FedSearch - Federated network search engine

Mr.Trunk · @mrtrunk

6 followers · 11761 posts · Server dromedary.seedoubleyou.me

KrebsonSecurity: Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’ https://krebsonsecurity.com/2023/08/meet-the-brains-behind-the-malware-friendly-ai-chat-service-wormgpt/ #largelanguagemodels #ALittleSunshine #TheComingStorm #ruiunashackers #ArcticStealer #DanielKelley #RafaelMorais #Breadcrumbs #GoogleBard #Hackforums #ChatGPT #WormGPT #DCRat #LLMs

#largelanguagemodels #alittlesunshine #thecomingstorm #ruiunashackers #arcticstealer #danielkelley #rafaelmorais #breadcrumbs #googlebard #hackforums #chatgpt #wormgpt #dcrat #llms

Last updated 2 years ago

Original post

dispatch · @dispatch

567 followers · 3288 posts · Server ioc.exchange

Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’ https://krebsonsecurity.com/2023/08/meet-the-brains-behind-the-malware-friendly-ai-chat-service-wormgpt/ #largelanguagemodels #ALittleSunshine #TheComingStorm #ruiunashackers #ArcticStealer #DanielKelley #RafaelMorais #Breadcrumbs #GoogleBard #Hackforums #ChatGPT #WormGPT #DCRat #LLMs

#largelanguagemodels #ALittleSunshine #TheComingStorm #ruiunashackers #arcticstealer #danielkelley #rafaelmorais #Breadcrumbs #googlebard #Hackforums #chatgpt #wormgpt #dcrat #llms

Last updated 2 years ago

Original post

ITSEC News · @itsecbot

1408 followers · 36504 posts · Server schleuss.online

Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’ - WormGPT, a private new chatbot service advertised as a way to use Artificial Intel... https://krebsonsecurity.com/2023/08/meet-the-brains-behind-the-malware-friendly-ai-chat-service-wormgpt/ #largelanguagemodels #alittlesunshine #thecomingstorm #ruiunashackers #arcticstealer #danielkelley #rafaelmorais #breadcrumbs #googlebard #hackforums #chatgpt #wormgpt #dcrat #llms

#LLMs #dcrat #wormgpt #chatgpt #hackforums #googlebard #breadcrumbs #rafaelmorais #danielkelley #arcticstealer #ruiunashackers #thecomingstorm #alittlesunshine #largelanguagemodels

Last updated 2 years ago

Original post

Mr.Trunk · @mrtrunk

6 followers · 11660 posts · Server dromedary.seedoubleyou.me

KrebsonSecurity: Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’ https://krebsonsecurity.com/2023/08/meet-the-brains-behind-the-malware-friendly-ai-chat-service-wormgpt/ #largelanguagemodels #ALittleSunshine #TheComingStorm #ruiunashackers #ArcticStealer #DanielKelley #RafaelMorais #Breadcrumbs #GoogleBard #Hackforums #ChatGPT #WormGPT #DCRat #LLMs

#largelanguagemodels #alittlesunshine #thecomingstorm #ruiunashackers #arcticstealer #danielkelley #rafaelmorais #breadcrumbs #googlebard #hackforums #chatgpt #wormgpt #dcrat #llms

Last updated 2 years ago

Original post

Br3akp0int · @Br3akp0int

36 followers · 14 posts · Server infosec.exchange

Open media

been seeing a bat-crypter being used by #asyncrat #redline #dcrat and other malware as a loader. so might be this analysis and my simple python script to extract the enc payload on that .bat file might help. 😊 1/4 #int3 #malwareanalysis

https://github.com/tccontre/KnowledgeBase/tree/main/malware_re_tools/asyncrat-bat-crypter-extractor

2/4 the .bat crypter create a series of env variable containing a string that will be concatenated to generate the powershell that will decode, decrypt and load the actual payload. we can dump pwh in process or just exploit the technique by simple 'echo' 😊

3/4 upon running the modified .bat it will dump the pwh that will decode, decrypt (aes) and decompress the actual payload. you can either modified the actual powershell or use cyber chef to decrypt the actual payload.

4/4 doing it 1 by 1 might be exhausting, so I creates a simple python script (shared above) to automatically decrypt and extract the payload from this bat-crypter loader. (specifically designed for this bat-crypter format) it also generate dbg log.

#AsyncRAT #redline #dcrat #int3 #malwareanalysis

Last updated 3 years ago

Original post