A forum for reverse engineering, OS internals and malware analysis 

Rogue Antimalware (FakeAV, 2011 year)

Forum for analysis and discussion about malware.
 Topic locked

Re: Rogue antimalware (FakeAV, FakeAlert)

 #7380  by Xylitol
 Mon Jul 18, 2011 3:22 pm
serial number is not really a problem, can you past here a link of the website ? for me the 'main' site still don't work.

in attach unpacked version (By EP_X0FF) of personal shield pro

Image

11/43 >> 25.6%
http://www.virustotal.com/file-scan/rep ... 1310989798

Image
Attachments
pwd: malware
(283.63 KiB) Downloaded 63 times

Zentom System Guard

 #7451  by Xylitol
 Wed Jul 20, 2011 1:44 pm
Zentom System Guard

VT: 15/43 >> 34.9%
http://www.virustotal.com/file-scan/rep ... 1311147188

Image
Attachments
pwd: xylibox
(1.81 MiB) Downloaded 84 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:15 am, edited 1 time in total. Reason: title edited

Re: Rogue antimalware (FakeAV, FakeAlert)

 #7454  by EP_X0FF
 Wed Jul 20, 2011 2:36 pm
@ thekillergreece

See unlock code in Xylitol blog and don't ask such questions anymore.

Post removed.

Total Protect

 #7515  by Xylitol
 Fri Jul 22, 2011 4:41 pm
Total Protect

VT: 5/43 >> 11.6%
http://www.virustotal.com/file-scan/rep ... 1311350879

Image
Attachments
pwd: xylibox
(990.47 KiB) Downloaded 106 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:16 am, edited 1 time in total. Reason: title edited

Re: Rogue antimalware (FakeAV, FakeAlert)

 #7577  by Cody Johnston
 Sun Jul 24, 2011 3:57 am
This one is interesting, there seems to be no GUI asking for money or anything of the sort, just an annoying error message. I don't know what it is named but here is the VT upload:

Image

http://www.virustotal.com/file-scan/rep ... 1311468170
Attachments
Password: malware
(59.48 KiB) Downloaded 78 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:19 am, edited 1 time in total. Reason: image reupload

Blue Flare Antivirus

 #7832  by Cody Johnston
 Wed Aug 03, 2011 5:59 am
Blue Flare Antivirus

The elusive Blue Flare Antivirus... also drops zbot for me

Image

http://www.virustotal.com/file-scan/rep ... 1312350036
Attachments
Password: malware
(2.51 MiB) Downloaded 92 times
Last edited by EP_X0FF on Mon Oct 31, 2011 7:20 am, edited 1 time in total. Reason: title edited, image moved to imageshack.us

Re: Rogue antimalware (FakeAV, FakeAlert)

 #7880  by EP_X0FF
 Sat Aug 06, 2011 3:26 pm
Fake Antivirus Industry Down, But Not Out

A little quote from article - Support info for MacDefender and other fake AV products - found by Russian police on a ChronoPay PC.
Image

Just take look on this guy, these eyes can't lie :) Somehow remember me some Rustock operator - the same happy smile and confidence in his own importance.

Image

Re: Rogue antimalware (FakeAV, FakeAlert)

 #7882  by Flamef
 Sat Aug 06, 2011 4:53 pm
EP_X0FF wrote:Fake Antivirus Industry Down, But Not Out

A little quote from article - Support info for MacDefender and other fake AV products - found by Russian police on a ChronoPay PC.

Just take look on this guy, these eyes can't lie :) Somehow remember me some Rustock operator - the same happy smile and confidence in his own importance.
To me,he looks retarted :lol: Btw,have you seen rustock's author photo?if so can you show us his pretty face? :D

http://krebsonsecurity.com/wp-content/u ... rgeeva.jpg

Well,what the fcuk hahahaaaa.
Last edited by EP_X0FF on Sun Aug 07, 2011 3:42 am, edited 1 time in total. Reason: removed over-quoting and inappropriate language
 Topic locked
  • 1
  • 19
  • 20
  • 21
  • 22
  • 23
  • 34
 Return to “Malware”