Terex Posted April 17, 2018 Report Posted April 17, 2018 (edited) Cu acest micut soft puteti trimite sms-uri nelimitate si gratuite catre orice numar mobil (doar romania) Daca nu aveti incredere in acest soft...puteti trimite sms-uri si online pe www.opa-sms.ro Download PS:Daca apasati butonul trimite credeti ca imi va cadea serverul ? nu puteti da atack pS:softul a fost dezactivat activ doar pe site Edited April 18, 2018 by Terex 5 Quote
rubentiti Posted April 17, 2018 Report Posted April 17, 2018 In ce limbaj e scris ? Ti-ai facut server propriu ? Sau folosesti un serviciu oferit de altii ? Quote
Terex Posted April 17, 2018 Author Report Posted April 17, 2018 (edited) server propriu ,pot oferii si acces api Edited April 17, 2018 by Terex 1 Quote
zeropoint Posted April 17, 2018 Report Posted April 17, 2018 11 hours ago, rubentiti said: In ce limbaj e scris ? Ti-ai facut server propriu ? Sau folosesti un serviciu oferit de altii ? Quote
Terex Posted April 18, 2018 Author Report Posted April 18, 2018 7 hours ago, zeropoint said: si cei cu asta ? Quote
yoyois Posted April 18, 2018 Report Posted April 18, 2018 (edited) 18 minutes ago, Voronel said: Multumesc pt. sampling https://www.virustotal.com/#/file/9264ff9bc79c62f0b92014f32e32120b79452f05b330cc3e8180b098fa466339/detection Esti sigur ca e virus? Din ce am vazut eu omul are un Laravel PHP Framework pe site (prost configurat) si e legat de un smsgateway.me Presupun ca are un android cu sms nelimitate in ro legat prin api de la Sms Gateway. Asa e @Terex? LE: nu trimiteti mesaje in strainatate sau la numere speciale, nu cred ca face filtering la numere.(ca nu e in tutorialul de la sms gateway) Edited April 18, 2018 by yoyois Quote
yoyois Posted April 18, 2018 Report Posted April 18, 2018 2 hours ago, Voronel said: https://www.hybrid-analysis.com/sample/9264ff9bc79c62f0b92014f32e32120b79452f05b330cc3e8180b098fa466339/5ad70f4b7ca3e108f17eee73 Threat Score: 66/100 AV Detection: Yes Sa fie false positive? Clar. Merci! Virustotal da raporturi cam aiurea. Quote
Guest Posted April 18, 2018 Report Posted April 18, 2018 Voi descarcati toate cacaturile de pe net si le rulati ca niste idioti pe sistemul real. Indiferent de scorul VT trebuie rulat prima data in virtual si apoi puteti decide daca e curat sau nu, ca e luat din balarii. Quote
Terex Posted April 18, 2018 Author Report Posted April 18, 2018 6 hours ago, yoyois said: Esti sigur ca e virus? Din ce am vazut eu omul are un Laravel PHP Framework pe site (prost configurat) si e legat de un smsgateway.me Presupun ca are un android cu sms nelimitate in ro legat prin api de la Sms Gateway. Asa e @Terex? LE: nu trimiteti mesaje in strainatate sau la numere speciale, nu cred ca face filtering la numere.(ca nu e in tutorialul de la sms gateway) ai perfecta dreptate..ai facut decompiling la 'soft' Quote
Guest Posted April 19, 2018 Report Posted April 19, 2018 Dar si aplicatia asta desktop de SMS sunt 99,99% sigur ca e scrisa in C# si ca o puteti decompila cu dotPeek, si astfel puteti avea o idee daca e malitioasa sau nu. Quote
yoyois Posted April 19, 2018 Report Posted April 19, 2018 (edited) 2 hours ago, aismen said: Dar si aplicatia asta desktop de SMS sunt 99,99% sigur ca e scrisa in C# si ca o puteti decompila cu dotPeek, si astfel puteti avea o idee daca e malitioasa sau nu. E scrisa in C++ si e compilata cu VC8 Dar daca te uiti la structura iti poti da seama ca e malitioasa. Prea multe syscalluri suspecte. Edited April 19, 2018 by yoyois Quote
AAv.Soft Posted April 25, 2018 Report Posted April 25, 2018 On 4/19/2018 at 11:43 AM, aismen said: Dar si aplicatia asta desktop de SMS sunt 99,99% sigur ca e scrisa in C# si ca o puteti decompila cu dotPeek, si astfel puteti avea o idee daca e malitioasa sau nu. dotPeek nu vrea s-o decompileze. Nici JustDecompile (de la Telerik). On 4/19/2018 at 2:35 PM, yoyois said: E scrisa in C++ si e compilata cu VC8 Dar daca te uiti la structura iti poti da seama ca e malitioasa. Prea multe syscalluri suspecte. Cu ce ai reusit sa te uiti la syscall-uri? Quote
gigiRoman Posted April 25, 2018 Report Posted April 25, 2018 27 minutes ago, AAv.Soft said: dotPeek nu vrea s-o decompileze. Nici JustDecompile (de la Telerik). Cu ce ai reusit sa te uiti la syscall-uri? Incearca sa il urmaresti cu process monitor de la sysinternals. Quote
AAv.Soft Posted April 25, 2018 Report Posted April 25, 2018 1 hour ago, gigiRoman said: Incearca sa il urmaresti cu process monitor de la sysinternals. Asta inseamna ca aplicatia sa ruleze. Daca vreau sa vad datele fara sa deschid aplicatia (presupunand ca e un RunPE sau RootKit)? On 4/19/2018 at 2:35 PM, yoyois said: E scrisa in C++ si e compilata cu VC8 Daca VC8 inseamna Visual C++ 2005 (conform acestui post), este vreo modalitate sa decompilez un astfel de program scris in C++? Pentru ca dupa putina "cotrobaiala" pe Google nu am dat decat de derevenets.com si din alte forumuri am inteles ca dupa o "decompilare" C++ vei ramane cu formatul assembly, in nici un caz cu un cod sursa "curat". Quote
gigiRoman Posted April 25, 2018 Report Posted April 25, 2018 https://stackoverflow.com/questions/12450510/why-is-it-so-easy-to-decompile-java-code Da o geana pe cartea asta: https://www.google.ro/url?sa=t&source=web&rct=j&url=https://repo.zenk-security.com/Virus-Infections-Detections-Preventions/Malware%20Analyst's%20Cookbook.pdf&ved=2ahUKEwjv-rrHsNXaAhWFKVAKHYG3Cj8QFjAAegQIBxAB&usg=AOvVaw1iBHiegWqnTGrAvuTxYf8T Nu strica. 1 Quote
