Ethical Hacker retweeted
Maldev and operations are walking through minefields already. This is doing so with another 100lbs of high explosive strapped to you so that when you inevitably take a wrong step you can take all of your other campaigns out with you 🙃
> be pakistan government
> develop custom malware
> used to target high profile targets
> used against indian military and political ppl
> named SHEETCREEP
> send indian ppl file
> UAE-India Strategic Partnership Week
> malicious .lnk file
> .lnk executes malicious c sharp code
> does a bunch of stuff for persistence
> exfiltrates data to Google Sheets
> Google Sheets can be used to control victim pcs
> pakistan gov hardcodes google c2 sheet
> PAKISTAN GOV HARDCODES GOOGLE C2 SHEET
> embed access key in payload
> EMBED ACCESS KEY IN PAYLOAD
> malware nerds find it
> look inside
> find all targets from pakistan gov
> monitoring 91 ppl they think important
THEY STARTED SO STRONG. WHY DID YOU HARDCODE EVERYTHING. YOU BURNED YOUR OPERATION
securonix.com/blog/sheetcree…
1
16
2,784
I was learning about this function in Maldev recently and I feel very much seen right now
28
w to see a top tier exploit dev shout out an equally skilled maldev
Collab when, tho? 👀
1
4
1,483
Jun 15
Big announcement!
We're launching a new platform with new content, refreshed videos, opsec considerations and detection opportunities.
New website: sektor7.institute
Current users will be migrated from an old platform in the coming weeks.
Enjoy!
#maldev #malwaredevelopment #redteam #blueteam
1
39
165
14,403
setup your own malware testing lab with elastic EDR in an AD environment
wafflesexploits.github.io/po…
#malware #maldev
40
Bhone Myat Thu retweeted
Jun 12
1
14
130
5,578
Draxy Dollar retweeted
May 28
Wow even in the CVP I'm getting so many more pushbacks on 4.8 for maldev. Way more than before - did something change?!
1
1
123