- Автор темы
- Добавить закладку
- #21
Yes, seems to got patched recently
I know some different uac bypass and will upd it soon once I got more time again
-
XSS.stack #1 – первый литературный журнал от юзеров форума
Reg Dropper builder(Free & opensrc)
- Автор темы DoKitO
- Дата начала
I know some different uac bypass and will upd it soon once I got more time again
Am I the only one to encounter this error? Tried on 32 bit local pc as well as an azure rdp, got the same error. The stealer file when installed manually executed without the reg dropper works and I get the results on my telegram. The CMD also opens after the reboot and is not hidden. Any help would be appreciated. Thanks.
- Автор темы
- Добавить закладку
- #23
Use direct File hoster
I used anonfiles' cdn direct link, let me try with gofile's direct cdn link
- Автор темы
- Добавить закладку
- #25
anonfiles expire after some time, If it works without the reg dropper, its prob download a HTML from your link
Thanks for that, I tried with a direct link and opened the reg file on the rdp. And on reboot i was greeted with this screen. Is this in accordance with the functions of the reg dropper? Because I don't seem to get an output on Telegram. (The telegram bot and group is working fine, I tested it with manual install and got an output over there.)
Вложения
- Автор темы
- Добавить закладку
- #27
It happens when you run the reg builder 2 times without clearing the old reg values
Try with transfer.sh
This does not seem to solve that issue. I extracted the builder on a new computer proceded and got the reg file. Pasted the reg file on a new rdp and encountered the same screen on reboot. Is it something to do with the built of the stealer itself?
Great share again, <3
I'm still testing the dropper but unfortunately now it gets detected by Defender.
I'm making new reg files via the source code but again it get detected.
Idk maybe it only me?
Is there a way to make it undetectable again by myself?
/And as I said on dm I hope DoKitO find time to fix the last cmd windows after restart running visible on desktop)
Thanks in advance
I'm making new reg files via the source code but again it get detected.
Idk maybe it only me?
Is there a way to make it undetectable again by myself?
/And as I said on dm I hope DoKitO find time to fix the last cmd windows after restart running visible on desktop)
Thanks in advance
Will there be an update bro
- Автор темы
- Добавить закладку
- #33
Yes, when i got time, very stressed Out currently
Good share i'm very surprised you're doing this all for free, thank you 
https://warzone.ws/reg.html expensive (full) copy paste
wah wahhttps://warzone.ws/reg.html expensive (full) copy paste
yea UAC bypass doesn't seem to work. but thanks for your efforts.
So expensive. I wonder how long one build would last. I wouldn't mind paying for a monthly subscription, but his price is so steep for what you get.https://warzone.ws/reg.html expensive (full) copy paste
Chill out, he doesnt have to release any of this for free but decides to anyway, let him breathe lol....
Completely understandable. Thank you for sharing this for free, I know a few others have said this but worth repeating. Your a legend.