - Nothing Found
Zillya Clean - Nothing Found
Zoner Clean - Nothing Found
360 Clean - Nothing Found

Filename: CryptedForNext.vbs
File MD5 Hash: d80b2ae5f0b6f09860883c34b78c1991
File SHA1: c4982c2f4a0ac4a711038e6624587f79df4d4859
File Size: 129773 Bytes
Time Scanned: 30-01-16, 02:57:00
Scan provided by [Enlace externo eliminado para invitados]
Link to Scan: [Enlace externo eliminado para invitados]

Scan Array:
Result: (0/56)
A-Squared(Emisoft AntiMalware) Clean - Nothing Found
Agnitum Clean - Nothing Found
AhnLab V3 Internet Security Clean - Nothing Found
ArcaVir Clean - Nothing Found
Avast Clean - Nothing Found
Avg Clean - Nothing Found
Avira Clean - Nothing Found
Ad-Aware Clean - Nothing Found
Baidu AV Clean - Nothing Found
BitDefender Clean - Nothing Found
BKav Clean - Nothing Found
BullGuard Internet Security Clean - Nothing Found
ByteHero Clean - Nothing Found
ClamAv Clean - Nothing Found
Comodo Clean - Nothing Found
Dr. Web Clean - Nothing Found
eScan Clean - Nothing Found
eTrust-Vet Clean - Nothing Found
eScan Internet Security Suite 14 Clean - Nothing Found
ESET NOD32 Clean - Nothing Found
Fortinet Clean - Nothing Found
Fprot Clean - Nothing Found
FSB Antivirus Clean - Nothing Found
F-Secure Clean - Nothing Found
Gdata Clean - Nothing Found
Immunet Antivirus Clean - Nothing Found
IObit Malware Fighter Clean - Nothing Found
K7Ultimate Clean - Nothing Found
Kaspersky Internet Security 2015 Clean - Nothing Found
KingSoft Clean - Nothing Found
Malwarebytes Anti-Malware Clean - Nothing Found
McAfee Clean - Nothing Found
Microsoft Security Essentials Clean - Nothing Found
nProtect Clean - Nothing Found
NANO Antivirus Clean - Nothing Found
Netgate Clean - Nothing Found
Norton Internet Security Clean - Nothing Found
Norman Clean - Nothing Found
Outpost Security Suite Pro Clean - Nothing Found
Ozone AV Clean - Nothing Found
Panda Antivirus Clean - Nothing Found
PC Tools Clean - Nothing Found
Quick Heal Clean - Nothing Found
SUPERAntiSpyware Clean - Nothing Found
Solo Clean - Nothing Found
Sophos Clean - Nothing Found
TotalDefense Clean - Nothing Found
Trendmicro Internet Security Clean - Nothing Found
TrustPort Antivirus 2014 Clean - Nothing Found
Twister Antivirus 8 Clean - Nothing Found
Unthreat AntiVirus BE Clean - Nothing Found
Vexira Clean - Nothing Found
Vipre Internet Security 2014 Clean - Nothing Found
VirIT Clean - Nothing Found
Webroot Clean - Nothing Found
Zillya Clean - Nothing Found
Zoner Clean - Nothing Found
360 Clean - Nothing Found

Filename: CryptedArray.vbs
File MD5 Hash: 7e1854af778b8ddb08036764af6b0516
File SHA1: 3ecce3bee7bfe4eeeb6825312d79f25eee682c04
File Size: 198278 Bytes
Time Scanned: 30-01-16, 02:54:25
Scan provided by [Enlace externo eliminado para invitados]
Link to Scan: [Enlace externo eliminado para invitados]

Descarga:
[quote][Enlace externo eliminado para invitados][/quote]
Password (ROT13):
[quote]Rfgn ra ry ovanevb[/quote]

Saludos!

Skype: Janpr99

SadFud

por SadFud Usa camisa de fuerza

Buen trabajo tio!!
Una pregunta, en la plantilla las opciones spread del h-worm estan activadas?
Saludos

666699966999999996699966699999
666699966999999996699966969999
699999966999999996699966996999
666699966999999996699966999699
666699966999999996699966999699
699999996699999966999966996999
699999999669999669999966969999
699999999996666999999966699999

https://reversecodes.wordpress.com

http://indeseables.github.io/

Mensajes: 987 Registrado: 20 Oct 2011, 21:39 Ubicación: MEMw[0xAC00]

por Janpr99 VIP

SadFud escribió:Buen trabajo tio!!
Una pregunta, en la plantilla las opciones spread del h-worm estan activadas?
Saludos

Asi es amigo, vienen activadas por defecto.
Para la proxima version dare a elegir para desactivarlo.
Gracias por el comentario, esta bueno
Saludos

Skype: Janpr99

pelita

por pelita Se medica

Gracias por compartir Janpr99

_ROOTt_

por _ROOTt_ Usa camisa de fuerza

Gracias Janpr99

saludos

indetectables.net
ROOTt_FUD
fuck avs

Nek Banana

por Nek Banana Sin síntomas

Gracias hermano, gran trabajo!

por Scorpio Moderador

Me gusta mucho verte de nuevo activo Janpr99 y te veo fenomenal, nos vemos en Skype.

//Regards

Ikarus: Backdoor.VBS.SafeLoader
Agnitum: Trojan.VBS.Safebot.A
http://indeseables.github.io/

CrypterHacker

por CrypterHacker Usa camisa de fuerza

Gracias Janpr99FUD

MCN · Mensajes: 1182 Registrado: 22 Mar 2014, 17:05 Ubicación: ITALIA

por MCN Usa camisa de fuerza

gracias Janpr99 bueno aparte

si luchas puedes perder si no luchas estas perdido

australopiteco

por australopiteco Se medica

eres un maestro del worm janpr....gracias

there's no place like 127.0.0.1

jusa17 · Mensajes: 472 Registrado: 29 Jul 2009, 01:01

por jusa17 Esquizofrénico

gracias kpo buen aporte!!!

Y3NA · Mensajes: 57 Registrado: 13 May 2009, 17:43 Ubicación: España

por Y3NA Sin síntomas

Muy buen aporte broo

sudo

por sudo Usa camisa de fuerza

wonder14

por wonder14 Sin síntomas

nice share, thanks bro

guru1990

por guru1990 Esquizofrénico

Que GROSSO Janpr99!!

Conecta sin problemas

Buen trabajo compa

Saludos

Luchare Por Ser Inmortal, Aunque Muera En El Intento...

Skype guru1990_

VBScript Splits&Array v.2.0 [0/56 - 100% FUD] - Janpr99

Temas similares

Links sobre el tema

Variantes de tema

VBScript Splits&Array v.2.0 [0/56 - 100% FUD] - Janpr99

Mostrar mensajes previos

Ordenar por

Temas similares

Links sobre el tema

Variantes de tema