Originally Posted by
jajarem74
Members of MPGH,
Do not bother with VirusTotal or Jotti scans - I recommend you run a full analysis on any programs you download from MPGH for now on via hybrid-analysis.com or reverse.it - these two websites employ VxStream Sandbox, allowing you to analyze everything that takes place during execution. I'm not going to say much for this release other than the fact that this developer has A) pushed for people to use a popular injector that not only communicates with external networks, permanently alters code within drivers pertaining to various security functions of your kernel, but are also packed and closed-source. Now he wants you to use his own injector, which also engages in suspicious activities - see below for the VxStream Sandbox analysis of this injector.
hybrid-analysis.com/sample/f915022cc633b18e690b4e2b59ba69616ad66cbe32b932a383 2652214b23afbd?environmentId=100
One must expect that individuals will, eventually, exploit a community that believes every packed or malicious program that's hiding its true activities is just a "false-positive." You people are easy targets... The community has grown complacent (the majority of society has.) Being someone who's capable of the same activities and was for many, many years, I do know how they think. I've been a member of MPGH since around '08, and I've administrated multiple websites that sell VIP subscriptions, written a few bases and my own injectors - I will tell you this, none of my programs set off any "false-positives", nor did I feel the need to pack an injector written on 50% of public source snippets... I've done quite a few remarkable things during my programming years, some of which I'm not so proud of given that it gave malicious individuals the ability to monitor millions of people... Just remember to always follow a security protocol, and improve upon it over the years as your knowledge expands.
Honestly, I don't want to see you people become apart of some Paki botnet or end up with a backdoor giving shell access to your system. I think my concern for you people is well worth your time to take in doing some of your own investigating combined with asking questions - your security is well worth the offense that this developer may take when you ask questions. Just ask yourself what your privacy or identity is worth to you - I'm sure the developer will respect my response, given how serious the nature of system integrity is. NEVER COMPROMISE YOUR SECURITY FOR ANYONE OR ANYTHING UNLESS YOU ARE ABSOLUTELY SURE 100%. And even when you're 100% sure, you need to keep separate drives and be prepared to switch them out, wipe your bios or keep a completely separate pc for gaming and running third-party software. Yes, you can duel-boot, but you make your first mistake by underestimating the drive that a skilled blackhat may possess - it is far beyond anything that you can ever imagine.
I know there's some strange stuff going on here (deliberately limiting the choices of tools to ones that engage in malicious activities); therefore, I, personally, feel that we need Dave to come down hard on some of the mods that are around at the moment. Honestly, this community has just grown far too complacent when it comes to security, regardless of what anyone thinks - all it takes is some skid mark throw away from ********** or (insert super 1337 skid-row child code here, website name) to come over here and fuck you all up... Honestly, that's sad because you can only imagine what the implications are for someone who actually does this shit for a living and possesses the knowledge to exploit natural vulnerabilities that go undetected in the majority used system here, which happens to be Windows. I feel as if I just want to toss all of my electronics out the window, run them over with my car, then smash everything into a fine grit and spread it out in the ocean as I type this just for being logged in on this site... That's how bad it is. You people need to wake up and smell the shit that people are feeding you ASAP. Get paranoid - that's the only thing that's going to keep you safe. I DBAN my HDDs and discharge my memory cells and dispose of my certs multiple times a month on my SSDs, and I also flash my bios - I don't even care what it costs me because I know the feeling of relief I get when I follow my protocol whenever I use third-party software that I can't trust. DON'T TRUST ANYONE OR ANYTHING. Speaking of, that's on my todo list this week - lol.
Sincerely,
J