[SALE] GACRUX Bot, resident loader
-Written in C++/C/ASM
-Bin size ~60kb
-No CRT; pure WINAPI.
-Full unicode support, compatibility windows 7+, x32/x64.
-Working in trusted process
-HTTP & HTTPS support (self signed cert work too)
-Communication encrypted
-Support for 5 C&C URLs
-Installation into system
-Hidden startup (Not visible to user, ever, or av products until shutdown)
-Small ring3 rootkit to hide all files of bot (x32/x64)
-Ability to download & execute, run local process, update bot, uninstall
-Tasks for running files support commandline parameters
-Protection of sandboxes, vms, debuggers and other analysis
-Various other measures to harden reversing and analysis
-Additional plugins such as stealer, backconnect.
-Plugins are executed in memory and never touch disk
-Secure C&C Panel with Captcha
-Filters for task execution (By country, location, OS, arch)
-Statistics
Pricing
Bot: 350$
Rebuild binary: 30$
Minor updates are free, major ones are case by case fee.
(Additional plugins available, do not increase bot size
executed in memory; crypting not required)
Stealer: 100$
BackConnect: 50$
Stealer details
-Grabs passwords, cookies, history of browsers
-Chrome, Firefox, Internet Explorer, Microsoft Edge
-Grabs all Chrome based browser 20+
-Grabs all Firefox based browsers 6+
-Desktop screenshot
Panel Screenshots
Login: https://pasteboard.co/JjUGUqG.png
Bots: https://pasteboard.co/JjUH6jx.png
Worldmap: https://pasteboard.co/JjFDI0D.png
Stats: https://pasteboard.co/JjFDZgX.png
Tasks: https://pasteboard.co/JjUHjVo.png
Task execution filters: https://pasteboard.co/JjUHt6Q.png
Runtime scan of bot (with crypt)
-Comodo is sandbox, not detection
-Sophos is static detect, (FROM crypt)
-KIS detection is invalid.
Kaspersky rescan (CLEAN)
I can work with guarantor, at the expense of the buyer.
Contact & support:
txd@exploit.im (OTR)
-Written in C++/C/ASM
-Bin size ~60kb
-No CRT; pure WINAPI.
-Full unicode support, compatibility windows 7+, x32/x64.
-Working in trusted process
-HTTP & HTTPS support (self signed cert work too)
-Communication encrypted
-Support for 5 C&C URLs
-Installation into system
-Hidden startup (Not visible to user, ever, or av products until shutdown)
-Small ring3 rootkit to hide all files of bot (x32/x64)
-Ability to download & execute, run local process, update bot, uninstall
-Tasks for running files support commandline parameters
-Protection of sandboxes, vms, debuggers and other analysis
-Various other measures to harden reversing and analysis
-Additional plugins such as stealer, backconnect.
-Plugins are executed in memory and never touch disk
-Secure C&C Panel with Captcha
-Filters for task execution (By country, location, OS, arch)
-Statistics
Pricing
Bot: 350$
Rebuild binary: 30$
Minor updates are free, major ones are case by case fee.
(Additional plugins available, do not increase bot size
executed in memory; crypting not required)
Stealer: 100$
BackConnect: 50$
Stealer details
-Grabs passwords, cookies, history of browsers
-Chrome, Firefox, Internet Explorer, Microsoft Edge
-Grabs all Chrome based browser 20+
-Grabs all Firefox based browsers 6+
-Desktop screenshot
Panel Screenshots
Login: https://pasteboard.co/JjUGUqG.png
Bots: https://pasteboard.co/JjUH6jx.png
Worldmap: https://pasteboard.co/JjFDI0D.png
Stats: https://pasteboard.co/JjFDZgX.png
Tasks: https://pasteboard.co/JjUHjVo.png
Task execution filters: https://pasteboard.co/JjUHt6Q.png
Runtime scan of bot (with crypt)
-Comodo is sandbox, not detection
-Sophos is static detect, (FROM crypt)
-KIS detection is invalid.
Kaspersky rescan (CLEAN)
I can work with guarantor, at the expense of the buyer.
Contact & support:
txd@exploit.im (OTR)
