Trapped & Traced #GammsGroup #FinFisher 03-13-2023 from new AT&T Motorola Phone under ~$100 🔎☣️🤳👀👀🔍

¹ From Virus Total Scanner:
https://www.virustotal.com/en/file/9b53e0eeb35c173fd0c56b85812c0e59501a8588037dc92b8bac38e916ffdf09/analysis/ #VisualVoicemail

GammaGroup.com Visual voicemail FinFisher Module 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/g806efa51f1af4a638b20262b6931f8b0caab56f276834ca58b01afcc4605057e

² From Virus Total Scanner:
https://www.virustotal.com/en/file/5387c9d5a137908cdc7820af51fea018c7b96dcce08a32a1fc20e9b6e64c8738/analysis/ #CarrierHub

GammaGroup From FinFisher CarrierHub 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/g13901560905741e48e926e061e01252bfa4ff6e8255f4156b56ca739c4ecaff3

³ From Virus Total Scanner:
https://www.virustotal.com/en/file/433321001cb907c775e4a06c1a2e36861b0d0355a74b4b9d0d1c2e48cce55d4c/analysis/ #MCMClient

GammaGroup FinFisher Module MCMClient 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/gf312aa3fc4174d9b88355ad755e6f24522e795ee3a304d3db07bb0ec7daa702b

⁴ From Virus Total Scanner:
https://www.virustotal.com/en/file/ae22b44ad5381463912046aea7ec541352e22b02f2f0887864807b22473c92ca/analysis/ #MTPHost 📬 Gmail backdoor Client

GammaGroup FinFisher Module MTPHost 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/g2579d64499654488a367fc14de7457bb6cd1b7489d0840cf8e0b61baa1d96bd6

⁵
From Virus Total Scanner:
https://www.virustotal.com/en/file/727ed61fe7e6476a4a7e08fcc16447fb74f6df317ea16f483efcf3da709cd4ba/analysis/ #MobileInstaller

GammaGroup FinFisher Module MobileInstaller 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/g5af535a69bba4ad6a8db6866f9e46075d42e2e8e0b424cfb93ec7bd473ff2180

⁶ From Virus Total Scanner:
https://www.virustotal.com/en/file/87b87fc66535c3415bffd4cd34c48d67054b9b4b90c4092fa535cb45ed5a0f41/analysis/ #InvisibleNet Motorola

GammaGroup FinFisher Module InvisibleNet 03-13-2023

New VT generated after Save:
https://www.virustotal.com/graph/embed/g01fa7fb9fb744f0d903e473bcd5fbad0a079d61992144621852170d09a81b6c9

⁷ #GammaGroup #FinFisher #FinSpy #Finsky #infosec #detectionkit for #Android apps list & tools involved

¹ Firewall AI -🔎 Blocking / Host Lists 🔍
² VirusTotal App 🔎🤳💻☣️🔍
³ VirusTotal Forensics ENV Read-Only Account 🔎☣️🔍
⁴ PCAPdroid App - PCAP files / Host Lists 🔎🗒️🔍
⁵ Textpad or Text file editor - 🔎📝🔍
⁶ Web2 + Web3 posting 👨‍💻👩‍💻💻🖥️💿💾🖨️👀🎧👂

#SSM™ #StateSponsoredMalware™ #investigations by #infosec_jcp

Here's a funny one I ran across downloading some Rick and Morty .gifs recently....

Check the filename: raw.bin

There is always a workaround to get around this*. 🤭

* Screen Recording and then convert to .gifv from screen recording. 😆

#RickAndMorty

#infosec by
#infosec_jcp 🐈🃏 done differently

Here's a funny one I ran across downloading some Rick and Morty .gifs recently....

Check the filename: raw.bin

There is always a workaround to get around this. 🤭

#RickAndMorty

#infosec by
#infosec_jcp 🐈🃏 done differently

So was digging back on my #TWTR timeline during the #Pandemic and found a real banger story I was plate spinning which has a #StateSponsoredMalware #SSM™ angle as well as a #PDFSpearPhishing component of a shady #HousingEvictionSpecialist who is well known in the #BayArea , #BrianScarsbeckLaw who is now working with #ToddRothsbardLaw for Todd. Hi Todd! 👋

So, I did a traceback on this #SpearPhishingPDF that Brian Scarsbeck was serving to HIS CLIENTS AND POTENTIAL CLIENTS which compromises their clients computer and allows full access into said clients systems.

#HousingIsKey #COVID19

#infosec #investigations

Use of #FinFisher #FinSpy #Finsky client #investigations

#HousingEvictionFraud using #MetaBrigades #GangStalkers who organized a coordinated effort to harass me while I worked for #CiscoSystems.

☣️👋 #Investigations by #infosec_jcp ☣️👋

Thread:
https://mobile.twitter.com/infosec_jcp/status/1448069568254124037

So was digging back on my #TWTR timeline during the #Pandemic and found a real banger story I was plate spinning which has a #StateSponsoredMalware #SSM™ angle as well as a #PDFSpearPhishing component of a shady #HousingEvictionSpecialist who is well known in the #BayArea , #BrianScarsbeckLaw who is now working with #ToddRothsbardLaw for Todd. Hi Todd! 👋

So, I did a traceback on this #SpearPhishingPDF that Brian Scarsbeck was serving to HIS CLIENTS AND POTENTIAL CLIENTS which compromises their clients computer and allows full access into said clients systems.

#HousingIsKey #COVID19

#infosec #investigations

Use of #FinFisher #FinSpy #Finsky client #investigations

#HousingEvictionFraud using #MetaBrigades #GangStalkers who organized a coordinated effort to harass me while I worked for #CiscoSystems.

☣️👋 #Investigations by #infosec_jcp ☣️👋

Thread:
https://mobile.twitter.com/infosec_jcp/status/1448069568254124037

So was digging back on my #TWTR timeline during the #Pandemic and found a real banger story I was plate spinning which has a #StateSponsoredMalware #SSM™ angle as well as a #PDFSpearPhishing component of a shady #HousingEvictionSpecialist who is well known in the #BayArea , #BrianScarsbeckLaw who is now working with #ToddRothsbardLaw for Todd. Hi Todd! 👋

So, I did a traceback on this #SpearPhishingPDF that Brian Scarsbeck was serving to HIS CLIENTS AND POTENTIAL CLIENTS which compromises their clients computer and allows full access into said clients systems.

#HousingIsKey #COVID19 #infosec #investigations #FinFisher #FinSpy #Finsky #investigations #HousingEvictionFraud #Investigations by #infosec_jcp

Thread:
https://mobile.twitter.com/infosec_jcp/status/1448069568254124037

So was digging back on my #TWTR timeline during the #Pandemic and found a real banger story I was plate spinning which has a #StateSponsoredMalware #SSM™ angle as well as a #PDFSpearPhishing component of a shaded #HousingEvictionSpecialist who is well known in the #BayArea , #BrianScarsbeckLaw who is now working with #ToddRothsbardLaw for Todd. Hi Todd! 👋

So, I did a traceback on this #SpearPhishingPDF that Brian Scarsbeck was serving to HIS CLIENTS AND POTENTIAL CLIENTS which compromises their clients computer and allows full access into said clients systems.

#HousingIsKey #COVID19 #infosec #investigations #FinFisher #FinSpy #Finsky #investigations #HousingEvictionFraud #Investigations by #infosec_jcp

Thread:
https://mobile.twitter.com/infosec_jcp/status/1448069568254124037

This is an excellent video about #BubbledSocialMedia which is not mentioned but is a real component to ALL. SOCIAL. MEDIA.

#TIA is the program which is one of many on this #BubbledSocialMedia program which, by proxy, you are handled and manipulated. 👀👀

📰🗞️📡🛰️📺

Citation:
https://en.wikipedia.org/wiki/Total_Information_Awareness

Citation:

https://www.msnbc.com/the-reidout/watch/twitter-whistleblower-says-warnings-about-donald-trump-s-incitement-to-violence-were-ignored-163384901872

I have been researching this for a few years now. Here's my #Twitter archive as it pertains to the analysis and analytics of the analysts workstations that proxy/control this #BubbledSocialMedia phenomenon thus shaping and limiting and #ChatGPT'ing you into #believing wot you are being molded to believe.

Citation:
https://mobile.twitter.com/search?q=Twitter%20(%40infosec_jcp)&src=typed_query&f=top

#RTDNA #news #malware #infosec by #infosec_jcp since Dec. 25th, 2020.

@jerry 🤓👀🤔🤔💨

#InfosecExchange #SDNTracebackHost caught trying to manipulate #routingtables to redirect through #AWS for #MITM

/ 1 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

ec2-35-160-233-103.us-west-2.compute.amazonaws.com

https://www.virustotal.com/graph/embed/gceae63ad6ad44bcfbed47b8c70f4f5d676081f42a0de45cc92d23464f28df782

@jerry 🤓👀🤔🤔💨

#InfosecExchange #SDNTracebackHost caught trying to manipulate #routingtables to redirect through #AWS for #MITM

/ 1 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

ec2-35-160-233-103.us-west-2.compute.amazonaws.com

https://www.virustotal.com/graph/embed/gceae63ad6ad44bcfbed47b8c70f4f5d676081f42a0de45cc92d23464f28df782

@jerry

/ 3 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

Host:

ec2-54-201-75-72.us-west-2.compute.amazonaws.com

📝 Notes on this: This was ~72hrs ago and I reported briefly on #Twitter about this since I was blocked from here to report on this

👇⚠️
https://mobile.twitter.com/infosec_jcp/status/1616996936506290177

.📝📡🛰️📺📰💨

Something to keep an eye on @jerry iF #AWS is messing with #BGP routes and wotnot /s

imo, 🤓 📝

📰📡🛰️📺🤳💻🕸️🕷️🌐👀👀💨

👇⚠️

https://www.virustotal.com/graph/embed/gfa3db09f2a054da7afe0bfae81d40d733ff337805c1f4fe8bc36c1ba95cb217c

@jerry

/ 3 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

Host:

ec2-54-201-75-72.us-west-2.compute.amazonaws.com

📝 Notes on this: This was ~72hrs ago and I reported briefly on #Twitter about this since I was blocked from here to report on this.📝📡🛰️📺📰💨

Something to keep an eye on @jerry iF #AWS is messing with #BGP routes and wotnot /s

imo, 🤓 📝

📰📡🛰️📺🤳💻🕸️🕷️🌐👀👀💨

👇⚠️

https://www.virustotal.com/graph/embed/gfa3db09f2a054da7afe0bfae81d40d733ff337805c1f4fe8bc36c1ba95cb217c

@jerry

/ 2 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

ec2-52-36-58-117.us-west-2.compute.amazonaws.com

https://www.virustotal.com/graph/embed/gab97768067eb4e09a781b33498b6dd1eb299ac95806f404388d6b0b7f073b0dc

@jerry 🤓👀🤔🤔💨

#InfosecExchange #SDNTracebackHost caught trying to manipulate #routingtables to redirect through #AWS for #MITM

/ 1 of 3 hosts caught / #infosec #infosec_jcp #tracebacks

ec2-35-160-233-103.us-west-2.compute.amazonaws.com

https://www.virustotal.com/graph/embed/gceae63ad6ad44bcfbed47b8c70f4f5d676081f42a0de45cc92d23464f28df782

#CISO's in #infosec

Rule #1 of 2023 #infosec

#tcpdump your #Meta users at your company.

Your welcome. #infosec_jcp 🐈🃏

@geekgrrl

Hmm, I have several banks just for this same reason as it is always a 'when not an if' the bank goes bad or get hacked.

'Tis best practices to have .a few backup, or Stunt Banks, with money 💰 to keep going whilest said bank that went dodgy gets I.T.'s act together. 👍

#InPersonBanking #ATMOnly #NoOnlineBanking #infosec_jcp

When the #Fortune1000 #CISO's review their #tcpdump logs of #GammaGroup #SSM™ #StateSponsoredMalware™ at their company leaking their #CompanySecrets to their #employer #IPLosses perhaps then #ThingsWillChange in #infosec for the better. 🎯 -- #infosec_jcp 🤔

When the #Fortune1000 #CISO's review their #tcpdump logs of #MetaUserAccounts at their company leaking their #CompanySecrets to their #employer #IPLosses perhaps then #ThingsWillChange in #infosec for the better. 🎯 -- #infosec_jcp 🤔

L👀king for some new #BayAreaClients to do some #MediaCreation for this week. Have a great list of past clients I have done communications and editing and producing for.

Contact me to get on my production schedule as slots for content creation fill up quickly!

#infosec_jcp #MediaProductions

L👀king for some new #BayAreaClients to do some #MediaCreation for this week. Have a great list of past clients I have done communications and editing and producing for.

Contact me to get on my production schedule as slots for content creative n fill up quickly.

#infosec_jcp #MediaProductions